Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler. Number of rules (primarily dangerous function names) in C/C++ ruleset: 223 Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_bc_str.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_bcpnts_str.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_bcpnts_unst.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_con2zn_genrl_str.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_con2zn_str.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_convergence.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_descriptor.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_dimensional.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_discreteface_str.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_flowcent_str.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_flowcentrind_str.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_floweqn_str.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_flowvert_str.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_flowvert_unst.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_grid2zn_str.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_grid_str.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_grid_unst.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_nondimensional.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_timevert_str.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_bc_str.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_bcpnts_str.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_bcpnts_unst.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_con2zn_genrl_str.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_con2zn_str.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_convergence.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_descriptor.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_dimensional.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_discreteface_str.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_flowcent_str.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_flowcentrind_str.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_floweqn_str.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_flowvert_str.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_flowvert_unst.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_grid2zn_str.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_grid_str.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_grid_unst.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_nondimensional.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_timevert_str.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code_parallel/read_flowcentrind_str_parinzone.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code_parallel/read_flowcentrind_str_paroverzone.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code_parallel/read_grid_str_parinzone.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code_parallel/read_grid_str_paroverzone.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code_parallel/write_flowcentrind_str_parinzone.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code_parallel/write_flowcentrind_str_paroverzone.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code_parallel/write_grid_str_parinzone.c Examining data/libcgns-4.1.2/src/Test_UserGuideCode/C_code_parallel/write_grid_str_paroverzone.c Examining data/libcgns-4.1.2/src/adf/ADF.h Examining data/libcgns-4.1.2/src/adf/ADF_fbind.h Examining data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c Examining data/libcgns-4.1.2/src/adf/ADF_interface.c Examining data/libcgns-4.1.2/src/adf/ADF_internals.c Examining data/libcgns-4.1.2/src/adf/ADF_internals.h Examining data/libcgns-4.1.2/src/adf/adf_ftoc.c Examining data/libcgns-4.1.2/src/adfh/ADF.h Examining data/libcgns-4.1.2/src/adfh/ADFH.c Examining data/libcgns-4.1.2/src/adfh/ADFH.h Examining data/libcgns-4.1.2/src/adfh/ADFH_ftoc.c Examining data/libcgns-4.1.2/src/cg_malloc.c Examining data/libcgns-4.1.2/src/cg_malloc.h Examining data/libcgns-4.1.2/src/cgio_ftoc.c Examining data/libcgns-4.1.2/src/cgnsKeywords.h Examining data/libcgns-4.1.2/src/cgns_error.c Examining data/libcgns-4.1.2/src/cgns_header.h Examining data/libcgns-4.1.2/src/cgns_internals.c Examining data/libcgns-4.1.2/src/cgns_io.c Examining data/libcgns-4.1.2/src/cgns_io.h Examining data/libcgns-4.1.2/src/cgns_io_f.h Examining data/libcgns-4.1.2/src/cgnslib.c Examining data/libcgns-4.1.2/src/cgnslib.h Examining data/libcgns-4.1.2/src/cgnstools/calclib/calc.c Examining data/libcgns-4.1.2/src/cgnstools/calclib/calc.h Examining data/libcgns-4.1.2/src/cgnstools/calclib/calctest.c Examining data/libcgns-4.1.2/src/cgnstools/calclib/vec.c Examining data/libcgns-4.1.2/src/cgnstools/calclib/vec.h Examining data/libcgns-4.1.2/src/cgnstools/calclib/vecerr.h Examining data/libcgns-4.1.2/src/cgnstools/calclib/vecsym.c Examining data/libcgns-4.1.2/src/cgnstools/calclib/vecsym.h Examining data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c Examining data/libcgns-4.1.2/src/cgnstools/cgnscalc/calcwish.c Examining data/libcgns-4.1.2/src/cgnstools/cgnscalc/winmain.c Examining data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c Examining data/libcgns-4.1.2/src/cgnstools/cgnsplot/plotwish.c Examining data/libcgns-4.1.2/src/cgnstools/cgnsplot/winmain.c Examining data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c Examining data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiowish.c Examining data/libcgns-4.1.2/src/cgnstools/cgnsview/winmain.c Examining data/libcgns-4.1.2/src/cgnstools/common/getargs.c Examining data/libcgns-4.1.2/src/cgnstools/common/getargs.h Examining data/libcgns-4.1.2/src/cgnstools/common/gl_config.h Examining data/libcgns-4.1.2/src/cgnstools/common/hash.c Examining data/libcgns-4.1.2/src/cgnstools/common/hash.h Examining data/libcgns-4.1.2/src/cgnstools/common/winhtml.c Examining data/libcgns-4.1.2/src/cgnstools/tkogl/feedback.c Examining data/libcgns-4.1.2/src/cgnstools/tkogl/feedback.h Examining data/libcgns-4.1.2/src/cgnstools/tkogl/gencyl.c Examining data/libcgns-4.1.2/src/cgnstools/tkogl/gencyl.h Examining data/libcgns-4.1.2/src/cgnstools/tkogl/get.c Examining data/libcgns-4.1.2/src/cgnstools/tkogl/get.h Examining data/libcgns-4.1.2/src/cgnstools/tkogl/glphoto.c Examining data/libcgns-4.1.2/src/cgnstools/tkogl/glphoto.h Examining data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c Examining data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.h Examining data/libcgns-4.1.2/src/cgnstools/tkogl/nurbs.c Examining data/libcgns-4.1.2/src/cgnstools/tkogl/nurbs.h Examining data/libcgns-4.1.2/src/cgnstools/tkogl/outline.c Examining data/libcgns-4.1.2/src/cgnstools/tkogl/printstr.c Examining data/libcgns-4.1.2/src/cgnstools/tkogl/printstr.h Examining data/libcgns-4.1.2/src/cgnstools/tkogl/quadric.c Examining data/libcgns-4.1.2/src/cgnstools/tkogl/quadric.h Examining data/libcgns-4.1.2/src/cgnstools/tkogl/strokefont.c Examining data/libcgns-4.1.2/src/cgnstools/tkogl/strokefont.h Examining data/libcgns-4.1.2/src/cgnstools/tkogl/tess.c Examining data/libcgns-4.1.2/src/cgnstools/tkogl/tess.h Examining data/libcgns-4.1.2/src/cgnstools/tkogl/tkAppInit.c Examining data/libcgns-4.1.2/src/cgnstools/tkogl/tkogl.c Examining data/libcgns-4.1.2/src/cgnstools/tkogl/tkogl.h Examining data/libcgns-4.1.2/src/cgnstools/tkogl/tkoglparse.c Examining data/libcgns-4.1.2/src/cgnstools/tkogl/tkoglparse.h Examining data/libcgns-4.1.2/src/cgnstools/utilities/aflr3_to_cgns.c Examining data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c Examining data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.h Examining data/libcgns-4.1.2/src/cgnstools/utilities/cgnsImport.c Examining data/libcgns-4.1.2/src/cgnstools/utilities/cgnsImport.h Examining data/libcgns-4.1.2/src/cgnstools/utilities/cgns_info.c Examining data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_aflr3.c Examining data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_fast.c Examining data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_plot3d.c Examining data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_tecplot.c Examining data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_vtk.c Examining data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c Examining data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.h Examining data/libcgns-4.1.2/src/cgnstools/utilities/convert_dataclass.c Examining data/libcgns-4.1.2/src/cgnstools/utilities/convert_location.c Examining data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c Examining data/libcgns-4.1.2/src/cgnstools/utilities/extract_subset.c Examining data/libcgns-4.1.2/src/cgnstools/utilities/fast_to_cgns.c Examining data/libcgns-4.1.2/src/cgnstools/utilities/interpolate_cgns.c Examining data/libcgns-4.1.2/src/cgnstools/utilities/p3dfint.h Examining data/libcgns-4.1.2/src/cgnstools/utilities/p3dfout.c Examining data/libcgns-4.1.2/src/cgnstools/utilities/patran_to_cgns.c Examining data/libcgns-4.1.2/src/cgnstools/utilities/plot3d_to_cgns.c Examining data/libcgns-4.1.2/src/cgnstools/utilities/tecplot_to_cgns.c Examining data/libcgns-4.1.2/src/cgnstools/utilities/tetgen_to_cgns.c Examining data/libcgns-4.1.2/src/cgnstools/utilities/update_ngon.c Examining data/libcgns-4.1.2/src/cgnstools/utilities/vgrid_to_cgns.c Examining data/libcgns-4.1.2/src/cgnswin_f.h Examining data/libcgns-4.1.2/src/f2c/csub.c Examining data/libcgns-4.1.2/src/fortran_macros.h Examining data/libcgns-4.1.2/src/pcgnslib.c Examining data/libcgns-4.1.2/src/pcgnslib.h Examining data/libcgns-4.1.2/src/ptests/benchmark.c Examining data/libcgns-4.1.2/src/ptests/benchmark_hdf5.c Examining data/libcgns-4.1.2/src/ptests/benchmark_hdf5_w.c Examining data/libcgns-4.1.2/src/ptests/benchmark_hdf5_wf.c Examining data/libcgns-4.1.2/src/ptests/cexample.c Examining data/libcgns-4.1.2/src/ptests/comm_test.c Examining data/libcgns-4.1.2/src/ptests/open_close.c Examining data/libcgns-4.1.2/src/ptests/pcgns_ctest.c Examining data/libcgns-4.1.2/src/ptests/test_base.c Examining data/libcgns-4.1.2/src/ptests/test_general_readwrite.c Examining data/libcgns-4.1.2/src/ptests/test_unstruc_quad.c Examining data/libcgns-4.1.2/src/ptests/test_unstructured.c Examining data/libcgns-4.1.2/src/ptests/test_zone.c Examining data/libcgns-4.1.2/src/ptests/thesis_benchmark.c Examining data/libcgns-4.1.2/src/tests/benchmark_hdf5.c Examining data/libcgns-4.1.2/src/tests/cgioc.c Examining data/libcgns-4.1.2/src/tests/cgioc_hdf.c Examining data/libcgns-4.1.2/src/tests/dbtest.c Examining data/libcgns-4.1.2/src/tests/elemtest.c Examining data/libcgns-4.1.2/src/tests/open_cgns.c Examining data/libcgns-4.1.2/src/tests/ser_benchmark_hdf5.c Examining data/libcgns-4.1.2/src/tests/test64c.c Examining data/libcgns-4.1.2/src/tests/test_bbox.c Examining data/libcgns-4.1.2/src/tests/test_exts.c Examining data/libcgns-4.1.2/src/tests/test_family_tree.c Examining data/libcgns-4.1.2/src/tests/test_general_reshape.c Examining data/libcgns-4.1.2/src/tests/test_general_rind.c Examining data/libcgns-4.1.2/src/tests/test_goto.c Examining data/libcgns-4.1.2/src/tests/test_multifam.c Examining data/libcgns-4.1.2/src/tests/test_partial.c Examining data/libcgns-4.1.2/src/tests/test_ver31.c Examining data/libcgns-4.1.2/src/tests/utils.c Examining data/libcgns-4.1.2/src/tests/utils.h Examining data/libcgns-4.1.2/src/tests/write_array.c Examining data/libcgns-4.1.2/src/tests/write_bcdata.c Examining data/libcgns-4.1.2/src/tests/write_links.c Examining data/libcgns-4.1.2/src/tests/write_rind.c Examining data/libcgns-4.1.2/src/tests/write_test.c Examining data/libcgns-4.1.2/src/tests/write_zones.c Examining data/libcgns-4.1.2/src/tools/cgnames.c Examining data/libcgns-4.1.2/src/tools/cgnames.h Examining data/libcgns-4.1.2/src/tools/cgnscheck.c Examining data/libcgns-4.1.2/src/tools/cgnscompress.c Examining data/libcgns-4.1.2/src/tools/cgnsconvert.c Examining data/libcgns-4.1.2/src/tools/cgnsdiff.c Examining data/libcgns-4.1.2/src/tools/cgnslist.c Examining data/libcgns-4.1.2/src/tools/cgnsnames.c Examining data/libcgns-4.1.2/src/tools/getargs.c Examining data/libcgns-4.1.2/src/tools/getargs.h Examining data/libcgns-4.1.2/src/tools/hash.c Examining data/libcgns-4.1.2/src/tools/hash.h Examining data/libcgns-4.1.2/src/cg_ftoc.c FINAL RESULTS: data/libcgns-4.1.2/src/cgns_io.c:232:15: [5] (race) readlink: This accepts filename arguments; if an attacker can move those files or change the link content, a race condition results. Also, it does not terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach. len = readlink(filename, linkfile, st.st_size + 1); data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_con2zn_genrl_str.c:62:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(zonename0,zn); data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_con2zn_genrl_str.c:66:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(zonename1,zn); data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_con2zn_genrl_str.c:95:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(donorname,zonename1); data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_con2zn_genrl_str.c:118:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(donorname,zonename0); data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_con2zn_str.c:58:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(zonename0,zn); data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_con2zn_str.c:62:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(zonename1,zn); data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_con2zn_str.c:91:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(donorname,zonename1); data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_con2zn_str.c:111:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(donorname,zonename0); data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_timevert_str.c:93:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(solname,"%-32s%-32s%-32s",sn[0],sn[1],sn[2]); data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:65:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( &pstr[ i * (*name_length) ], &tmp_names[ i * (*name_length+1) ] ) ; data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:301:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( F2CP(data_type), ctype ) ; data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:348:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( F2CP(label), clabel ) ; data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:375:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( F2CP(filename), cfilename ) ; data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:383:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( F2CP(link_path), cpath ) ; data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:407:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( F2CP(name), cname ) ; data/libcgns-4.1.2/src/adf/ADF_interface.c:116:17: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. # define ACCESS access data/libcgns-4.1.2/src/adf/ADF_interface.c:678:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( format, IEEE_BIG_32_FORMAT_STRING ) ; data/libcgns-4.1.2/src/adf/ADF_interface.c:683:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( format, IEEE_LITTLE_32_FORMAT_STRING ) ; data/libcgns-4.1.2/src/adf/ADF_interface.c:687:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( format, IEEE_BIG_64_FORMAT_STRING ) ; data/libcgns-4.1.2/src/adf/ADF_interface.c:692:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( format, IEEE_LITTLE_64_FORMAT_STRING ) ; data/libcgns-4.1.2/src/adf/ADF_interface.c:696:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( format, CRAY_FORMAT_STRING ) ; data/libcgns-4.1.2/src/adf/ADF_interface.c:701:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( format, NATIVE_FORMAT_STRING ) ; data/libcgns-4.1.2/src/adf/ADF_interface.c:1281:4: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( error_string, ADF_error_string[ 0 ] ) ; data/libcgns-4.1.2/src/adf/ADF_interface.c:1302:4: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (error_string, "ADF %d: %s", error_return_input, err_msg_str); data/libcgns-4.1.2/src/adf/ADF_interface.c:1305:4: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( error_string, ADF_error_string[error_return_input] ) ; data/libcgns-4.1.2/src/adf/ADF_interface.c:1597:4: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( name_in_file, &link_data[1] ); data/libcgns-4.1.2/src/adf/ADF_interface.c:1601:4: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( file, link_data) ; /** no link ? **/ data/libcgns-4.1.2/src/adf/ADF_interface.c:1607:4: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( name_in_file, &link_data[lenfilename+1] ); data/libcgns-4.1.2/src/adf/ADF_interface.c:1837:1: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( name_tmp, name ) ; data/libcgns-4.1.2/src/adf/ADF_interface.c:2052:1: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy ( version, &ADF_L_identification[4] ) ; data/libcgns-4.1.2/src/adf/ADF_interface.c:2138:4: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( link_data, "%c%s", ADF_file[file_index].link_separator, data/libcgns-4.1.2/src/adf/ADF_interface.c:2142:4: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf( link_data, "%s%c%s", file_name, data/libcgns-4.1.2/src/adf/ADF_internals.c:191:17: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. # define ACCESS access data/libcgns-4.1.2/src/adf/ADF_internals.c:1380:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(filename, pathname); data/libcgns-4.1.2/src/adf/ADF_internals.c:1530:16: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (status, ADF_file[*file_index].open_mode) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:4759:1: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( date, current_time_p ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:5551:1: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( ADF_file[index].open_mode, status); data/libcgns-4.1.2/src/adf/ADF_internals.c:5558:4: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( ADF_file[index].file_name, file ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:7150:1: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( ADF_file[file_index].version_update, what_string ) ; data/libcgns-4.1.2/src/adfh/ADFH.c:37:17: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. # define ACCESS access data/libcgns-4.1.2/src/adfh/ADFH.c:110:1: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. printf aaa ; printf("\n"); fflush(stdout); data/libcgns-4.1.2/src/adfh/ADFH.c:532:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buff, value); data/libcgns-4.1.2/src/adfh/ADFH.c:584:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(value, buff); data/libcgns-4.1.2/src/adfh/ADFH.c:624:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buff, value); data/libcgns-4.1.2/src/adfh/ADFH.c:1231:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(name, p); data/libcgns-4.1.2/src/adfh/ADFH.c:1264:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(verstr, "/%s", D_OLDVERS); data/libcgns-4.1.2/src/adfh/ADFH.c:1455:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(&newpath[len], nodename); data/libcgns-4.1.2/src/adfh/ADFH.c:1571:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(name,buffname); data/libcgns-4.1.2/src/adfh/ADFH.c:1600:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(label,bufflabel); data/libcgns-4.1.2/src/adfh/ADFH.c:1794:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(path, &name[1]); data/libcgns-4.1.2/src/adfh/ADFH.c:2244:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(node, "/%s", D_FORMAT); data/libcgns-4.1.2/src/adfh/ADFH.c:2557:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(data_type,buffdata_type); data/libcgns-4.1.2/src/adfh/ADFH.c:2877:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(target, name_in_file); data/libcgns-4.1.2/src/adfh/ADFH.c:2879:7: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(target, "/%s", name_in_file); data/libcgns-4.1.2/src/adfh/ADFH.c:2955:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(node, "/%s", D_VERSION); data/libcgns-4.1.2/src/adfh/ADFH.c:2959:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(node, "/%s", D_OLDVERS); data/libcgns-4.1.2/src/adfh/ADFH.c:2988:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(version, buff); data/libcgns-4.1.2/src/adfh/ADFH.c:3034:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(error_string, ErrorList[i].errmsg); data/libcgns-4.1.2/src/cgns_error.c:35:5: [4] (format) vsprintf: Potential format string problem (CWE-134). Make format string constant. vsprintf(cgns_error_mess,format, arg); data/libcgns-4.1.2/src/cgns_error.c:46:9: [4] (format) vsprintf: Potential format string problem (CWE-134). Make format string constant. vsprintf(warning_msg, format, arg); data/libcgns-4.1.2/src/cgns_error.c:51:9: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf(stdout,format,arg); data/libcgns-4.1.2/src/cgns_internals.c:574:20: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). } else strcpy(geo->format, geoformat); data/libcgns-4.1.2/src/cgns_internals.c:762:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(family_name, FamilyName); data/libcgns-4.1.2/src/cgns_internals.c:1158:33: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(section[0][n].connect->data_type, CG_SIZE_DATATYPE); data/libcgns-4.1.2/src/cgns_internals.c:1170:25: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(section[0][n].connect->data_type, CG_SIZE_DATATYPE); data/libcgns-4.1.2/src/cgns_internals.c:1207:25: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(section[0][n].connect_offset->data_type, CG_SIZE_DATATYPE); data/libcgns-4.1.2/src/cgns_internals.c:1221:29: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(section[0][n].connect->data_type, CG_SIZE_DATATYPE); data/libcgns-4.1.2/src/cgns_internals.c:1236:29: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(section[0][n].connect->data_type, CG_SIZE_DATATYPE); data/libcgns-4.1.2/src/cgns_internals.c:1269:25: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(section[0][n].connect_offset->data_type, CG_SIZE_DATATYPE); data/libcgns-4.1.2/src/cgns_internals.c:1421:6: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(data_type, section[0][n].parelem->data_type); data/libcgns-4.1.2/src/cgns_internals.c:1441:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(section[0][n].parelem->data_type, data_type); data/libcgns-4.1.2/src/cgns_internals.c:1453:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(section[0][n].parface->data_type, data_type); data/libcgns-4.1.2/src/cgns_internals.c:1685:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(one21->donor, string_data); data/libcgns-4.1.2/src/cgns_internals.c:1836:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(conn->donor, string_data); data/libcgns-4.1.2/src/cgns_internals.c:5261:21: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(reg[n].bcname->name, name); data/libcgns-4.1.2/src/cgns_internals.c:5269:21: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(reg[n].gcname->name, name); data/libcgns-4.1.2/src/cgns_internals.c:5289:21: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(reg[n].descr[j].name, name); data/libcgns-4.1.2/src/cgns_internals.c:7635:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(string_data,"%-32s%-32s%-32s%-32s%-32s",MassUnitsName[units->mass], data/libcgns-4.1.2/src/cgns_internals.c:7647:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(string_data, "%-32s%-32s%-32s", data/libcgns-4.1.2/src/cgns_internals.c:8349:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(array->data_type, cgi_adf_datatype(m_type)); data/libcgns-4.1.2/src/cgns_internals.c:8350:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(array->name, arrayname); data/libcgns-4.1.2/src/cgns_internals.c:8477:21: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(temp, names[i]); data/libcgns-4.1.2/src/cgns_internals.c:8478:21: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(names[i], names[j]); data/libcgns-4.1.2/src/cgns_internals.c:8479:21: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(names[j], temp); data/libcgns-4.1.2/src/cgns_internals.c:8490:21: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(temp, names[i]); data/libcgns-4.1.2/src/cgns_internals.c:8491:21: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(names[i], names[j]); data/libcgns-4.1.2/src/cgns_internals.c:8492:21: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(names[j], temp); data/libcgns-4.1.2/src/cgns_internals.c:8741:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(Dzonename[0][(*ndouble)],zonename); data/libcgns-4.1.2/src/cgns_internals.c:9450:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (posit_stack[posit_depth].label, label); data/libcgns-4.1.2/src/cgns_internals.c:11146:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(lab, label[n]); data/libcgns-4.1.2/src/cgns_internals.c:11168:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(name, label[n]); data/libcgns-4.1.2/src/cgns_io.c:38:17: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. # define ACCESS access data/libcgns-4.1.2/src/cgns_io.c:246:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpfile, "%s.temp", filename); data/libcgns-4.1.2/src/cgns_io.c:254:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmpfile, "%s.temp", linkfile); data/libcgns-4.1.2/src/cgns_io.c:313:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(cgio_paths[cgio_n_paths], path); data/libcgns-4.1.2/src/cgns_io.c:372:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathname, filename); data/libcgns-4.1.2/src/cgns_io.c:384:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathname, parentfile); data/libcgns-4.1.2/src/cgns_io.c:392:17: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(p, filename); data/libcgns-4.1.2/src/cgns_io.c:404:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(pathname, filename); data/libcgns-4.1.2/src/cgns_io.c:442:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (p, filename); data/libcgns-4.1.2/src/cgns_io.c:473:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (p, filename); data/libcgns-4.1.2/src/cgns_io.c:504:17: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (p, filename); data/libcgns-4.1.2/src/cgns_io.c:1040:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(msg, cgio_ErrorMessage[errcode]); data/libcgns-4.1.2/src/cgns_io.c:1053:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(error_msg, msg); data/libcgns-4.1.2/src/cgnslib.c:47:17: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. # define ACCESS access data/libcgns-4.1.2/src/cgnslib.c:398:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(cg->filename, filename); data/libcgns-4.1.2/src/cgnslib.c:997:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(basename, base->name); data/libcgns-4.1.2/src/cgnslib.c:1086:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(base->name, basename); data/libcgns-4.1.2/src/cgnslib.c:1149:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(zonename, zone->name); data/libcgns-4.1.2/src/cgnslib.c:1265:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(zone->name,zonename); data/libcgns-4.1.2/src/cgnslib.c:1320:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(family_name, family->name); data/libcgns-4.1.2/src/cgnslib.c:1384:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( family_name_path, pch ); data/libcgns-4.1.2/src/cgnslib.c:1457:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( family->name, tok ); data/libcgns-4.1.2/src/cgnslib.c:1509:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(name, fam->famname[N-1].name); data/libcgns-4.1.2/src/cgnslib.c:1510:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(family, fam->famname[N-1].family); data/libcgns-4.1.2/src/cgnslib.c:1560:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(famname->name, name); data/libcgns-4.1.2/src/cgnslib.c:1561:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(famname->family, family); data/libcgns-4.1.2/src/cgnslib.c:1598:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( family->name, family_name ); data/libcgns-4.1.2/src/cgnslib.c:1682:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy( family_name, family->name ); data/libcgns-4.1.2/src/cgnslib.c:1743:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(famname->name, node_name); data/libcgns-4.1.2/src/cgnslib.c:1744:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(famname->family, family_name); data/libcgns-4.1.2/src/cgnslib.c:1793:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(node_name, famname->name); data/libcgns-4.1.2/src/cgnslib.c:1794:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(family_name, famname->family); data/libcgns-4.1.2/src/cgnslib.c:1818:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(fambc_name,family->fambc[BC-1].name); data/libcgns-4.1.2/src/cgnslib.c:1882:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(fambc->name, fambc_name); data/libcgns-4.1.2/src/cgnslib.c:1925:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(fambc_name,family->fambc[BC-1].name); data/libcgns-4.1.2/src/cgnslib.c:2003:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(fambc->name, fambc_name); data/libcgns-4.1.2/src/cgnslib.c:2034:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(geo_name,family->geo[G-1].name); data/libcgns-4.1.2/src/cgnslib.c:2035:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(CAD_name,family->geo[G-1].format); data/libcgns-4.1.2/src/cgnslib.c:2040:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(geo_file[0],family->geo[G-1].file); data/libcgns-4.1.2/src/cgnslib.c:2104:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(geo->name, geo_name); data/libcgns-4.1.2/src/cgnslib.c:2105:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(geo->format, CADname); data/libcgns-4.1.2/src/cgnslib.c:2117:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(geo->file, filename); data/libcgns-4.1.2/src/cgnslib.c:2164:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(geo_name,family->geo[G-1].name); data/libcgns-4.1.2/src/cgnslib.c:2165:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(CAD_name,family->geo[G-1].format); data/libcgns-4.1.2/src/cgnslib.c:2170:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(geo_file[0],family->geo[G-1].file); data/libcgns-4.1.2/src/cgnslib.c:2246:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(geo->name, geo_name); data/libcgns-4.1.2/src/cgnslib.c:2247:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(geo->format, CADname); data/libcgns-4.1.2/src/cgnslib.c:2259:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(geo->file, filename); data/libcgns-4.1.2/src/cgnslib.c:2294:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(part_name,family->geo[G-1].part[P-1].name); data/libcgns-4.1.2/src/cgnslib.c:2357:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(part->name, part_name); data/libcgns-4.1.2/src/cgnslib.c:2397:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(part_name,family->geo[G-1].part[P-1].name); data/libcgns-4.1.2/src/cgnslib.c:2472:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(part->name, part_name); data/libcgns-4.1.2/src/cgnslib.c:2512:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(discrete_name, discrete->name); data/libcgns-4.1.2/src/cgnslib.c:2570:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(discrete->name, discrete_name); data/libcgns-4.1.2/src/cgnslib.c:2683:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(discrete->ptset->data_type,CG_SIZE_DATATYPE); data/libcgns-4.1.2/src/cgnslib.c:2698:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(PointSetName, PointSetTypeName[ptset_type]); data/libcgns-4.1.2/src/cgnslib.c:2745:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(gridname,zcoor->name); data/libcgns-4.1.2/src/cgnslib.c:2802:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(zcoor->name,zcoorname); data/libcgns-4.1.2/src/cgnslib.c:2973:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(coordname, zcoor->coord[C-1].name); data/libcgns-4.1.2/src/cgnslib.c:3443:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(SectionName, section->name); data/libcgns-4.1.2/src/cgnslib.c:3534:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(section->name, SectionName); data/libcgns-4.1.2/src/cgnslib.c:3547:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(section->connect->data_type, CG_SIZE_DATATYPE); data/libcgns-4.1.2/src/cgnslib.c:3635:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(section->name, SectionName); data/libcgns-4.1.2/src/cgnslib.c:3648:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(section->connect->data_type, CG_SIZE_DATATYPE); data/libcgns-4.1.2/src/cgnslib.c:3656:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(section->connect_offset->data_type, CG_SIZE_DATATYPE); data/libcgns-4.1.2/src/cgnslib.c:3759:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(section->name, SectionName); data/libcgns-4.1.2/src/cgnslib.c:3768:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(section->connect->data_type,CG_SIZE_DATATYPE); data/libcgns-4.1.2/src/cgnslib.c:3803:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(section->connect_offset->data_type,CG_SIZE_DATATYPE); data/libcgns-4.1.2/src/cgnslib.c:5159:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(section->parelem->data_type, CG_SIZE_DATATYPE); data/libcgns-4.1.2/src/cgnslib.c:5201:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(section->parface->data_type, CG_SIZE_DATATYPE); data/libcgns-4.1.2/src/cgnslib.c:5247:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(section->parelem->data_type, CG_SIZE_DATATYPE); data/libcgns-4.1.2/src/cgnslib.c:5273:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(section->parface->data_type, CG_SIZE_DATATYPE); data/libcgns-4.1.2/src/cgnslib.c:5397:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(solname, sol->name); data/libcgns-4.1.2/src/cgnslib.c:5491:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(sol->name,solname); data/libcgns-4.1.2/src/cgnslib.c:5620:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(sol->ptset->data_type,CG_SIZE_DATATYPE); data/libcgns-4.1.2/src/cgnslib.c:5635:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(PointSetName, PointSetTypeName[ptset_type]); data/libcgns-4.1.2/src/cgnslib.c:5680:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(fieldname, field->name); data/libcgns-4.1.2/src/cgnslib.c:6016:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(name,subreg->name); data/libcgns-4.1.2/src/cgnslib.c:6066:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(bcname, subreg->bcname->text); data/libcgns-4.1.2/src/cgnslib.c:6080:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(gcname, subreg->gcname->text); data/libcgns-4.1.2/src/cgnslib.c:6143:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(subreg->name, name); data/libcgns-4.1.2/src/cgnslib.c:6178:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(subreg->ptset->data_type,CG_SIZE_DATATYPE); data/libcgns-4.1.2/src/cgnslib.c:6199:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(PointSetName, PointSetTypeName[subreg->ptset->type]); data/libcgns-4.1.2/src/cgnslib.c:6234:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(subreg->bcname->text, bcname); data/libcgns-4.1.2/src/cgnslib.c:6269:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(subreg->gcname->text, gcname); data/libcgns-4.1.2/src/cgnslib.c:6318:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(name,zconn->name); data/libcgns-4.1.2/src/cgnslib.c:6376:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(zconn->name,name); data/libcgns-4.1.2/src/cgnslib.c:6456:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(holename, hole->name); data/libcgns-4.1.2/src/cgnslib.c:6616:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(hole->name,holename); data/libcgns-4.1.2/src/cgnslib.c:6624:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ptset->data_type,CG_SIZE_DATATYPE); data/libcgns-4.1.2/src/cgnslib.c:6678:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(PointSetName, "%s", PointSetTypeName[ptset->type]); data/libcgns-4.1.2/src/cgnslib.c:6728:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(connectname, conn->name); data/libcgns-4.1.2/src/cgnslib.c:6735:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(donorname, conn->donor); data/libcgns-4.1.2/src/cgnslib.c:7041:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(conn->name,connectname); data/libcgns-4.1.2/src/cgnslib.c:7047:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(conn->ptset.data_type,CG_SIZE_DATATYPE); data/libcgns-4.1.2/src/cgnslib.c:7052:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(conn->donor,donorname); data/libcgns-4.1.2/src/cgnslib.c:7057:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(dptset->name,PointSetTypeName[donor_ptset_type]); data/libcgns-4.1.2/src/cgnslib.c:7059:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(dptset->data_type, CG_SIZE_DATATYPE); data/libcgns-4.1.2/src/cgnslib.c:7104:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (PointSetName, PointSetTypeName[conn->ptset.type]); data/libcgns-4.1.2/src/cgnslib.c:7114:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (PointSetName, PointSetTypeName[donor_ptset_type]); data/libcgns-4.1.2/src/cgnslib.c:7252:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(connectname, one21->name); data/libcgns-4.1.2/src/cgnslib.c:7253:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(donorname, one21->donor); data/libcgns-4.1.2/src/cgnslib.c:7298:17: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(connectname[n], connect); data/libcgns-4.1.2/src/cgnslib.c:7299:17: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(zonename[n],zone->name); data/libcgns-4.1.2/src/cgnslib.c:7300:17: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(donorname[n], donor); data/libcgns-4.1.2/src/cgnslib.c:7437:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(one21->name,connectname); data/libcgns-4.1.2/src/cgnslib.c:7439:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(one21->ptset.data_type,CG_SIZE_DATATYPE); data/libcgns-4.1.2/src/cgnslib.c:7443:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(one21->donor,donorname); data/libcgns-4.1.2/src/cgnslib.c:7445:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(one21->dptset.data_type,CG_SIZE_DATATYPE); data/libcgns-4.1.2/src/cgnslib.c:7528:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(boconame,boco->name); data/libcgns-4.1.2/src/cgnslib.c:7741:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(boco->name, boconame); data/libcgns-4.1.2/src/cgnslib.c:7746:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(boco->ptset->data_type,CG_SIZE_DATATYPE); data/libcgns-4.1.2/src/cgnslib.c:7787:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(PointSetName, PointSetTypeName[boco->ptset->type]); data/libcgns-4.1.2/src/cgnslib.c:7872:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(normal->data_type, cgi_adf_datatype(NormalDataType)); data/libcgns-4.1.2/src/cgnslib.c:7931:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(name, dataset->name); data/libcgns-4.1.2/src/cgnslib.c:8000:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(dataset->name, name); data/libcgns-4.1.2/src/cgnslib.c:8109:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(name, rmotion->name); data/libcgns-4.1.2/src/cgnslib.c:8175:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(rmotion->name,rmotionname); data/libcgns-4.1.2/src/cgnslib.c:8221:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(name, amotion->name); data/libcgns-4.1.2/src/cgnslib.c:8287:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(amotion->name,amotionname); data/libcgns-4.1.2/src/cgnslib.c:8378:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(bitername,biter->name); data/libcgns-4.1.2/src/cgnslib.c:8427:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(biter->name,bitername); data/libcgns-4.1.2/src/cgnslib.c:8452:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(zitername, ziter->name); data/libcgns-4.1.2/src/cgnslib.c:8495:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ziter->name,zitername); data/libcgns-4.1.2/src/cgnslib.c:9772:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(label[n-1], posit_stack[n].label); data/libcgns-4.1.2/src/cgnslib.c:9798:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(family_name,famname); data/libcgns-4.1.2/src/cgnslib.c:9821:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(famname, family_name); data/libcgns-4.1.2/src/cgnslib.c:9877:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(name, famname->name); data/libcgns-4.1.2/src/cgnslib.c:9878:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(family, famname->family); data/libcgns-4.1.2/src/cgnslib.c:9905:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(famname->name, name); data/libcgns-4.1.2/src/cgnslib.c:9906:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(famname->family, family); data/libcgns-4.1.2/src/cgnslib.c:9939:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(NormDefinitions[0], descr->text); data/libcgns-4.1.2/src/cgnslib.c:9977:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(converg->NormDefinitions->text, NormDefinitions); data/libcgns-4.1.2/src/cgnslib.c:10015:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(StateDescription[0], descr->text); data/libcgns-4.1.2/src/cgnslib.c:10051:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(state->StateDescription->text, StateDescription); data/libcgns-4.1.2/src/cgnslib.c:10505:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ModelName,ModelLabel); data/libcgns-4.1.2/src/cgnslib.c:10507:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(model->name, ModelName); data/libcgns-4.1.2/src/cgnslib.c:10688:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ArrayName, array->name); data/libcgns-4.1.2/src/cgnslib.c:10866:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(array->name, ArrayName); data/libcgns-4.1.2/src/cgnslib.c:10867:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(array->data_type, cgi_adf_datatype(DataType)); data/libcgns-4.1.2/src/cgnslib.c:10995:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(IntegralDataName, integral->name); data/libcgns-4.1.2/src/cgnslib.c:11014:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(integral->name, IntegralDataName); data/libcgns-4.1.2/src/cgnslib.c:11241:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(descr_text[0], descr->text); data/libcgns-4.1.2/src/cgnslib.c:11242:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(descr_name, descr->name); data/libcgns-4.1.2/src/cgnslib.c:11263:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(descr->name, descr_name); data/libcgns-4.1.2/src/cgnslib.c:11268:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(descr->text, descr_text); data/libcgns-4.1.2/src/cgnslib.c:11570:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(exponent->data_type, cgi_adf_datatype(DataType)); data/libcgns-4.1.2/src/cgnslib.c:11676:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(exponent->data_type, cgi_adf_datatype(DataType)); data/libcgns-4.1.2/src/cgnslib.c:11776:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(conversion->data_type, cgi_adf_datatype(DataType)); data/libcgns-4.1.2/src/cgnslib.c:12272:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(UserDataName, user_data->name); data/libcgns-4.1.2/src/cgnslib.c:12292:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(user_data->name, UserDataName); data/libcgns-4.1.2/src/cgnslib.c:12520:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ptset->name, PointSetTypeName[ptset->type]); data/libcgns-4.1.2/src/cgnslib.c:12521:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ptset->data_type,CG_SIZE_DATATYPE); data/libcgns-4.1.2/src/cgnslib.c:12579:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(name, dataset->name); data/libcgns-4.1.2/src/cgnslib.c:12666:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(dataset->name, name); data/libcgns-4.1.2/src/cgnstools/calclib/calc.c:182:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (errmsg, "can't handle data type %s", type); data/libcgns-4.1.2/src/cgnstools/calclib/calc.c:395:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (reference[n].name, name); data/libcgns-4.1.2/src/cgnstools/calclib/calc.c:469:5: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. printf (errnum < 0 ? "FATAL:" : "ERROR:"); data/libcgns-4.1.2/src/cgnstools/calclib/calc.c:969:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (coordinates[n].name, name); data/libcgns-4.1.2/src/cgnstools/calclib/calc.c:1077:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (variables[n].name, name); data/libcgns-4.1.2/src/cgnstools/calclib/calc.c:1116:11: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). cmd = strcpy (cmdstr, expression); data/libcgns-4.1.2/src/cgnstools/calclib/calc.c:1201:11: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). cmd = strcpy (cmdstr, expression); data/libcgns-4.1.2/src/cgnstools/calclib/calc.c:1264:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (sym, name); data/libcgns-4.1.2/src/cgnstools/calclib/calctest.c:56:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (buff, p); data/libcgns-4.1.2/src/cgnstools/calclib/calctest.c:74:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (&buff[n], p); data/libcgns-4.1.2/src/cgnstools/calclib/calctest.c:172:13: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. printf (pmt); data/libcgns-4.1.2/src/cgnstools/calclib/calctest.c:296:17: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access (p, 0)) { data/libcgns-4.1.2/src/cgnstools/calclib/calctest.c:297:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (errmsg, "results file <%s> does not exist", p); data/libcgns-4.1.2/src/cgnstools/calclib/calctest.c:312:17: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access (p, 0)) { data/libcgns-4.1.2/src/cgnstools/calclib/calctest.c:313:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (errmsg, "command file <%s> does not exist", p); data/libcgns-4.1.2/src/cgnstools/calclib/calctest.c:317:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (errmsg, "couldn't open command file <%s>", p); data/libcgns-4.1.2/src/cgnstools/calclib/calctest.c:345:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (errmsg, "couldn't open command file <%s>", argv[n]); data/libcgns-4.1.2/src/cgnstools/calclib/vec.c:2139:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (err_msg[VECERR_MATH], data/libcgns-4.1.2/src/cgnstools/calclib/vec.c:2143:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (err_msg[VECERR_MATH], data/libcgns-4.1.2/src/cgnstools/calclib/vec.c:2147:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (err_msg[VECERR_MATH], data/libcgns-4.1.2/src/cgnstools/calclib/vec.c:2151:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (err_msg[VECERR_MATH], data/libcgns-4.1.2/src/cgnstools/calclib/vec.c:2155:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (err_msg[VECERR_MATH], data/libcgns-4.1.2/src/cgnstools/calclib/vec.c:2159:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (err_msg[VECERR_MATH], data/libcgns-4.1.2/src/cgnstools/calclib/vec.c:2163:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (err_msg[VECERR_MATH], data/libcgns-4.1.2/src/cgnstools/calclib/vec.c:2196:9: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf (fp, HEADER1); data/libcgns-4.1.2/src/cgnstools/calclib/vec.c:2197:9: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf (fp, HEADER2); data/libcgns-4.1.2/src/cgnstools/calclib/vec.c:2426:13: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf (fp, FORMAT, opname, pop, push, stack_size); data/libcgns-4.1.2/src/cgnstools/calclib/vec.c:2429:9: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf (fp, FORMAT, "RESULT", 1, 0, --stack_size); data/libcgns-4.1.2/src/cgnstools/calclib/vecsym.c:130:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (vecsym_name(sym), name); data/libcgns-4.1.2/src/cgnstools/calclib/vecsym.c:272:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (vecsym_equstr(sym), equ); data/libcgns-4.1.2/src/cgnstools/calclib/vecsym.c:336:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (vecsym_macro(sym), macro); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:27:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (message, "error_exit {%s}", errmsg); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:31:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (p, "%s\n", str); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:37:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (p, errmsg); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:50:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (message, "%s(%d)", vecsym_name(sym), data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:53:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (message, vecsym_name(sym)); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:57:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (message, "%s(...)", vecsym_name(sym)); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:59:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (message, "%s(%d)", vecsym_name(sym), vecsym_nargs(sym)); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:62:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (message, "%s[%ld]", vecsym_name(sym), data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:65:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (message, vecsym_name(sym)); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:161:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (p, "Name : %s\n", BaseName); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:168:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (p, "Data Class: %s\n", cg_DataClassName(BaseClass)); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:170:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (p, "Units : %s %s %s %s %s", data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:177:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (p, "Data Class: %s\n", DataClassName[BaseClass]); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:179:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (p, "Units : %s %s %s %s %s", data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:234:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (p, "Name : %s\nType : %s\n", ZoneName, data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:252:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (p, "Data Class: %s\n", cg_DataClassName(ZoneClass)); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:254:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (p, "Units : %s %s %s %s %s", data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:261:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (p, "Data Class: %s\n", DataClassName[ZoneClass]); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:263:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (p, "Units : %s %s %s %s %s", data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:313:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (p, "Name : %s\nLocation : %s\n", SolnName, data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:337:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (p, "Data Class: %s\n", cg_DataClassName(SolnClass)); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:339:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (p, "Units : %s %s %s %s %s", data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:346:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (p, "Data Class: %s\n", DataClassName[SolnClass]); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:348:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (p, "Units : %s %s %s %s %s", data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:411:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (message, "'%s[%d]", coordinates[n].name, data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:414:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (message, "%s[%d]", coordinates[n].name, data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:419:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (message, "%s[%d]", variables[n].name, data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:425:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (message, "~%s[%d]", reference[n].name, data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:428:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (message, "~%s", reference[n].name); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:438:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (message, "'%s", coordinates[n].name); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:447:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (message, "~%s", reference[n].name); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:476:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (p, "Name : %s\n", var->name); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:487:11: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (p, "Type : %s\nLocation : Vertex\n", data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:497:11: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (p, "Type : Solution\nLocation : %s\n", data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:516:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (p, "Data Class: %s\nData Type : %s\n", data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:525:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (p, "Units : %s %s %s %s %s\n", data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:595:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (p, "Name : %s\n", vecsym_name(sym)); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:622:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (p, "\nUnits : %s %s %s %s %s\n", data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:670:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (message, "%s(%d)", vecsym_name(sym), data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:673:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (message, vecsym_name(sym)); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:677:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (message, "%s(...)", vecsym_name(sym)); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:679:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (message, "%s(%d)", vecsym_name(sym), vecsym_nargs(sym)); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:682:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (message, "%s = %g", vecsym_name(sym), vecsym_value(sym)); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:690:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (message, "%s -> len = %ld, min = %g, max = %g", data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:694:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (message, vecsym_name(sym)); data/libcgns-4.1.2/src/cgnstools/cgnscalc/winmain.c:179:5: [4] (format) vsprintf: Potential format string problem (CWE-134). Make format string constant. vsprintf(buf, format, argList); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:185:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (cmd, "error_exit {%s}", errmsg); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:198:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (msg, "%s:malloc failed for %lu bytes", funcname, data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:220:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (msg, "%s:realloc failed for %lu bytes", funcname, data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:238:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (msg, "%s:malloc failed for face with %d nodes", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:273:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (cmd, "display_message {Zone %d : %s %s...}", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:276:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (cmd, "display_message {Zone %d : %s...}", cgnszone, msg); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:1167:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (z->regs[nr].name, name); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:1172:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (z->regs[nr].d_name, d_name); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:1193:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (z->regs[nr].name, name); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:1204:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (z->regs[nr].d_name, d_name); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:1243:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (z->regs[nr].name, name); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:1316:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (z->regs[nr].name, name); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:2037:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (z->regs[nr].name, name); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:2230:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (z->regs[nr].name, name); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:2235:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (z->regs[nr].d_name, d_name); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:2257:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (z->regs[nr].name, name); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:2267:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (z->regs[nr].d_name, d_name); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:2311:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (z->regs[nr].name, name); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:2391:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (z->regs[nr].name, name); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:2906:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (zones[nz-1].name, buff); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3145:17: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(buff, z->regs[nr].name); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3148:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buff, "<Element Sections>/%s", z->regs[nr].name); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3151:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buff, "<1to1 Connections>/%s", z->regs[nr].name); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3154:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buff, "<General Connections>/%s", z->regs[nr].name); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3157:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buff, "<Overset Holes>/%s", z->regs[nr].name); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3160:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buff, "<Boundary Conditions>/%s", z->regs[nr].name); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3163:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buff, "<Mesh Boundaries>/%s", z->regs[nr].name); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3443:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (buff, "\n%-19s: %d", cntname[n], cnts[n]); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3648:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (buff, r->name); data/libcgns-4.1.2/src/cgnstools/cgnsplot/winmain.c:182:5: [4] (format) vsprintf: Potential format string problem (CWE-134). Make format string constant. vsprintf(buf, format, argList); data/libcgns-4.1.2/src/cgnstools/cgnsview/winmain.c:179:5: [4] (format) vsprintf: Potential format string problem (CWE-134). Make format string constant. vsprintf(buf, format, argList); data/libcgns-4.1.2/src/cgnstools/common/winhtml.c:55:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (hlpfile, argv[2]); data/libcgns-4.1.2/src/cgnstools/common/winhtml.c:57:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (winname, argv[3]); data/libcgns-4.1.2/src/cgnstools/common/winhtml.c:71:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (&hlpfile[n], ">%s", winname); data/libcgns-4.1.2/src/cgnstools/common/winhtml.c:87:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (&hlpfile[n], "::/%s", argv[2]); data/libcgns-4.1.2/src/cgnstools/common/winhtml.c:90:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (p, "#%s", argv[3]); data/libcgns-4.1.2/src/cgnstools/common/winhtml.c:94:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (p, ">%s", winname); data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:864:4: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (matface [imat].name, buf); data/libcgns-4.1.2/src/cgnstools/tkogl/tkogl.c:822:4: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (ptr->name, extname); data/libcgns-4.1.2/src/cgnstools/utilities/aflr3_to_cgns.c:15:16: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. #define ACCESS access data/libcgns-4.1.2/src/cgnstools/utilities/aflr3_to_cgns.c:610:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(name, "%s %d", bcname, ns+1); data/libcgns-4.1.2/src/cgnstools/utilities/aflr3_to_cgns.c:629:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(name, "%s %d", bcname, ns+1+nTriSets); data/libcgns-4.1.2/src/cgnstools/utilities/aflr3_to_cgns.c:697:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(basename, argv[argind++]); data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:365:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (msg, "%s: %s", funcname, errmsg[errcode-1]); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsImport.c:437:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (reglist[n].name, reglist[n-1].name); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsImport.c:1194:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(var_names[num_vars++], varname); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsImport.c:1457:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (region_name, "%s%ld", REGION_BASE, (long)region_id); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsImport.c:1622:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (names, reglist[n].name); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_aflr3.c:11:16: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. #define ACCESS access data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_aflr3.c:396:25: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_aflr3.c:446:21: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_aflr3.c:929:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(Bocos[nb-1].name, name); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_aflr3.c:1354:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(outfile, argv[argind]); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_aflr3.c:1407:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(mapbc, outfile); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_fast.c:11:16: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. #define ACCESS access data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_fast.c:244:25: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_fast.c:274:21: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_fast.c:637:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(Bocos[nb-1].name, name); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_fast.c:952:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(fastfile, argv[argind]); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_fast.c:993:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(mapbc, fastfile); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_plot3d.c:243:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (buff, xyzfile); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_plot3d.c:665:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (buff, qfile); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_vtk.c:398:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (vars[nv].name, name); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_vtk.c:407:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (name, vars[nv].name); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_vtk.c:823:13: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat (outfile, buff); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:14:10: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. # define access _access data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:322:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access (file, 0) || stat (file, &st) || data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:337:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access (file, 1) || stat (file, &st) || data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:364:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (p, exts[n]); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:392:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (exepath, exename); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:411:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (p, &exename[1]); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:415:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (p, &exename[2]); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:423:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (p, exename); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:433:21: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). return (strcpy (exepath, exename)); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:447:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (p, &exename[1]); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:451:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (p, &exename[2]); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:464:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (exepath, p); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:477:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (p, exename); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:483:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (p, exename); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:503:16: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). return strcpy (pathname, filename); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:506:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (pathname, p); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:509:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (p+1, filename); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:560:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (temp, "%s.tmp", basename); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:564:13: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access (temp, 0)) return temp; data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:686:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (Zones[nz].name, buff); data/libcgns-4.1.2/src/cgnstools/utilities/convert_dataclass.c:12:10: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. # define access _access data/libcgns-4.1.2/src/cgnstools/utilities/convert_dataclass.c:283:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (buff, p); data/libcgns-4.1.2/src/cgnstools/utilities/convert_dataclass.c:301:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (&buff[n], p); data/libcgns-4.1.2/src/cgnstools/utilities/convert_dataclass.c:325:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (buff, "couldn't open <%s> for reading", cnvfile); data/libcgns-4.1.2/src/cgnstools/utilities/convert_dataclass.c:379:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access (argv[argind], 0)) data/libcgns-4.1.2/src/cgnstools/utilities/convert_dataclass.c:427:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (msg, "rename %s -> %s failed", tmpfile, argv[argind]); data/libcgns-4.1.2/src/cgnstools/utilities/convert_location.c:248:29: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (s->name, "%s%d", solname, s->id); data/libcgns-4.1.2/src/cgnstools/utilities/convert_location.c:266:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (msg, "rename %s -> %s failed", tmpfile, argv[argind]); data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:102:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (refs[n].name, name); data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:145:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (vars[n].name, s->flds[n].name); data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:168:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (s->flds[i].name, vars[n].name); data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:275:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (vars[numvars].name, name); data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:363:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (buff, p); data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:381:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (&buff[n], p); data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:405:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (buff, "couldn't open <%s> for reading", cmdfile); data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:531:29: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (s->name, "%s%d", solname, s->id); data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:549:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (msg, "rename %s -> %s failed", tmpfile, argv[argind]); data/libcgns-4.1.2/src/cgnstools/utilities/extract_subset.c:734:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (msg, "rename %s -> %s failed", tmpfile, argv[argind]); data/libcgns-4.1.2/src/cgnstools/utilities/fast_to_cgns.c:15:16: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. #define ACCESS access data/libcgns-4.1.2/src/cgnstools/utilities/fast_to_cgns.c:398:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(name, "%s %d", bcname, ns+1); data/libcgns-4.1.2/src/cgnstools/utilities/fast_to_cgns.c:466:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(basename, argv[argind++]); data/libcgns-4.1.2/src/cgnstools/utilities/interpolate_cgns.c:975:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (sol->flds[nf].name, basezones->sols->flds[nf].name); data/libcgns-4.1.2/src/cgnstools/utilities/interpolate_cgns.c:1158:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (buff, "%s.temp", tmpfile); data/libcgns-4.1.2/src/cgnstools/utilities/interpolate_cgns.c:1196:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (msg, "rename %s -> %s failed", tmpfile, argv[argind]); data/libcgns-4.1.2/src/cgnstools/utilities/patran_to_cgns.c:152:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (buffer, "can't open <%s> for reading", argv[argind]); data/libcgns-4.1.2/src/cgnstools/utilities/plot3d_to_cgns.c:271:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (sol->flds[nv].name, fldnames[nv]); data/libcgns-4.1.2/src/cgnstools/utilities/plot3d_to_cgns.c:333:17: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (flds[nv].name, fldnames[4+nv]); data/libcgns-4.1.2/src/cgnstools/utilities/tetgen_to_cgns.c:8:10: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. # define access _access data/libcgns-4.1.2/src/cgnstools/utilities/tetgen_to_cgns.c:280:14: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (0 == access(fname, 0)) { data/libcgns-4.1.2/src/cgnstools/utilities/tetgen_to_cgns.c:292:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ext, dim == 2 ? ".ele" : ".face"); data/libcgns-4.1.2/src/cgnstools/utilities/tetgen_to_cgns.c:671:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(basename, argv[1]); data/libcgns-4.1.2/src/cgnstools/utilities/tetgen_to_cgns.c:690:18: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (0 == access(basename, 0)) { data/libcgns-4.1.2/src/cgnstools/utilities/tetgen_to_cgns.c:695:22: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (0 == access(basename, 0)) { data/libcgns-4.1.2/src/cgnstools/utilities/tetgen_to_cgns.c:702:22: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (0 == access(basename, 0)) { data/libcgns-4.1.2/src/cgnstools/utilities/tetgen_to_cgns.c:708:22: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (0 == access(basename, 0)) { data/libcgns-4.1.2/src/cgnstools/utilities/update_ngon.c:18:16: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. #define ACCESS access data/libcgns-4.1.2/src/cgnstools/utilities/update_ngon.c:545:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tempfile, "%s.temp", outfile); data/libcgns-4.1.2/src/cgnstools/utilities/update_ngon.c:614:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(msg, "rename %s -> %s failed", tempfile, outfile); data/libcgns-4.1.2/src/cgnstools/utilities/vgrid_to_cgns.c:15:16: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. #define ACCESS access data/libcgns-4.1.2/src/cgnstools/utilities/vgrid_to_cgns.c:526:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(basename, argv[argind++]); data/libcgns-4.1.2/src/pcgnslib.c:910:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(section->parelem->data_type, CG_SIZE_DATATYPE); data/libcgns-4.1.2/src/pcgnslib.c:933:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(section->parface->data_type, CG_SIZE_DATATYPE); data/libcgns-4.1.2/src/ptests/benchmark.c:28:25: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. # define DEBUG_PRINT(A) printf A;fflush(stdout); data/libcgns-4.1.2/src/ptests/benchmark_hdf5.c:822:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(fname, "timing_%06d_%s.dat", comm_size, PIOMODE[piomode]); data/libcgns-4.1.2/src/ptests/cexample.c:10:25: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. # define DEBUG_PRINT(A) printf A;fflush(stdout); data/libcgns-4.1.2/src/ptests/pcgns_ctest.c:12:25: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. # define DEBUG_PRINT(A) printf A;fflush(stdout); data/libcgns-4.1.2/src/ptests/thesis_benchmark.c:190:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(zonename,"%s %d","Zone",k); data/libcgns-4.1.2/src/tests/test_ver31.c:391:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(zcname, "%s%d", ZCONN_NAME, nc); data/libcgns-4.1.2/src/tests/test_ver31.c:409:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "Zone1/%s/%s", zcname, cname); data/libcgns-4.1.2/src/tests/test_ver31.c:432:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "Zone2/%s/%s", zcname, cname); data/libcgns-4.1.2/src/tests/test_ver31.c:440:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "Zone1/%s/%s", zcname, hname); data/libcgns-4.1.2/src/tests/test_ver31.c:448:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "Zone2/%s/%s", zcname, hname); data/libcgns-4.1.2/src/tests/test_ver31.c:484:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cname, "%s2/conn2", ZCONN_NAME); data/libcgns-4.1.2/src/tests/test_ver31.c:488:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "cg_subreg_gcname_write(%s)", sname); data/libcgns-4.1.2/src/tests/test_ver31.c:516:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "cg_subreg_ptset_write(%s PointRange)", sname); data/libcgns-4.1.2/src/tests/test_ver31.c:520:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "cg_goto %s", sname); data/libcgns-4.1.2/src/tests/test_ver31.c:524:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "cg_rind_write %s", sname); data/libcgns-4.1.2/src/tests/test_ver31.c:529:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "cg_array_write %s", sname); data/libcgns-4.1.2/src/tests/test_ver31.c:534:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "cg_exponents_write %s", sname); data/libcgns-4.1.2/src/tests/test_ver31.c:541:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "cg_subreg_ptset_write(%s PointList)", sname); data/libcgns-4.1.2/src/tests/test_ver31.c:545:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "cg_goto %s", sname); data/libcgns-4.1.2/src/tests/test_ver31.c:550:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "cg_array_write %s", sname); data/libcgns-4.1.2/src/tests/test_ver31.c:555:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "cg_exponents_write %s", sname); data/libcgns-4.1.2/src/tests/test_ver31.c:586:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(zcname, "%s%d", ZCONN_NAME, nc); data/libcgns-4.1.2/src/tests/test_ver31.c:588:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(&cpointers[n], zcname); data/libcgns-4.1.2/src/tests/test_ver31.c:592:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(&spointers[n], sname); data/libcgns-4.1.2/src/tests/test_ver31.c:599:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "%s:cg_ziter_write", name); data/libcgns-4.1.2/src/tests/test_ver31.c:603:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "%s:cg_goto", name); data/libcgns-4.1.2/src/tests/test_ver31.c:608:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "%s:cg_array_write ZoneGridConnectivityPointers", data/libcgns-4.1.2/src/tests/test_ver31.c:614:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "%s:cg_array_write ZoneSubRegionPointers", data/libcgns-4.1.2/src/tests/test_ver31.c:674:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(zcname, "%s%d", ZCONN_NAME, nc); data/libcgns-4.1.2/src/tests/test_ver31.c:692:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "Zone1/%s/%s", name); data/libcgns-4.1.2/src/tests/test_ver31.c:698:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "Zone2/%s/%s", zcname, name); data/libcgns-4.1.2/src/tests/test_ver31.c:720:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "Zone1/%s/%s", zcname, name); data/libcgns-4.1.2/src/tests/test_ver31.c:735:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "Zone2/%s/%s", zcname, name); data/libcgns-4.1.2/src/tests/test_ver31.c:754:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "Zone1/%s/%s", zcname, name); data/libcgns-4.1.2/src/tests/test_ver31.c:771:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "Zone2/%s/%s", zcname, name); data/libcgns-4.1.2/src/tests/test_ver31.c:781:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "Zone1/%s/%s", zcname, name); data/libcgns-4.1.2/src/tests/test_ver31.c:789:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "Zone2/%s/%s", zcname, name); data/libcgns-4.1.2/src/tests/test_ver31.c:821:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(zcname, "%s%d", ZCONN_NAME, nc); data/libcgns-4.1.2/src/tests/test_ver31.c:823:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(&pointers[n], zcname); data/libcgns-4.1.2/src/tests/test_ver31.c:830:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "%s:cg_ziter_write", name); data/libcgns-4.1.2/src/tests/test_ver31.c:834:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "%s:cg_goto", name); data/libcgns-4.1.2/src/tests/test_ver31.c:839:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "%s:cg_array_write", name); data/libcgns-4.1.2/src/tests/test_ver31.c:856:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "%s:cg_zconn_read", zcname); data/libcgns-4.1.2/src/tests/test_ver31.c:861:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "%s:cg_zconn_set", zcname); data/libcgns-4.1.2/src/tests/test_ver31.c:867:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "zconn %s not found", zcname); data/libcgns-4.1.2/src/tests/test_ver31.c:899:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "%s:cg_nconns", zcname); data/libcgns-4.1.2/src/tests/test_ver31.c:903:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "%s:cg_n1to1", zcname); data/libcgns-4.1.2/src/tests/test_ver31.c:907:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "%s:nconns=%d", zcname, (nconn + n1to1)); data/libcgns-4.1.2/src/tests/test_ver31.c:915:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "%s:cg_1to1_read", zcname); data/libcgns-4.1.2/src/tests/test_ver31.c:928:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "%s:cg_conn_info", zcname); data/libcgns-4.1.2/src/tests/test_ver31.c:934:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "%s:conn name %s != %s", zcname, name, expected); data/libcgns-4.1.2/src/tests/test_ver31.c:939:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "%s:cg_zconn_set", zcname); data/libcgns-4.1.2/src/tests/test_ver31.c:943:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "%s:nholes=%d", zcname, nholes); data/libcgns-4.1.2/src/tests/test_ver31.c:948:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "%s:cg_hole_info", zcname); data/libcgns-4.1.2/src/tests/test_ver31.c:953:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(errmsg, "%s:hole name %s != %s", zcname, name, expected); data/libcgns-4.1.2/src/tests/write_test.c:505:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(pathname, "/%s/Zone%d/%s", basename, nz, nodename); data/libcgns-4.1.2/src/tools/cgnames.c:450:21: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (p, "%s#", Identifier[n].name); data/libcgns-4.1.2/src/tools/cgnames.c:452:21: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (p, Identifier[n].name); data/libcgns-4.1.2/src/tools/cgnames.c:475:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (name, "%s#", Identifier[n].name); data/libcgns-4.1.2/src/tools/cgnames.c:477:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (name, Identifier[n].name); data/libcgns-4.1.2/src/tools/cgnscheck.c:13:10: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. # define access _access data/libcgns-4.1.2/src/tools/cgnscheck.c:150:9: [4] (format) vprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vprintf (format, arg); data/libcgns-4.1.2/src/tools/cgnscheck.c:164:9: [4] (format) vprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vprintf (format, arg); data/libcgns-4.1.2/src/tools/cgnscheck.c:187:5: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf (stderr, format, arg); data/libcgns-4.1.2/src/tools/cgnscheck.c:362:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (temp, "%s.tmp", basename); data/libcgns-4.1.2/src/tools/cgnscheck.c:366:13: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access (temp, 0)) return temp; data/libcgns-4.1.2/src/tools/cgnscheck.c:1191:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (z->name, name); data/libcgns-4.1.2/src/tools/cgnscheck.c:2511:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (GridCoordinate[ng-1], name); data/libcgns-4.1.2/src/tools/cgnscheck.c:4229:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (ZoneConn[nzc-1], zcname); data/libcgns-4.1.2/src/tools/cgnscheck.c:4286:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (ArbitraryGrid[na-1], name); data/libcgns-4.1.2/src/tools/cgnscheck.c:4390:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (RigidGrid[nr-1], name); data/libcgns-4.1.2/src/tools/cgnscheck.c:4571:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (FlowSolution[ns-1], name); data/libcgns-4.1.2/src/tools/cgnscheck.c:4839:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (ZoneSubReg[ns-1], name); data/libcgns-4.1.2/src/tools/cgnscheck.c:5965:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (Family[nf], name); data/libcgns-4.1.2/src/tools/cgnsconvert.c:83:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tempfile, "%s.temp", outfile); data/libcgns-4.1.2/src/tools/cgnsdiff.c:252:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (newname, name); data/libcgns-4.1.2/src/tools/cgnsdiff.c:365:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (path1, "%s/%s", name1, p); data/libcgns-4.1.2/src/tools/cgnsdiff.c:369:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (path2, "%s/%s", name2, p); data/libcgns-4.1.2/src/tools/cgnsnames.c:26:17: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat (den, term); data/libcgns-4.1.2/src/tools/cgnsnames.c:28:17: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat (num, term); data/libcgns-4.1.2/src/cgns_io.c:415:13: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. p = getenv ("ADF_LINK_PATH"); data/libcgns-4.1.2/src/cgns_io.c:418:13: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. p = getenv ("HDF5_LINK_PATH"); data/libcgns-4.1.2/src/cgns_io.c:452:9: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. p = getenv ("CGNS_LINK_PATH"); data/libcgns-4.1.2/src/cgnslib.c:702:22: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. char *type = getenv("CGNS_FILETYPE"); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:460:22: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. if (NULL == (p = getenv ("PATH"))) data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_bc_str.c:34:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char boconame[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_bcpnts_str.c:36:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char boconame[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_bcpnts_unst.c:37:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char boconame[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_con2zn_genrl_str.c:33:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char donorname[33],connectname[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_con2zn_str.c:31:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char donorname[33],connectname[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_convergence.c:32:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char arrayname[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_descriptor.c:28:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *text,name[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_dimensional.c:38:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fieldname[33],coordname[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_discreteface_str.c:44:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char zonename[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_flowcent_str.c:41:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char zonename[33],solname[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_flowcentrind_str.c:43:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char zonename[33],solname[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_flowvert_str.c:41:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char zonename[33],solname[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_flowvert_unst.c:37:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char zonename[33],solname[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_grid2zn_str.c:39:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char zonename[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_grid_str.c:38:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char zonename[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_grid_unst.c:33:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char zonename[33],sectionname[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_nondimensional.c:31:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *state,arrayname[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_timevert_str.c:48:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char zonename[33],bitername[33],zitername[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_timevert_str.c:49:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char arrayname[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_timevert_str.c:50:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char solname[97],solname2[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_timevert_str.c:51:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sn[3][33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_bc_str.c:34:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char zonename[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_bcpnts_str.c:37:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char zonename[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_con2zn_genrl_str.c:36:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char donorname[33],zonename0[33],zonename1[33],zn[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_con2zn_str.c:33:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char donorname[33],zonename0[33],zonename1[33],zn[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_descriptor.c:29:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char textstring[74]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_descriptor.c:41:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(textstring,"Supersonic vehicle with landing gear\n"); data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_descriptor.c:42:5: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(textstring,"M=4.6, Re=6 million"); data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_dimensional.c:37:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fieldname[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_flowcent_str.c:40:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char solname[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_flowcent_str.c:69:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(solname,"FlowSolution"); data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_flowcentrind_str.c:43:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char solname[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_flowcentrind_str.c:95:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(solname,"FlowSolution"); data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_flowvert_str.c:40:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char solname[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_flowvert_str.c:69:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(solname,"FlowSolution"); data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_flowvert_unst.c:36:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char solname[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_flowvert_unst.c:67:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(solname,"FlowSolution"); data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_grid2zn_str.c:40:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char basename[33],zonename[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_grid2zn_str.c:69:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(basename,"Base"); data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_grid2zn_str.c:86:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(zonename,"Zone 1"); data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_grid2zn_str.c:97:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(zonename,"Zone 2"); data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_grid_str.c:40:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char basename[33],zonename[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_grid_str.c:66:4: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(basename,"Base"); data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_grid_str.c:71:4: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(zonename,"Zone 1"); data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_grid_unst.c:35:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char basename[33],zonename[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_grid_unst.c:63:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(basename,"Base"); data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_grid_unst.c:68:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(zonename,"Zone 1"); data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_timevert_str.c:48:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sn[3][33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_timevert_str.c:49:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char solname[97]; /* need an extra byte for the terminating 0 */ data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_timevert_str.c:89:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(sn[0],"FlowSolution1"); data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_timevert_str.c:90:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(sn[1],"FlowSolution2"); data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/write_timevert_str.c:91:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(sn[2],"FlowSolution3"); data/libcgns-4.1.2/src/Test_UserGuideCode/C_code_parallel/read_flowcentrind_str_parinzone.c:30:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char zonename[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code_parallel/read_flowcentrind_str_paroverzone.c:29:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char zonename[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code_parallel/read_grid_str_parinzone.c:24:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char zonename[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code_parallel/read_grid_str_paroverzone.c:23:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char zonename[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code_parallel/write_flowcentrind_str_parinzone.c:27:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char solname[33], zonename[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code_parallel/write_flowcentrind_str_parinzone.c:46:4: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(solname, "FlowSolution"); data/libcgns-4.1.2/src/Test_UserGuideCode/C_code_parallel/write_flowcentrind_str_paroverzone.c:27:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char solname[33], zonename[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code_parallel/write_flowcentrind_str_paroverzone.c:50:8: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(solname, "FlowSolution"); data/libcgns-4.1.2/src/Test_UserGuideCode/C_code_parallel/write_grid_str_parinzone.c:27:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char basename[33], zonename[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code_parallel/write_grid_str_parinzone.c:37:4: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(basename, "Base"); data/libcgns-4.1.2/src/Test_UserGuideCode/C_code_parallel/write_grid_str_parinzone.c:46:4: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(zonename, "Zone %d", 1); data/libcgns-4.1.2/src/Test_UserGuideCode/C_code_parallel/write_grid_str_paroverzone.c:33:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char basename[33], zonename[33]; data/libcgns-4.1.2/src/Test_UserGuideCode/C_code_parallel/write_grid_str_paroverzone.c:43:4: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(basename, "Base"); data/libcgns-4.1.2/src/Test_UserGuideCode/C_code_parallel/write_grid_str_paroverzone.c:55:8: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(zonename, "Zone %d", idxZone + 1); data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:99:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[ ADF_NAME_LENGTH + 1 ] ; data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:129:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[ ADF_FILENAME_LENGTH + 1 ] ; data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:192:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_filename[ ADF_FILENAME_LENGTH + 1 ], data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:226:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_format[ ADF_NAME_LENGTH + 1 ] ; data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:268:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char msg_buf[ADF_MAX_ERROR_STR_LENGTH+1] ; data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:296:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ctype[ ADF_DATA_TYPE_LENGTH + 1 ] ; data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:343:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char clabel[ ADF_LABEL_LENGTH + 1 ] ; data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:369:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cpath[ ADF_MAX_LINK_DATA_SIZE + 1 ], data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:402:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cname[ ADF_NAME_LENGTH + 1 ] ; data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:439:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[ ADF_FILENAME_LENGTH + 1 ] ; data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:487:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[ ADF_FILENAME_LENGTH + 1 ], data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:561:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_data_type[ ADF_DATA_TYPE_LENGTH + 1 ] ; data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:591:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[ ADF_NAME_LENGTH + 1 ] ; data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:623:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data_type[ ADF_DATA_TYPE_LENGTH + 1 ] ; data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:624:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char errmsg[ ADF_MAX_ERROR_STR_LENGTH + 1 ] ; data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:680:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data_type[ ADF_DATA_TYPE_LENGTH + 1 ] ; data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:681:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char errmsg[ ADF_MAX_ERROR_STR_LENGTH + 1 ] ; data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:773:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data_type[ ADF_DATA_TYPE_LENGTH + 1 ] ; data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:774:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char errmsg[ ADF_MAX_ERROR_STR_LENGTH + 1 ] ; data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:832:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_label[ ADF_LABEL_LENGTH + 1 ] ; data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:864:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data_type[ ADF_DATA_TYPE_LENGTH + 1 ] ; data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:865:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char errmsg[ ADF_MAX_ERROR_STR_LENGTH + 1 ] ; data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:942:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data_type[ ADF_DATA_TYPE_LENGTH + 1 ] ; data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:943:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char errmsg[ ADF_MAX_ERROR_STR_LENGTH + 1 ] ; data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:1025:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data_type[ ADF_DATA_TYPE_LENGTH + 1 ] ; data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:1026:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char errmsg[ ADF_MAX_ERROR_STR_LENGTH + 1 ] ; data/libcgns-4.1.2/src/adf/ADF_interface.c:1004:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char header[33]; data/libcgns-4.1.2/src/adf/ADF_interface.c:1015:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fp = fopen(filename, "rb")) == NULL) { data/libcgns-4.1.2/src/adf/ADF_interface.c:1270:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char err_msg_str[ADF_MAX_ERROR_STR_LENGTH+1] ; data/libcgns-4.1.2/src/adf/ADF_interface.c:1286:4: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( error_string, "ADF: Unrecognized error number %d.", data/libcgns-4.1.2/src/adf/ADF_interface.c:1542:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char link_data[ADF_FILENAME_LENGTH + ADF_MAX_LINK_DATA_SIZE + 1 + 1] ; data/libcgns-4.1.2/src/adf/ADF_interface.c:1637:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char link_data[ADF_FILENAME_LENGTH + ADF_MAX_LINK_DATA_SIZE + 1 + 1] ; data/libcgns-4.1.2/src/adf/ADF_interface.c:2087:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char link_data[ADF_FILENAME_LENGTH + data/libcgns-4.1.2/src/adf/ADF_interface.c:2206:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char child_name[ ADF_NAME_LENGTH ] ; data/libcgns-4.1.2/src/adf/ADF_interface.c:3299:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tag[TAG_SIZE+1] ; data/libcgns-4.1.2/src/adf/ADF_interface.c:3580:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tag[TAG_SIZE+1] ; data/libcgns-4.1.2/src/adf/ADF_interface.c:3940:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tag[TAG_SIZE+1] ; data/libcgns-4.1.2/src/adf/ADF_internals.c:192:17: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). # define OPEN open data/libcgns-4.1.2/src/adf/ADF_internals.c:252:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char block_of_ZZ[ SMALLEST_CHUNK_SIZE ] ; data/libcgns-4.1.2/src/adf/ADF_internals.c:255:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char block_of_XX[ DISK_BLOCK_SIZE ] ; data/libcgns-4.1.2/src/adf/ADF_internals.c:258:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char block_of_00[ DISK_BLOCK_SIZE ] ; data/libcgns-4.1.2/src/adf/ADF_internals.c:263:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static unsigned char from_to_data[ CONVERSION_BUFF_SIZE ] ; data/libcgns-4.1.2/src/adf/ADF_internals.c:266:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char rd_block_buffer[DISK_BLOCK_SIZE] ; data/libcgns-4.1.2/src/adf/ADF_internals.c:270:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char wr_block_buffer[DISK_BLOCK_SIZE] ; data/libcgns-4.1.2/src/adf/ADF_internals.c:297:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char ASCII_Hex[16] = { data/libcgns-4.1.2/src/adf/ADF_internals.c:485:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(to_data, from_data, size * count); data/libcgns-4.1.2/src/adf/ADF_internals.c:890:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char from_format, data/libcgns-4.1.2/src/adf/ADF_internals.c:891:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char from_os_size, data/libcgns-4.1.2/src/adf/ADF_internals.c:892:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char to_format, data/libcgns-4.1.2/src/adf/ADF_internals.c:893:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char to_os_size, data/libcgns-4.1.2/src/adf/ADF_internals.c:894:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char data_type[2], data/libcgns-4.1.2/src/adf/ADF_internals.c:920:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( to_data, from_data, (size_t)delta_from_bytes ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:1029:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char from_format, data/libcgns-4.1.2/src/adf/ADF_internals.c:1030:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char from_os_size, data/libcgns-4.1.2/src/adf/ADF_internals.c:1031:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char to_format, data/libcgns-4.1.2/src/adf/ADF_internals.c:1032:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char to_os_size, data/libcgns-4.1.2/src/adf/ADF_internals.c:1033:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char data_type[2], data/libcgns-4.1.2/src/adf/ADF_internals.c:1310:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char from_format, data/libcgns-4.1.2/src/adf/ADF_internals.c:1311:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char from_os_size, data/libcgns-4.1.2/src/adf/ADF_internals.c:1312:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char to_format, data/libcgns-4.1.2/src/adf/ADF_internals.c:1313:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char to_os_size, data/libcgns-4.1.2/src/adf/ADF_internals.c:1314:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char data_type[2], data/libcgns-4.1.2/src/adf/ADF_internals.c:1374:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pathname[ADF_FILENAME_LENGTH+1]; data/libcgns-4.1.2/src/adf/ADF_internals.c:1475:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char status[10] ; data/libcgns-4.1.2/src/adf/ADF_internals.c:1476:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char link_file[ADF_FILENAME_LENGTH+1], data/libcgns-4.1.2/src/adf/ADF_internals.c:1528:16: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (status, "READ_ONLY"); data/libcgns-4.1.2/src/adf/ADF_internals.c:1532:17: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (status, "OLD") ; data/libcgns-4.1.2/src/adf/ADF_internals.c:1946:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char temp_data[16] ; data/libcgns-4.1.2/src/adf/ADF_internals.c:1947:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data_type[2] ; data/libcgns-4.1.2/src/adf/ADF_internals.c:2260:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char from_format, data/libcgns-4.1.2/src/adf/ADF_internals.c:2261:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char from_os_size, data/libcgns-4.1.2/src/adf/ADF_internals.c:2262:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char to_format, data/libcgns-4.1.2/src/adf/ADF_internals.c:2263:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char to_os_size, data/libcgns-4.1.2/src/adf/ADF_internals.c:2264:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char data_type[2], data/libcgns-4.1.2/src/adf/ADF_internals.c:2514:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char from_format, data/libcgns-4.1.2/src/adf/ADF_internals.c:2515:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char from_os_size, data/libcgns-4.1.2/src/adf/ADF_internals.c:2516:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char to_format, data/libcgns-4.1.2/src/adf/ADF_internals.c:2517:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char to_os_size, data/libcgns-4.1.2/src/adf/ADF_internals.c:2518:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char data_type[2], data/libcgns-4.1.2/src/adf/ADF_internals.c:2967:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char block[8], data/libcgns-4.1.2/src/adf/ADF_internals.c:2968:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char offset[4], data/libcgns-4.1.2/src/adf/ADF_internals.c:3013:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char block[8], data/libcgns-4.1.2/src/adf/ADF_internals.c:3014:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char offset[4], data/libcgns-4.1.2/src/adf/ADF_internals.c:3051:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char block[8], data/libcgns-4.1.2/src/adf/ADF_internals.c:3052:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char offset[4], data/libcgns-4.1.2/src/adf/ADF_internals.c:3070:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char block[8], data/libcgns-4.1.2/src/adf/ADF_internals.c:3071:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char offset[4], data/libcgns-4.1.2/src/adf/ADF_internals.c:3139:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data_type_string[ADF_DATA_TYPE_LENGTH + 1 ] ; data/libcgns-4.1.2/src/adf/ADF_internals.c:3400:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static unsigned char bits[NUMBER_KNOWN_MACHINES][8][8] = { data/libcgns-4.1.2/src/adf/ADF_internals.c:3460:52: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. union { int i; long l; float f; double d; unsigned char bytes[8]; } u ; data/libcgns-4.1.2/src/adf/ADF_internals.c:3910:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tag[TAG_SIZE + 1] ; data/libcgns-4.1.2/src/adf/ADF_internals.c:5066:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char from_format, data/libcgns-4.1.2/src/adf/ADF_internals.c:5067:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char from_os_size, data/libcgns-4.1.2/src/adf/ADF_internals.c:5068:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char to_format, data/libcgns-4.1.2/src/adf/ADF_internals.c:5069:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char to_os_size, data/libcgns-4.1.2/src/adf/ADF_internals.c:5070:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char data_type[2], data/libcgns-4.1.2/src/adf/ADF_internals.c:5096:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( to_data, from_data, (size_t)delta_from_bytes ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:5205:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char from_format, data/libcgns-4.1.2/src/adf/ADF_internals.c:5206:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char from_os_size, data/libcgns-4.1.2/src/adf/ADF_internals.c:5207:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char to_format, data/libcgns-4.1.2/src/adf/ADF_internals.c:5208:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char to_os_size, data/libcgns-4.1.2/src/adf/ADF_internals.c:5209:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char data_type[2], data/libcgns-4.1.2/src/adf/ADF_internals.c:5453:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char header_data[102]; data/libcgns-4.1.2/src/adf/ADF_internals.c:5483:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (files, ADF_file, maximum_files * sizeof(ADF_FILE)); data/libcgns-4.1.2/src/adf/ADF_internals.c:5530:17: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). FILE *ftmp = tmpfile(); data/libcgns-4.1.2/src/adf/ADF_internals.c:5614:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tag[TAG_SIZE+1], data/libcgns-4.1.2/src/adf/ADF_internals.c:5618:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char info[ TAG_SIZE + DISK_POINTER_SIZE ] ; data/libcgns-4.1.2/src/adf/ADF_internals.c:5775:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tag[TAG_SIZE + 1] ; data/libcgns-4.1.2/src/adf/ADF_internals.c:5889:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tag[ TAG_SIZE + 1 ] ; data/libcgns-4.1.2/src/adf/ADF_internals.c:6087:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char disk_block_offset[DISK_POINTER_SIZE] ; data/libcgns-4.1.2/src/adf/ADF_internals.c:6259:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( rd_block_buffer, wr_block_buffer, DISK_BLOCK_SIZE ); data/libcgns-4.1.2/src/adf/ADF_internals.c:6287:1: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( data, &rd_block_buffer[block_offset], (size_t)data_length ); data/libcgns-4.1.2/src/adf/ADF_internals.c:6310:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char disk_header[ FILE_HEADER_SIZE ] ; data/libcgns-4.1.2/src/adf/ADF_internals.c:6555:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tag[TAG_SIZE + 1] ; data/libcgns-4.1.2/src/adf/ADF_internals.c:6633:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char disk_free_chunk_data[ FREE_CHUNK_TABLE_SIZE ] ; data/libcgns-4.1.2/src/adf/ADF_internals.c:6792:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char disk_node_data[ NODE_HEADER_SIZE ] ; data/libcgns-4.1.2/src/adf/ADF_internals.c:6939:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tag[TAG_SIZE + 1] ; data/libcgns-4.1.2/src/adf/ADF_internals.c:7024:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sub_node_entry_disk_data[ ADF_NAME_LENGTH + DISK_POINTER_SIZE ] ; data/libcgns-4.1.2/src/adf/ADF_internals.c:7251:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( stack_data, PRISTK[i].stack_data, (size_t)data_length ); data/libcgns-4.1.2/src/adf/ADF_internals.c:7298:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( PRISTK[i].stack_data, stack_data, (size_t)data_length ); data/libcgns-4.1.2/src/adf/ADF_internals.c:7331:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( PRISTK[i].stack_data, stack_data, (size_t)data_length ); data/libcgns-4.1.2/src/adf/ADF_internals.c:7888:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char disk_block_offset[DISK_POINTER_SIZE] ; data/libcgns-4.1.2/src/adf/ADF_internals.c:8088:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( wr_block_buffer, rd_block_buffer, DISK_BLOCK_SIZE ); data/libcgns-4.1.2/src/adf/ADF_internals.c:8115:1: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( &wr_block_buffer[block_offset], data, (size_t)data_length ); data/libcgns-4.1.2/src/adf/ADF_internals.c:8141:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char disk_header[ FILE_HEADER_SIZE ] ; data/libcgns-4.1.2/src/adf/ADF_internals.c:8454:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char disk_free_chunk_data[ FREE_CHUNK_TABLE_SIZE ] ; data/libcgns-4.1.2/src/adf/ADF_internals.c:8584:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mod_date[DATE_TIME_SIZE] ; data/libcgns-4.1.2/src/adf/ADF_internals.c:8644:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char disk_node_data[ NODE_HEADER_SIZE ] ; data/libcgns-4.1.2/src/adf/ADF_internals.c:8866:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sub_node_entry_disk_data[ ADF_NAME_LENGTH + DISK_POINTER_SIZE ] ; data/libcgns-4.1.2/src/adf/ADF_internals.h:128:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char what [WHAT_STRING_SIZE] ; data/libcgns-4.1.2/src/adf/ADF_internals.h:129:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tag0 [TAG_SIZE] ; data/libcgns-4.1.2/src/adf/ADF_internals.h:130:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char creation_date [DATE_TIME_SIZE] ; data/libcgns-4.1.2/src/adf/ADF_internals.h:131:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tag1 [TAG_SIZE] ; data/libcgns-4.1.2/src/adf/ADF_internals.h:132:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char modification_date [DATE_TIME_SIZE] ; data/libcgns-4.1.2/src/adf/ADF_internals.h:133:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tag2 [TAG_SIZE] ; data/libcgns-4.1.2/src/adf/ADF_internals.h:136:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tag3 [TAG_SIZE] ; data/libcgns-4.1.2/src/adf/ADF_internals.h:149:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tag4 [TAG_SIZE] ; data/libcgns-4.1.2/src/adf/ADF_internals.h:154:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tag5 [TAG_SIZE] ; data/libcgns-4.1.2/src/adf/ADF_internals.h:159:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char start_tag [TAG_SIZE] ; data/libcgns-4.1.2/src/adf/ADF_internals.h:166:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char end_tag [TAG_SIZE] ; data/libcgns-4.1.2/src/adf/ADF_internals.h:171:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char start_tag [TAG_SIZE] ; data/libcgns-4.1.2/src/adf/ADF_internals.h:174:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char end_tag [TAG_SIZE] ; data/libcgns-4.1.2/src/adf/ADF_internals.h:179:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char node_start_tag [TAG_SIZE] ; data/libcgns-4.1.2/src/adf/ADF_internals.h:180:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name [ADF_NAME_LENGTH] ; data/libcgns-4.1.2/src/adf/ADF_internals.h:181:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char label [ADF_LABEL_LENGTH] ; data/libcgns-4.1.2/src/adf/ADF_internals.h:185:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data_type [ADF_DATA_TYPE_LENGTH] ; data/libcgns-4.1.2/src/adf/ADF_internals.h:190:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char node_end_tag [TAG_SIZE] ; data/libcgns-4.1.2/src/adf/ADF_internals.h:203:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char child_name[ ADF_NAME_LENGTH ] ; data/libcgns-4.1.2/src/adf/ADF_internals.h:209:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char type[2] ; data/libcgns-4.1.2/src/adf/ADF_internals.h:240:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char open_mode[10]; data/libcgns-4.1.2/src/adf/ADF_internals.h:241:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char version_update[WHAT_STRING_SIZE+1]; data/libcgns-4.1.2/src/adf/ADF_internals.h:285:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char from_format, data/libcgns-4.1.2/src/adf/ADF_internals.h:286:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char from_os_size, data/libcgns-4.1.2/src/adf/ADF_internals.h:287:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char to_format, data/libcgns-4.1.2/src/adf/ADF_internals.h:288:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char to_os_size, data/libcgns-4.1.2/src/adf/ADF_internals.h:289:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char data_type[2], data/libcgns-4.1.2/src/adf/ADF_internals.h:297:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char from_format, data/libcgns-4.1.2/src/adf/ADF_internals.h:298:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char from_os_size, data/libcgns-4.1.2/src/adf/ADF_internals.h:299:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char to_format, data/libcgns-4.1.2/src/adf/ADF_internals.h:300:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char to_os_size, data/libcgns-4.1.2/src/adf/ADF_internals.h:301:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char data_type[2], data/libcgns-4.1.2/src/adf/ADF_internals.h:309:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char from_format, data/libcgns-4.1.2/src/adf/ADF_internals.h:310:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char from_os_size, data/libcgns-4.1.2/src/adf/ADF_internals.h:311:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char to_format, data/libcgns-4.1.2/src/adf/ADF_internals.h:312:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char to_os_size, data/libcgns-4.1.2/src/adf/ADF_internals.h:313:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char data_type[2], data/libcgns-4.1.2/src/adf/ADF_internals.h:379:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char from_format, data/libcgns-4.1.2/src/adf/ADF_internals.h:380:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char from_os_size, data/libcgns-4.1.2/src/adf/ADF_internals.h:381:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char to_format, data/libcgns-4.1.2/src/adf/ADF_internals.h:382:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char to_os_size, data/libcgns-4.1.2/src/adf/ADF_internals.h:383:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char data_type[2], data/libcgns-4.1.2/src/adf/ADF_internals.h:391:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char from_format, data/libcgns-4.1.2/src/adf/ADF_internals.h:392:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char from_os_size, data/libcgns-4.1.2/src/adf/ADF_internals.h:393:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char to_format, data/libcgns-4.1.2/src/adf/ADF_internals.h:394:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char to_os_size, data/libcgns-4.1.2/src/adf/ADF_internals.h:395:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char data_type[2], data/libcgns-4.1.2/src/adf/ADF_internals.h:421:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char block[8], data/libcgns-4.1.2/src/adf/ADF_internals.h:422:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char offset[4], data/libcgns-4.1.2/src/adf/ADF_internals.h:426:19: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char block[8], data/libcgns-4.1.2/src/adf/ADF_internals.h:427:19: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char offset[4], data/libcgns-4.1.2/src/adf/ADF_internals.h:531:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char from_format, data/libcgns-4.1.2/src/adf/ADF_internals.h:532:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char from_os_size, data/libcgns-4.1.2/src/adf/ADF_internals.h:533:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char to_format, data/libcgns-4.1.2/src/adf/ADF_internals.h:534:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char to_os_size, data/libcgns-4.1.2/src/adf/ADF_internals.h:535:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char data_type[2], data/libcgns-4.1.2/src/adf/ADF_internals.h:543:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char from_format, data/libcgns-4.1.2/src/adf/ADF_internals.h:544:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char from_os_size, data/libcgns-4.1.2/src/adf/ADF_internals.h:545:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char to_format, data/libcgns-4.1.2/src/adf/ADF_internals.h:546:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char to_os_size, data/libcgns-4.1.2/src/adf/ADF_internals.h:547:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char data_type[2], data/libcgns-4.1.2/src/adf/ADF_internals.h:563:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tag[4], data/libcgns-4.1.2/src/adfh/ADFH.c:296:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char errmsg[ADF_MAX_ERROR_STR_LENGTH+1]; data/libcgns-4.1.2/src/adfh/ADFH.c:389:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char oname[256]; data/libcgns-4.1.2/src/adfh/ADFH.c:425:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char format[ADF_FORMAT_LENGTH+1]; data/libcgns-4.1.2/src/adfh/ADFH.c:430:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(format, "IEEE_BIG_32"); data/libcgns-4.1.2/src/adfh/ADFH.c:432:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(format, "IEEE_LITTLE_32"); data/libcgns-4.1.2/src/adfh/ADFH.c:434:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(format, "IEEE_BIG_64"); data/libcgns-4.1.2/src/adfh/ADFH.c:436:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(format, "IEEE_LITTLE_64"); data/libcgns-4.1.2/src/adfh/ADFH.c:438:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(format, "NATIVE_%d", (int)H5Tget_precision(type)); data/libcgns-4.1.2/src/adfh/ADFH.c:515:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[ADF_FILENAME_LENGTH+1]; data/libcgns-4.1.2/src/adfh/ADFH.c:579:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[ADF_FILENAME_LENGTH+1]; data/libcgns-4.1.2/src/adfh/ADFH.c:620:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[ADF_FILENAME_LENGTH+1]; data/libcgns-4.1.2/src/adfh/ADFH.c:1027:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char querybuff[512]; data/libcgns-4.1.2/src/adfh/ADFH.c:1031:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffname[ADF_NAME_LENGTH+1]; data/libcgns-4.1.2/src/adfh/ADFH.c:1101:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char type[3]; data/libcgns-4.1.2/src/adfh/ADFH.c:1211:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char name[ADF_NAME_LENGTH+1]; data/libcgns-4.1.2/src/adfh/ADFH.c:1262:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char verstr[ADF_NAME_LENGTH+1]; data/libcgns-4.1.2/src/adfh/ADFH.c:1349:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char type[ADF_DATA_TYPE_LENGTH+1]; data/libcgns-4.1.2/src/adfh/ADFH.c:1411:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[2]; data/libcgns-4.1.2/src/adfh/ADFH.c:1412:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char nodename[ADF_NAME_LENGTH+1]; data/libcgns-4.1.2/src/adfh/ADFH.c:1525:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *nname, oname[ADF_NAME_LENGTH+1]; data/libcgns-4.1.2/src/adfh/ADFH.c:1560:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffname[ADF_NAME_LENGTH+1]; data/libcgns-4.1.2/src/adfh/ADFH.c:1585:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bufflabel[ADF_LABEL_LENGTH+1] = ""; data/libcgns-4.1.2/src/adfh/ADFH.c:1684:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char old_name[ADF_NAME_LENGTH+1]; data/libcgns-4.1.2/src/adfh/ADFH.c:1934:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *format, buff[ADF_VERSION_LENGTH+1]; data/libcgns-4.1.2/src/adfh/ADFH.c:2230:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char node[ADF_NAME_LENGTH+1]; data/libcgns-4.1.2/src/adfh/ADFH.c:2550:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffdata_type[3]; data/libcgns-4.1.2/src/adfh/ADFH.c:2568:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char type[3]; data/libcgns-4.1.2/src/adfh/ADFH.c:2660:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char new_type[3]; data/libcgns-4.1.2/src/adfh/ADFH.c:2938:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[ADF_VERSION_LENGTH+1]; data/libcgns-4.1.2/src/adfh/ADFH.c:2939:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char node[ADF_NAME_LENGTH+1]; data/libcgns-4.1.2/src/adfh/ADFH.c:3005:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(version, "HDF5 Version %d.%d.%d", maj, min, rel); data/libcgns-4.1.2/src/adfh/ADFH.c:3038:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(error_string, "error number %d", error_return_input); data/libcgns-4.1.2/src/adfh/ADFH.c:3142:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data, &buff[offset], count); data/libcgns-4.1.2/src/adfh/ADFH.c:3473:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&buff[offset], data, count); data/libcgns-4.1.2/src/adfh/ADFH_ftoc.c:126:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[ADF_NAME_LENGTH+1]; data/libcgns-4.1.2/src/adfh/ADFH_ftoc.c:175:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_format[ADF_FORMAT_LENGTH+1]; data/libcgns-4.1.2/src/adfh/ADFH_ftoc.c:189:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_status[ADF_STATUS_LENGTH+1]; data/libcgns-4.1.2/src/adfh/ADFH_ftoc.c:190:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_format[ADF_FORMAT_LENGTH+1]; data/libcgns-4.1.2/src/adfh/ADFH_ftoc.c:212:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_format[ADF_FORMAT_LENGTH+1]; data/libcgns-4.1.2/src/adfh/ADFH_ftoc.c:225:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_version[ADF_VERSION_LENGTH+1]; data/libcgns-4.1.2/src/adfh/ADFH_ftoc.c:226:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_cdate[ADF_DATE_LENGTH+1]; data/libcgns-4.1.2/src/adfh/ADFH_ftoc.c:227:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_mdate[ADF_DATE_LENGTH+1]; data/libcgns-4.1.2/src/adfh/ADFH_ftoc.c:241:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char errmsg[ADF_MAX_ERROR_STR_LENGTH+1]; data/libcgns-4.1.2/src/adfh/ADFH_ftoc.c:258:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_type[ADF_DATA_TYPE_LENGTH+1]; data/libcgns-4.1.2/src/adfh/ADFH_ftoc.c:283:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_label[ADF_LABEL_LENGTH+1]; data/libcgns-4.1.2/src/adfh/ADFH_ftoc.c:294:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_file[ADF_FILENAME_LENGTH+1]; data/libcgns-4.1.2/src/adfh/ADFH_ftoc.c:295:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[ADF_MAX_LINK_DATA_SIZE+1]; data/libcgns-4.1.2/src/adfh/ADFH_ftoc.c:308:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[ADF_NAME_LENGTH+1]; data/libcgns-4.1.2/src/adfh/ADFH_ftoc.c:358:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[ADF_NAME_LENGTH+1]; data/libcgns-4.1.2/src/adfh/ADFH_ftoc.c:359:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_file[ADF_FILENAME_LENGTH+1]; data/libcgns-4.1.2/src/adfh/ADFH_ftoc.c:360:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_nfile[ADF_MAX_LINK_DATA_SIZE+1]; data/libcgns-4.1.2/src/adfh/ADFH_ftoc.c:375:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_version[ADF_VERSION_LENGTH+1]; data/libcgns-4.1.2/src/adfh/ADFH_ftoc.c:400:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_type[ADF_DATA_TYPE_LENGTH+1]; data/libcgns-4.1.2/src/adfh/ADFH_ftoc.c:412:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[ADF_NAME_LENGTH+1]; data/libcgns-4.1.2/src/adfh/ADFH_ftoc.c:430:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_label[ADF_LABEL_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:291:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:314:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:368:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:389:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:441:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:456:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:472:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH*CG_MAX_GOTO_DEPTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:485:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:519:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:520:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_family[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:533:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:534:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_family[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:549:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:550:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_family[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:565:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:566:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_family[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:585:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:600:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:616:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:631:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:651:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_geo_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:652:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_CAD_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:673:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_geo_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:674:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_CAD_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:697:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_geo_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:698:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_CAD_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:727:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_geo_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:728:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_CAD_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:760:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_part_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:771:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_part_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:784:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_part_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:799:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_part_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:829:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:842:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:898:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:931:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:947:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:968:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:996:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:1017:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:1041:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:1077:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:1137:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:1159:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:1188:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:1270:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:1293:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:1350:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:1382:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:1398:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:1419:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:1447:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:1468:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:1492:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:1528:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_regname[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:1556:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char regname[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:1577:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char regname[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:1599:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_regname[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:1618:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_regname[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:1641:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_regname[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:1679:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:1693:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:1741:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:1778:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:1818:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cc_name[CGIO_MAX_NAME_LENGTH+1], dc_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:1883:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cc_name[CGIO_MAX_NAME_LENGTH+1], dc_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:1916:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cc_name[CGIO_MAX_NAME_LENGTH+1], dc_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:1957:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cc_name[CGIO_MAX_NAME_LENGTH+1], dc_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:1988:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cc_name[CGIO_MAX_NAME_LENGTH+1], dc_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:2035:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char basename[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:2156:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:2201:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:2292:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:2309:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:2430:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:2449:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:2470:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:2500:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:2544:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:2560:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:2593:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:2609:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:2639:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:2652:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:2716:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:2731:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:2746:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:2759:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:2859:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *label[CG_MAX_GOTO_DEPTH]; data/libcgns-4.1.2/src/cg_ftoc.c:2902:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *label[CG_MAX_GOTO_DEPTH]; data/libcgns-4.1.2/src/cg_ftoc.c:3000:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[(CGIO_MAX_NAME_LENGTH+1)*CG_MAX_GOTO_DEPTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:3023:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:3024:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_family[(CGIO_MAX_NAME_LENGTH+1)*CG_MAX_GOTO_DEPTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:3172:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:3199:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:3220:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ArrayName[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:3290:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:3328:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char descr_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:3344:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:3553:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:3567:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[(CGIO_MAX_NAME_LENGTH+1)*CG_MAX_GOTO_DEPTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:3582:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:3583:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_family[(CGIO_MAX_NAME_LENGTH+1)*CG_MAX_GOTO_DEPTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:3681:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:3699:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:3711:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:3745:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:3764:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:3791:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *c_descr_text, c_descr_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:3908:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char n_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:3909:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char f_name[CGIO_MAX_FILE_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:3910:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char i_name[CGIO_MAX_LINK_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:3930:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char d_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:3946:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:4006:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_type[CGIO_MAX_DATATYPE_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:4019:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_type[CGIO_MAX_DATATYPE_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:4111:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:4149:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:4187:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cg_ftoc.c:4226:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cgio_ftoc.c:194:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_version[CGIO_MAX_VERSION_LENGTH+1]; data/libcgns-4.1.2/src/cgio_ftoc.c:208:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_version[CGIO_MAX_VERSION_LENGTH+1]; data/libcgns-4.1.2/src/cgio_ftoc.c:209:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_cdate[CGIO_MAX_VERSION_LENGTH+1]; data/libcgns-4.1.2/src/cgio_ftoc.c:210:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_mdate[CGIO_MAX_VERSION_LENGTH+1]; data/libcgns-4.1.2/src/cgio_ftoc.c:258:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_error[CGIO_MAX_ERROR_LENGTH+1]; data/libcgns-4.1.2/src/cgio_ftoc.c:292:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cgio_ftoc.c:305:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cgio_ftoc.c:306:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_label[CGIO_MAX_LABEL_LENGTH+1]; data/libcgns-4.1.2/src/cgio_ftoc.c:307:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_dtype[CGIO_MAX_DATATYPE_LENGTH+1]; data/libcgns-4.1.2/src/cgio_ftoc.c:374:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cgio_ftoc.c:399:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_file[CGIO_MAX_FILE_LENGTH+1]; data/libcgns-4.1.2/src/cgio_ftoc.c:400:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_link[CGIO_MAX_LINK_LENGTH+1]; data/libcgns-4.1.2/src/cgio_ftoc.c:474:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cgio_ftoc.c:486:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cgio_ftoc.c:499:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_label[CGIO_MAX_LABEL_LENGTH+1]; data/libcgns-4.1.2/src/cgio_ftoc.c:512:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_type[CGIO_MAX_DATATYPE_LENGTH+1]; data/libcgns-4.1.2/src/cgio_ftoc.c:535:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_dtype[CGIO_MAX_DATATYPE_LENGTH+1]; data/libcgns-4.1.2/src/cgio_ftoc.c:546:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_dtype[CGIO_MAX_DATATYPE_LENGTH+1]; data/libcgns-4.1.2/src/cgio_ftoc.c:558:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_dtype[CGIO_MAX_DATATYPE_LENGTH+1]; data/libcgns-4.1.2/src/cgio_ftoc.c:572:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cgio_ftoc.c:584:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c_label[CGIO_MAX_LABEL_LENGTH+1]; data/libcgns-4.1.2/src/cgns_error.c:30:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cgns_error_mess[200] = "no CGNS error reported"; data/libcgns-4.1.2/src/cgns_error.c:45:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char warning_msg[200]; data/libcgns-4.1.2/src/cgns_error.c:76:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char errmsg[CGIO_MAX_ERROR_LENGTH+1]; data/libcgns-4.1.2/src/cgns_header.h:28:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. typedef char char_33[33]; data/libcgns-4.1.2/src/cgns_header.h:30:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. typedef char char_66[66]; /* 32 + '/' + 32 + '\0' */ data/libcgns-4.1.2/src/cgns_header.h:32:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. typedef char char_66[33]; /* 32 + '\0' (caller's malloc compat issues) */ data/libcgns-4.1.2/src/cgns_header.h:34:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. typedef char char_md[CG_MAX_GOTO_DEPTH*33+1]; /* ('/'+ 32)*MAX_GOTO_DEPTH + '\0' (FAMILY TREE) */ data/libcgns-4.1.2/src/cgns_header.h:35:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. typedef char const cchar_33[33]; data/libcgns-4.1.2/src/cgns_header.h:950:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char label[33]; data/libcgns-4.1.2/src/cgns_internals.c:707:21: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(dataset[n].dirichlet->name,"DirichletData"); data/libcgns-4.1.2/src/cgns_internals.c:718:21: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(dataset[n].neumann->name,"NeumannData"); data/libcgns-4.1.2/src/cgns_internals.c:1208:25: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(section[0][n].connect_offset->name, "ElementStartOffset"); data/libcgns-4.1.2/src/cgns_internals.c:1235:29: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(connect_new, elem_data, size_connect*sizeof(cgsize_t)); data/libcgns-4.1.2/src/cgns_internals.c:1270:25: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(section[0][n].connect_offset->name, "ElementStartOffset"); data/libcgns-4.1.2/src/cgns_internals.c:1442:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(section[0][n].parelem->name, "ParentElements"); data/libcgns-4.1.2/src/cgns_internals.c:1454:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(section[0][n].parface->name, "ParentElementsPosition"); data/libcgns-4.1.2/src/cgns_internals.c:1927:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(parent_label,"GridConnectivity_t"); data/libcgns-4.1.2/src/cgns_internals.c:1939:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(parent_label,"StructuredDonor_t"); data/libcgns-4.1.2/src/cgns_internals.c:1954:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(parent_label,"UnstructuredDonor_t"); data/libcgns-4.1.2/src/cgns_internals.c:2322:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(hole->ptset[0].data_type, "I4"); data/libcgns-4.1.2/src/cgns_internals.c:2326:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(hole->ptset[0].name,"Empty"); data/libcgns-4.1.2/src/cgns_internals.c:2450:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(boco->ptset->name, "PointList"); data/libcgns-4.1.2/src/cgns_internals.c:2453:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(boco->ptset->name, "PointRange"); data/libcgns-4.1.2/src/cgns_internals.c:2886:21: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(dataset[0][n].dirichlet->name,"DirichletData"); data/libcgns-4.1.2/src/cgns_internals.c:2897:21: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(dataset[0][n].neumann->name,"NeumannData"); data/libcgns-4.1.2/src/cgns_internals.c:3217:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(equations[0]->name, "FlowEquationSet"); data/libcgns-4.1.2/src/cgns_internals.c:6544:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char PointSetName[33]; data/libcgns-4.1.2/src/cgns_internals.c:6568:54: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. if (ptset->type == CGNS_ENUMV( PointRange )) sprintf(PointSetName,"PointRange%d",n+1); data/libcgns-4.1.2/src/cgns_internals.c:6569:14: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. else sprintf(PointSetName,"PointSetTypeName[ptset->type]"); data/libcgns-4.1.2/src/cgns_internals.c:6934:10: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(label,"IndexRange_t"); data/libcgns-4.1.2/src/cgns_internals.c:6935:10: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. else strcpy(label,"IndexArray_t"); data/libcgns-4.1.2/src/cgns_internals.c:7084:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(label,"%.30s_t",model->name); data/libcgns-4.1.2/src/cgns_internals.c:8514:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char nodelabel[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cgns_internals.c:8949:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(zone->zcoor->name, "GridCoordinates"); data/libcgns-4.1.2/src/cgns_internals.c:9067:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(zone->zconn->name, "ZoneGridConnectivity"); data/libcgns-4.1.2/src/cgns_internals.c:9152:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(zone->zboco->name,"ZoneBC"); data/libcgns-4.1.2/src/cgns_internals.c:11137:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char lab[33], name[33]; data/libcgns-4.1.2/src/cgns_internals.c:12149:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(converg->name,"GlobalConvergenceHistory"); data/libcgns-4.1.2/src/cgns_internals.c:12154:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(converg->name,"ZoneConvergenceHistory"); data/libcgns-4.1.2/src/cgns_io.c:48:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char hdf5_access[64] = "NATIVE"; data/libcgns-4.1.2/src/cgns_io.c:159:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cgns_io.c:217:11: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). char *tmpfile, *linkfile = NULL; data/libcgns-4.1.2/src/cgns_io.c:246:17: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). sprintf(tmpfile, "%s.temp", filename); data/libcgns-4.1.2/src/cgns_io.c:254:17: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). sprintf(tmpfile, "%s.temp", linkfile); data/libcgns-4.1.2/src/cgns_io.c:256:12: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). UNLINK(tmpfile); data/libcgns-4.1.2/src/cgns_io.c:258:24: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). if (cgio_open_file(tmpfile, CGIO_MODE_WRITE, input->type, &cgout)) { data/libcgns-4.1.2/src/cgns_io.c:259:16: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). UNLINK(tmpfile); data/libcgns-4.1.2/src/cgns_io.c:260:14: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). free(tmpfile); data/libcgns-4.1.2/src/cgns_io.c:270:16: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). UNLINK(tmpfile); data/libcgns-4.1.2/src/cgns_io.c:271:14: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). free(tmpfile); data/libcgns-4.1.2/src/cgns_io.c:280:20: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). if (rename(tmpfile, filename)) data/libcgns-4.1.2/src/cgns_io.c:285:20: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). if (rename(tmpfile, linkfile)) data/libcgns-4.1.2/src/cgns_io.c:289:10: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). free(tmpfile); data/libcgns-4.1.2/src/cgns_io.c:577:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[32]; data/libcgns-4.1.2/src/cgns_io.c:597:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fp = fopen(filename, "rb"); data/libcgns-4.1.2/src/cgns_io.c:1033:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char msg[ADF_MAX_ERROR_STR_LENGTH+1]; data/libcgns-4.1.2/src/cgns_io.c:1038:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(msg, "unknown cgio error message"); data/libcgns-4.1.2/src/cgns_io.c:1051:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(msg, "unknown error message"); data/libcgns-4.1.2/src/cgns_io.c:1065:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char errmsg[81]; data/libcgns-4.1.2/src/cgns_io.c:1221:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char label[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cgns_io.c:1222:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data_type[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cgns_io.c:1655:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data_type[CGIO_MAX_NAME_LENGTH]; data/libcgns-4.1.2/src/cgns_io_f.h:30:12: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). c file open modes data/libcgns-4.1.2/src/cgnslib.c:109:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char * MassUnitsName[NofValidMassUnits] = data/libcgns-4.1.2/src/cgnslib.c:113:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char * LengthUnitsName[NofValidLengthUnits] = data/libcgns-4.1.2/src/cgnslib.c:117:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char * TimeUnitsName[NofValidTimeUnits] = data/libcgns-4.1.2/src/cgnslib.c:121:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char * TemperatureUnitsName[NofValidTemperatureUnits] = data/libcgns-4.1.2/src/cgnslib.c:125:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char * AngleUnitsName[NofValidAngleUnits] = data/libcgns-4.1.2/src/cgnslib.c:129:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char * ElectricCurrentUnitsName[NofValidElectricCurrentUnits] = data/libcgns-4.1.2/src/cgnslib.c:133:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char * SubstanceAmountUnitsName[NofValidSubstanceAmountUnits] = data/libcgns-4.1.2/src/cgnslib.c:137:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char * LuminousIntensityUnitsName[NofValidLuminousIntensityUnits] = data/libcgns-4.1.2/src/cgnslib.c:141:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char * DataClassName[NofValidDataClass] = data/libcgns-4.1.2/src/cgnslib.c:147:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char * GridLocationName[NofValidGridLocation] = data/libcgns-4.1.2/src/cgnslib.c:152:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char * BCDataTypeName[NofValidBCDataTypes] = data/libcgns-4.1.2/src/cgnslib.c:156:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char * GridConnectivityTypeName[NofValidGridConnectivityTypes] = data/libcgns-4.1.2/src/cgnslib.c:160:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char * PointSetTypeName[NofValidPointSetTypes] = data/libcgns-4.1.2/src/cgnslib.c:166:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char * GoverningEquationsTypeName[NofValidGoverningEquationsTypes]= data/libcgns-4.1.2/src/cgnslib.c:172:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char * ModelTypeName[NofValidModelTypes]= data/libcgns-4.1.2/src/cgnslib.c:188:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char * BCTypeName[NofValidBCTypes] = data/libcgns-4.1.2/src/cgnslib.c:198:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char * DataTypeName[NofValidDataTypes] = data/libcgns-4.1.2/src/cgnslib.c:202:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char * ElementTypeName[NofValidElementTypes] = data/libcgns-4.1.2/src/cgnslib.c:225:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char * ZoneTypeName[NofValidZoneTypes] = data/libcgns-4.1.2/src/cgnslib.c:229:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char * RigidGridMotionTypeName[NofValidRigidGridMotionTypes] = data/libcgns-4.1.2/src/cgnslib.c:233:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char * ArbitraryGridMotionTypeName[NofValidArbitraryGridMotionTypes] = data/libcgns-4.1.2/src/cgnslib.c:237:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char * SimulationTypeName[NofValidSimulationTypes] = data/libcgns-4.1.2/src/cgnslib.c:241:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char * WallFunctionTypeName[NofValidWallFunctionTypes] = data/libcgns-4.1.2/src/cgnslib.c:244:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char * AreaTypeName[NofValidAreaTypes] = data/libcgns-4.1.2/src/cgnslib.c:248:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char * AverageInterfaceTypeName[NofValidAverageInterfaceTypes] = data/libcgns-4.1.2/src/cgnslib.c:272:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char oname[256]; data/libcgns-4.1.2/src/cgnslib.c:1334:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char family_name_path[(CGIO_MAX_NAME_LENGTH+1)*CG_MAX_GOTO_DEPTH+1]; data/libcgns-4.1.2/src/cgnslib.c:3546:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(section->connect->name,"ElementConnectivity"); data/libcgns-4.1.2/src/cgnslib.c:3647:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(section->connect->name,"ElementConnectivity"); data/libcgns-4.1.2/src/cgnslib.c:3655:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(section->connect_offset->name,"ElementStartOffset"); data/libcgns-4.1.2/src/cgnslib.c:3767:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(section->connect->name,"ElementConnectivity"); data/libcgns-4.1.2/src/cgnslib.c:3802:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(section->connect_offset->name,"ElementStartOffset"); data/libcgns-4.1.2/src/cgnslib.c:3928:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(elements, section->connect->data, (size_t)(ElementDataSize*sizeof(cgsize_t))); data/libcgns-4.1.2/src/cgnslib.c:3988:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(elements, section->connect->data, (size_t)(ElementDataSize*sizeof(cgsize_t))); data/libcgns-4.1.2/src/cgnslib.c:3999:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(connect_offset, section->connect_offset->data, (size_t)(ConnectOffsetSize*sizeof(cgsize_t))); data/libcgns-4.1.2/src/cgnslib.c:4085:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(elements, &data[offset], (size_t)(size*sizeof(cgsize_t))); data/libcgns-4.1.2/src/cgnslib.c:4254:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(elements, &data[offset], (size_t)(size*sizeof(cgsize_t))); data/libcgns-4.1.2/src/cgnslib.c:4285:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(elements, &data[offset], (size_t)(size*sizeof(cgsize_t))); data/libcgns-4.1.2/src/cgnslib.c:4293:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(connect_offset, &tmp_connect_offset[start-section->range[0]],(size_t)((end-start+2)*sizeof(cgsize_t))); data/libcgns-4.1.2/src/cgnslib.c:4533:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(newelems, elements, (size_t)(ElementDataSize*sizeof(cgsize_t))); data/libcgns-4.1.2/src/cgnslib.c:4541:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&newelems[n], oldelems, (size_t)(oldsize*sizeof(cgsize_t))); data/libcgns-4.1.2/src/cgnslib.c:4548:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&newelems[n], &oldelems[offset], (size_t)(size*sizeof(cgsize_t))); data/libcgns-4.1.2/src/cgnslib.c:4552:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(newelems, oldelems, (size_t)(oldsize*sizeof(cgsize_t))); data/libcgns-4.1.2/src/cgnslib.c:4559:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&newelems[n], elements, (size_t)(ElementDataSize*sizeof(cgsize_t))); data/libcgns-4.1.2/src/cgnslib.c:4564:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(newelems, oldelems, (size_t)(size*sizeof(cgsize_t))); data/libcgns-4.1.2/src/cgnslib.c:4566:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&newelems[n], elements, (size_t)(ElementDataSize*sizeof(cgsize_t))); data/libcgns-4.1.2/src/cgnslib.c:4576:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&newelems[n], &oldelems[offset], (size_t)(size*sizeof(cgsize_t))); data/libcgns-4.1.2/src/cgnslib.c:4895:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(newelems, elements, (size_t)(ElementDataSize*sizeof(cgsize_t))); data/libcgns-4.1.2/src/cgnslib.c:4896:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(newoffsets, connect_offset, (size_t)((end-start+2)*sizeof(cgsize_t))); data/libcgns-4.1.2/src/cgnslib.c:4911:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&newelems[n], oldelems, (size_t)(oldsize*sizeof(cgsize_t))); data/libcgns-4.1.2/src/cgnslib.c:4926:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&newelems[n], &oldelems[offset], (size_t)(size*sizeof(cgsize_t))); data/libcgns-4.1.2/src/cgnslib.c:4934:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(newelems, oldelems, (size_t)(oldsize*sizeof(cgsize_t))); data/libcgns-4.1.2/src/cgnslib.c:4935:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(newoffsets, section_offset, (size_t)((section->range[1]-section->range[0]+2)*sizeof(cgsize_t))); data/libcgns-4.1.2/src/cgnslib.c:4948:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&newelems[n], elements, (size_t)(ElementDataSize*sizeof(cgsize_t))); data/libcgns-4.1.2/src/cgnslib.c:4957:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(newelems, oldelems, (size_t)(size*sizeof(cgsize_t))); data/libcgns-4.1.2/src/cgnslib.c:4958:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(newoffsets, section_offset, (size_t)(num+1)*sizeof(cgsize_t)); data/libcgns-4.1.2/src/cgnslib.c:4961:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&newelems[n], elements, (size_t)(ElementDataSize*sizeof(cgsize_t))); data/libcgns-4.1.2/src/cgnslib.c:4976:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&newelems[n], &oldelems[offset], (size_t)(size*sizeof(cgsize_t))); data/libcgns-4.1.2/src/cgnslib.c:5163:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(section->parelem->name, "ParentData"); data/libcgns-4.1.2/src/cgnslib.c:5166:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(section->parelem->name, "ParentElements"); data/libcgns-4.1.2/src/cgnslib.c:5202:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(section->parface->name, "ParentElementsPosition"); data/libcgns-4.1.2/src/cgnslib.c:5251:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(section->parelem->name, "ParentData"); data/libcgns-4.1.2/src/cgnslib.c:5254:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(section->parelem->name, "ParentElements"); data/libcgns-4.1.2/src/cgnslib.c:5274:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(section->parface->name, "ParentElementsPosition"); data/libcgns-4.1.2/src/cgnslib.c:6228:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(subreg->bcname->name, "BCRegionName"); data/libcgns-4.1.2/src/cgnslib.c:6263:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(subreg->gcname->name, "GridConnectivityRegionName"); data/libcgns-4.1.2/src/cgnslib.c:6575:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(zone->zconn->name,"ZoneGridConnectivity"); data/libcgns-4.1.2/src/cgnslib.c:6676:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(PointSetName, "PointRange%d",set+1); data/libcgns-4.1.2/src/cgnslib.c:6958:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(zone->zconn->name,"ZoneGridConnectivity"); data/libcgns-4.1.2/src/cgnslib.c:7265:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char connect[33], donor[33]; data/libcgns-4.1.2/src/cgnslib.c:7367:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(zone->zconn->name,"ZoneGridConnectivity"); data/libcgns-4.1.2/src/cgnslib.c:7449:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((void *)one21->transform, (void *)transform, (size_t)(index_dim*sizeof(int))); data/libcgns-4.1.2/src/cgnslib.c:7587:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(NormalList, boco->normal->data, data/libcgns-4.1.2/src/cgnslib.c:7704:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(zboco->name,"ZoneBC"); data/libcgns-4.1.2/src/cgnslib.c:7878:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(normal->data, NormalList, (size_t)(npnts*phys_dim*size_of(normal->data_type))); data/libcgns-4.1.2/src/cgnslib.c:7879:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(normal->name, "InwardNormalList"); data/libcgns-4.1.2/src/cgnslib.c:8049:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(dataset->dirichlet->name, "DirichletData"); data/libcgns-4.1.2/src/cgnslib.c:8065:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(dataset->neumann->name, "NeumannData"); data/libcgns-4.1.2/src/cgnslib.c:8526:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(gravity_vector, gravity->vector->data, base->phys_dim*sizeof(float)); data/libcgns-4.1.2/src/cgnslib.c:8562:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(gravity->name, "Gravity"); data/libcgns-4.1.2/src/cgnslib.c:8565:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(gravity->vector->data_type, "R4"); data/libcgns-4.1.2/src/cgnslib.c:8571:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(gravity->vector->data, gravity_vector, base->phys_dim*sizeof(float)); data/libcgns-4.1.2/src/cgnslib.c:8572:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(gravity->vector->name, "GravityVector"); data/libcgns-4.1.2/src/cgnslib.c:8608:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ref_point, axisym->array[n].data, base->phys_dim*sizeof(float)); data/libcgns-4.1.2/src/cgnslib.c:8610:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(axis, axisym->array[n].data, base->phys_dim*sizeof(float)); data/libcgns-4.1.2/src/cgnslib.c:8651:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(axisym->name, "Axisymmetry"); data/libcgns-4.1.2/src/cgnslib.c:8658:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(axisym->array[n].data_type, "R4"); data/libcgns-4.1.2/src/cgnslib.c:8667:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(axisym->array[0].data, ref_point, base->phys_dim*sizeof(float)); data/libcgns-4.1.2/src/cgnslib.c:8668:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(axisym->array[1].data, axis, base->phys_dim*sizeof(float)); data/libcgns-4.1.2/src/cgnslib.c:8669:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(axisym->array[0].name, "AxisymmetryReferencePoint"); data/libcgns-4.1.2/src/cgnslib.c:8670:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(axisym->array[1].name, "AxisymmetryAxisVector"); data/libcgns-4.1.2/src/cgnslib.c:8735:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(bprop->name,"BCProperty"); data/libcgns-4.1.2/src/cgnslib.c:8759:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(bcwall->name,"WallFunction"); data/libcgns-4.1.2/src/cgnslib.c:8820:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(SurfaceArea, bprop->bcarea->array[n].data, sizeof(float)); data/libcgns-4.1.2/src/cgnslib.c:8822:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(RegionName, bprop->bcarea->array[n].data, 32*sizeof(char)); data/libcgns-4.1.2/src/cgnslib.c:8862:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(bprop->name,"BCProperty"); data/libcgns-4.1.2/src/cgnslib.c:8886:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(bcarea->name,"Area"); data/libcgns-4.1.2/src/cgnslib.c:8892:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(bcarea->array[0].data_type, "R4"); data/libcgns-4.1.2/src/cgnslib.c:8898:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bcarea->array[0].data, &SurfaceArea, sizeof(float)); data/libcgns-4.1.2/src/cgnslib.c:8900:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(bcarea->array[0].name, "SurfaceArea"); data/libcgns-4.1.2/src/cgnslib.c:8904:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(bcarea->array[1].data_type, "C1"); data/libcgns-4.1.2/src/cgnslib.c:8917:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(bcarea->array[1].name, "RegionName"); data/libcgns-4.1.2/src/cgnslib.c:8993:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(RotationCenter, cperio->array[n].data, base->phys_dim*sizeof(float)); data/libcgns-4.1.2/src/cgnslib.c:8995:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(RotationAngle, cperio->array[n].data, base->phys_dim*sizeof(float)); data/libcgns-4.1.2/src/cgnslib.c:8997:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(Translation, cperio->array[n].data, base->phys_dim*sizeof(float)); data/libcgns-4.1.2/src/cgnslib.c:9031:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(cprop->name,"GridConnectivityProperty"); data/libcgns-4.1.2/src/cgnslib.c:9054:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(cperio->name,"Periodic"); data/libcgns-4.1.2/src/cgnslib.c:9061:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(cperio->array[n].data_type, "R4"); data/libcgns-4.1.2/src/cgnslib.c:9070:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cperio->array[0].data,RotationCenter,base->phys_dim*sizeof(float)); data/libcgns-4.1.2/src/cgnslib.c:9071:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cperio->array[1].data,RotationAngle,base->phys_dim*sizeof(float)); data/libcgns-4.1.2/src/cgnslib.c:9072:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cperio->array[2].data,Translation,base->phys_dim*sizeof(float)); data/libcgns-4.1.2/src/cgnslib.c:9073:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(cperio->array[0].name,"RotationCenter"); data/libcgns-4.1.2/src/cgnslib.c:9074:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(cperio->array[1].name,"RotationAngle"); data/libcgns-4.1.2/src/cgnslib.c:9075:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(cperio->array[2].name,"Translation"); data/libcgns-4.1.2/src/cgnslib.c:9162:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(cprop->name,"GridConnectivityProperty"); data/libcgns-4.1.2/src/cgnslib.c:9186:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(caverage->name,"AverageInterface"); data/libcgns-4.1.2/src/cgnslib.c:9256:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(RotationCenter, cperio->array[n].data, base->phys_dim*sizeof(float)); data/libcgns-4.1.2/src/cgnslib.c:9258:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(RotationAngle, cperio->array[n].data, base->phys_dim*sizeof(float)); data/libcgns-4.1.2/src/cgnslib.c:9260:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(Translation, cperio->array[n].data, base->phys_dim*sizeof(float)); data/libcgns-4.1.2/src/cgnslib.c:9295:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(cprop->name,"GridConnectivityProperty"); data/libcgns-4.1.2/src/cgnslib.c:9318:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(cperio->name,"Periodic"); data/libcgns-4.1.2/src/cgnslib.c:9325:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(cperio->array[n].data_type, "R4"); data/libcgns-4.1.2/src/cgnslib.c:9334:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cperio->array[0].data,RotationCenter,base->phys_dim*sizeof(float)); data/libcgns-4.1.2/src/cgnslib.c:9335:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cperio->array[1].data,RotationAngle,base->phys_dim*sizeof(float)); data/libcgns-4.1.2/src/cgnslib.c:9336:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cperio->array[2].data,Translation,base->phys_dim*sizeof(float)); data/libcgns-4.1.2/src/cgnslib.c:9337:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(cperio->array[0].name,"RotationCenter"); data/libcgns-4.1.2/src/cgnslib.c:9338:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(cperio->array[1].name,"RotationAngle"); data/libcgns-4.1.2/src/cgnslib.c:9339:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(cperio->array[2].name,"Translation"); data/libcgns-4.1.2/src/cgnslib.c:9431:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(cprop->name,"GridConnectivityProperty"); data/libcgns-4.1.2/src/cgnslib.c:9457:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(caverage->name,"AverageInterface"); data/libcgns-4.1.2/src/cgnslib.c:9501:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *label[CG_MAX_GOTO_DEPTH]; data/libcgns-4.1.2/src/cgnslib.c:9547:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *label[CG_MAX_GOTO_DEPTH]; data/libcgns-4.1.2/src/cgnslib.c:9576:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *label[CG_MAX_GOTO_DEPTH]; data/libcgns-4.1.2/src/cgnslib.c:9621:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *label[CG_MAX_GOTO_DEPTH]; data/libcgns-4.1.2/src/cgnslib.c:9652:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char label[CG_MAX_GOTO_DEPTH][CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cgnslib.c:9653:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *lab[CG_MAX_GOTO_DEPTH]; data/libcgns-4.1.2/src/cgnslib.c:9978:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(converg->NormDefinitions->name, "NormDefinitions"); data/libcgns-4.1.2/src/cgnslib.c:10035:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(state->name,"ReferenceState"); data/libcgns-4.1.2/src/cgnslib.c:10052:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(state->StateDescription->name, "ReferenceStateDescription"); data/libcgns-4.1.2/src/cgnslib.c:10178:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(equations->name, "FlowEquationSet"); data/libcgns-4.1.2/src/cgnslib.c:10245:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(governing->name, "GoverningEquations"); data/libcgns-4.1.2/src/cgnslib.c:10384:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ModelName[33]; data/libcgns-4.1.2/src/cgnslib.c:10714:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(Data, array->data, (size_t)(num*size_of(array->data_type))); data/libcgns-4.1.2/src/cgnslib.c:10753:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(Data, array->data, (size_t)(num*size_of(array->data_type))); data/libcgns-4.1.2/src/cgnslib.c:11371:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(units->name, "DimensionalUnits"); data/libcgns-4.1.2/src/cgnslib.c:11478:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(units->name, "DimensionalUnits"); data/libcgns-4.1.2/src/cgnslib.c:11593:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(exponent->name, "DimensionalExponents"); data/libcgns-4.1.2/src/cgnslib.c:11705:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(exponent->name, "DimensionalExponents"); data/libcgns-4.1.2/src/cgnslib.c:11793:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(conversion->name, "DataConversion"); data/libcgns-4.1.2/src/cgnslib.c:12331:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rot_center, rotating->array[n].data, base->phys_dim*sizeof(float)); data/libcgns-4.1.2/src/cgnslib.c:12333:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rot_rate, rotating->array[n].data, base->phys_dim*sizeof(float)); data/libcgns-4.1.2/src/cgnslib.c:12365:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(rotating->array[n].data_type, "R4"); data/libcgns-4.1.2/src/cgnslib.c:12374:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rotating->array[0].data, rot_center, base->phys_dim*sizeof(float)); data/libcgns-4.1.2/src/cgnslib.c:12375:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rotating->array[1].data, rot_rate, base->phys_dim*sizeof(float)); data/libcgns-4.1.2/src/cgnslib.c:12376:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(rotating->array[0].name, "RotationCenter"); data/libcgns-4.1.2/src/cgnslib.c:12377:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(rotating->array[1].name, "RotationRateVector"); data/libcgns-4.1.2/src/cgnslib.c:12391:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(rotating->name, "RotatingCoordinates"); data/libcgns-4.1.2/src/cgnslib.c:12689:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(dataset->dirichlet->name, "DirichletData"); data/libcgns-4.1.2/src/cgnslib.c:12694:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(dataset->neumann->name, "NeumannData"); data/libcgns-4.1.2/src/cgnslib.h:240:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern CGNSDLL const char * MassUnitsName[NofValidMassUnits]; data/libcgns-4.1.2/src/cgnslib.h:241:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern CGNSDLL const char * LengthUnitsName[NofValidLengthUnits]; data/libcgns-4.1.2/src/cgnslib.h:242:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern CGNSDLL const char * TimeUnitsName[NofValidTimeUnits]; data/libcgns-4.1.2/src/cgnslib.h:243:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern CGNSDLL const char * TemperatureUnitsName[NofValidTemperatureUnits]; data/libcgns-4.1.2/src/cgnslib.h:244:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern CGNSDLL const char * AngleUnitsName[NofValidAngleUnits]; data/libcgns-4.1.2/src/cgnslib.h:245:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern CGNSDLL const char * ElectricCurrentUnitsName[NofValidElectricCurrentUnits]; data/libcgns-4.1.2/src/cgnslib.h:246:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern CGNSDLL const char * SubstanceAmountUnitsName[NofValidSubstanceAmountUnits]; data/libcgns-4.1.2/src/cgnslib.h:247:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern CGNSDLL const char * LuminousIntensityUnitsName[NofValidLuminousIntensityUnits]; data/libcgns-4.1.2/src/cgnslib.h:265:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern CGNSDLL const char * DataClassName[NofValidDataClass]; data/libcgns-4.1.2/src/cgnslib.h:285:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern CGNSDLL const char * GridLocationName[NofValidGridLocation]; data/libcgns-4.1.2/src/cgnslib.h:300:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern CGNSDLL const char * BCDataTypeName[NofValidBCDataTypes]; data/libcgns-4.1.2/src/cgnslib.h:316:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern CGNSDLL const char * GridConnectivityTypeName[NofValidGridConnectivityTypes]; data/libcgns-4.1.2/src/cgnslib.h:336:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern CGNSDLL const char * PointSetTypeName[NofValidPointSetTypes]; data/libcgns-4.1.2/src/cgnslib.h:425:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern CGNSDLL const char * GoverningEquationsTypeName[NofValidGoverningEquationsTypes]; data/libcgns-4.1.2/src/cgnslib.h:426:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern CGNSDLL const char * ModelTypeName[NofValidModelTypes]; data/libcgns-4.1.2/src/cgnslib.h:463:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern CGNSDLL const char * BCTypeName[NofValidBCTypes]; data/libcgns-4.1.2/src/cgnslib.h:481:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern CGNSDLL const char * DataTypeName[NofValidDataTypes]; data/libcgns-4.1.2/src/cgnslib.h:551:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern CGNSDLL const char * ElementTypeName[NofValidElementTypes]; data/libcgns-4.1.2/src/cgnslib.h:680:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern CGNSDLL const char * ZoneTypeName[NofValidZoneTypes]; data/libcgns-4.1.2/src/cgnslib.h:695:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern CGNSDLL const char * RigidGridMotionTypeName[NofValidRigidGridMotionTypes]; data/libcgns-4.1.2/src/cgnslib.h:710:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern CGNSDLL const char * ArbitraryGridMotionTypeName[NofValidArbitraryGridMotionTypes]; data/libcgns-4.1.2/src/cgnslib.h:725:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern CGNSDLL const char * SimulationTypeName[NofValidSimulationTypes]; data/libcgns-4.1.2/src/cgnslib.h:747:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern CGNSDLL const char * WallFunctionTypeName[NofValidWallFunctionTypes]; data/libcgns-4.1.2/src/cgnslib.h:748:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern CGNSDLL const char * AreaTypeName[NofValidAreaTypes]; data/libcgns-4.1.2/src/cgnslib.h:767:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern CGNSDLL const char * AverageInterfaceTypeName[NofValidAverageInterfaceTypes]; data/libcgns-4.1.2/src/cgnstools/calclib/calc.c:44:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char BaseName[33]; data/libcgns-4.1.2/src/cgnstools/calclib/calc.c:52:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ZoneName[33]; data/libcgns-4.1.2/src/cgnstools/calclib/calc.c:62:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char SolnName[33]; data/libcgns-4.1.2/src/cgnstools/calclib/calc.c:137:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char type[CGIO_MAX_DATATYPE_LENGTH+1]; data/libcgns-4.1.2/src/cgnstools/calclib/calc.c:138:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char errmsg[CGIO_MAX_ERROR_LENGTH+1]; data/libcgns-4.1.2/src/cgnstools/calclib/calc.c:373:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/calclib/calc.c:487:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char name[SYMNAME_MAXLEN+1]; data/libcgns-4.1.2/src/cgnstools/calclib/calc.c:557:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char nodename[257]; data/libcgns-4.1.2/src/cgnstools/calclib/calc.c:883:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/calclib/calc.c:1000:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/calclib/calc.c:1159:25: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). nargs = atoi (equ + 1); data/libcgns-4.1.2/src/cgnstools/calclib/calc.c:1185:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *p, *cmd, *name, sym[SYMNAME_MAXLEN+1]; data/libcgns-4.1.2/src/cgnstools/calclib/calc.c:1218:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (sym, "_temp_"); data/libcgns-4.1.2/src/cgnstools/calclib/calc.c:1257:25: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). nargs = atoi (equ + 1); data/libcgns-4.1.2/src/cgnstools/calclib/calc.h:12:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern char BaseName[33]; data/libcgns-4.1.2/src/cgnstools/calclib/calc.h:19:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern char ZoneName[33]; data/libcgns-4.1.2/src/cgnstools/calclib/calc.h:27:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern char SolnName[33]; data/libcgns-4.1.2/src/cgnstools/calclib/calc.h:40:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/calclib/calctest.c:11:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buff[1025]; data/libcgns-4.1.2/src/cgnstools/calclib/calctest.c:12:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char errmsg[513]; data/libcgns-4.1.2/src/cgnstools/calclib/calctest.c:45:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *p, line[257]; data/libcgns-4.1.2/src/cgnstools/calclib/calctest.c:199:25: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). n = atoi (++p); data/libcgns-4.1.2/src/cgnstools/calclib/calctest.c:201:25: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (errmsg, "base %d invalid\n", n); data/libcgns-4.1.2/src/cgnstools/calclib/calctest.c:208:25: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). n = atoi (++p); data/libcgns-4.1.2/src/cgnstools/calclib/calctest.c:210:25: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (errmsg, "zone %d invalid\n", n); data/libcgns-4.1.2/src/cgnstools/calclib/calctest.c:217:25: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). n = atoi (++p); data/libcgns-4.1.2/src/cgnstools/calclib/calctest.c:219:25: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (errmsg, "solution %d invalid\n", n); data/libcgns-4.1.2/src/cgnstools/calclib/calctest.c:316:30: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). else if ((file = fopen (p, "r")) == NULL) { data/libcgns-4.1.2/src/cgnstools/calclib/calctest.c:343:24: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FILE *fp = fopen (argv[n], "r"); data/libcgns-4.1.2/src/cgnstools/calclib/vec.c:1078:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char symname[SYMNAME_MAXLEN+2], *p = exp_ptr; data/libcgns-4.1.2/src/cgnstools/calclib/vec.c:2115:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (err_msg[VECERR_MATH], "arithmetic exception (SIGFPE)"); data/libcgns-4.1.2/src/cgnstools/calclib/vecsym.c:236:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (vecsym_vector(sym), vec, len * sizeof(VECFLOAT)); data/libcgns-4.1.2/src/cgnstools/calclib/vecsym.h:39:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[SYMNAME_MAXLEN+1]; data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:16:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char message[1024] = ""; data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:89:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:127:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:135:10: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). nb = atoi (argv[1]); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:137:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (message, "base number %d out of range", nb); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:163:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, "Phy Dim : %d\nCell Dim : %d\n", PhyDim, CellDim); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:165:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, "Zones : %d\nRef Values: %d\n", NumZones, NumReference); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:198:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:207:10: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). nz = atoi (argv[1]); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:209:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (message, "zone number %d out of range", nz); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:242:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, "Dimensions: %d", ZoneDims[0]); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:245:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, " x %d", ZoneDims[n]); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:248:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, "\nCoords : %d\nSolutions : %d\n", data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:289:10: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). ns = atoi (argv[1]); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:291:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (message, "solution number %d out of range", ns); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:321:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, "Dimensions: %d", SolnDims[0]); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:324:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, " x %d", SolnDims[n]); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:327:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, "\nRind Cells: %d %d %d %d %d %d\n", data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:332:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, "Dimensions: %d\n", SolnDims[0]); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:334:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, "Fields : %d\n", NumVariables); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:372:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, "<Zone>[%d", ZoneDims[0]); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:375:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, ",%d", ZoneDims[n]); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:479:11: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, "Type : Reference\n"); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:482:15: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, "Size : %d\n", var->len); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:484:15: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, "Value : %g\n", var->vd->f.val); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:491:15: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, "Size : %d (%d x %d x %d)\n", var->len, data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:494:15: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, "Size : %d\n", var->len); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:505:15: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, "Size : %d (%d x %d x %d)\n", var->len, data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:508:15: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, "Rind Cells: %d %d %d %d %d %d\n", data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:513:15: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, "Size : %d\n", var->len); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:540:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, "Units : not specified\n"); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:543:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, "Exponents : %g %g %g %g %g\n", data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:547:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, "Exponents : not specified\n"); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:550:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, "Conversion: %g %g", var->dataconv[0], var->dataconv[1]); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:552:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, "Conversion: not specified"); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:598:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, "Type : equation\n"); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:601:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, "Arguments : %d", vecsym_nargs(sym)); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:603:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, "Arguments : none"); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:606:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, "Type : function\n"); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:609:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, "Arguments : variable"); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:611:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, "Arguments : %d", vecsym_nargs(sym)); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:614:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, "Type : vector\nSize : %ld", data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:617:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, "Type : value\nValue : %g", data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:637:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, "Exponents : %g %g %g %g %g", data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:713:30: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. sym_delsym ((char *)args[i]); data/libcgns-4.1.2/src/cgnstools/cgnscalc/winmain.c:63:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH+1]; data/libcgns-4.1.2/src/cgnstools/cgnscalc/winmain.c:175:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:86:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:90:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char d_name[33]; data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:108:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char errmsg[81]; data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:112:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:127:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char BaseName[33]; data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:183:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmd[129]; data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:196:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char msg[128]; data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:201:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (msg, "malloc failed for %lu bytes", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:218:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char msg[128]; data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:223:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (msg, "realloc failed for %lu bytes", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:236:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char msg[128]; data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:241:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (msg, "malloc failed for face with %d nodes", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:270:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmd[129]; data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:405:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (reg->errmsg, data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:462:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (reg->errmsg, "couldn't find any exterior faces"); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:625:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (reg->errmsg, data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:753:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (reg->errmsg, "couldn't find any exterior edges"); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:839:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (reg->errmsg, "couldn't find any exterior faces"); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:852:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33], d_name[33]; data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:888:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (z->regs[0].name, "<mesh>"); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:927:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (z->regs[nr].name, "<imin>"); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:942:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (z->regs[nr].name, "<imax>"); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:957:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (z->regs[nr].name, "<jmin>"); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:972:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (z->regs[nr].name, "<jmax>"); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:1077:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (z->regs[nr].name, "<imin>"); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:1090:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (z->regs[nr].name, "<imax>"); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:1104:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (z->regs[nr].name, "<jmin>"); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:1117:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (z->regs[nr].name, "<jmax>"); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:1131:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (z->regs[nr].name, "<kmin>"); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:1144:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (z->regs[nr].name, "<kmax>"); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:1213:17: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (z->regs[nr].errmsg, "invalid point set type"); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:1218:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (z->regs[nr].errmsg, "Overset connectivity not implemented"); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:1222:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (z->regs[nr].errmsg, "invalid connectivity type"); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:1294:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (z->regs[nr].errmsg, "invalid Point Set Type"); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:1334:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (z->regs[nr].errmsg, "invalid point set type"); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:1807:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (r->errmsg, "couldn't find any exterior faces"); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:1934:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (r->errmsg, "invalid point set type"); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:1988:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (r->errmsg, "couldn't find any exterior faces"); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:2010:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33], d_name[33]; data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:2053:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (z->regs[nr].errmsg, "invalid element type"); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:2097:21: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(z->regs[nr].errmsg, data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:2103:25: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(z->regs[nr].errmsg, "invalid element index"); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:2119:25: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(z->regs[nr].errmsg, "invalid element index"); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:2132:25: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(z->regs[nr].errmsg, "invalid element index"); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:2201:25: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(z->regs[nr].errmsg, "invalid face index"); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:2271:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(z->regs[nr].errmsg, data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:2276:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(z->regs[nr].errmsg, data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:2282:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(z->regs[nr].errmsg, data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:2323:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(z->regs[nr].errmsg, data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:2809:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buff[33]; data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:2872:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[33]; data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:2882:12: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). base = atoi (argv[1]) + 1; data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:2926:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[65], coordtype[4]; data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:2941:12: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). zone = atoi (argv[1]) + 1; data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3016:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (coordtype, " "); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3178:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *p, buff[128]; data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3191:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "Physical Dim = %d, Cell Dim = %d", PhyDim, CellDim); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3196:10: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). nz = atoi (argv[1]); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3213:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld vertices, %ld elements", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3218:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld", (long)sizes[0]); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3221:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, " x %ld", (long)sizes[n]); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3228:9: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). n = atoi (argv[2]); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3238:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld x %ld", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3242:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld x %ld x %ld", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3249:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld", (long)(r->data[2] - r->data[1] + 1)); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3255:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld", (long)(r->data[2] - r->data[1] + 1)); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3257:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld x %ld", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3262:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld x %ld x %ld", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3273:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, " %ld", (long)r->data[3]); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3275:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, " %ld", (long)(r->data[5] - r->data[4] + 1)); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3277:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, " %ld x %ld", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3282:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, " %ld x %ld x %ld", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3295:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, " %ld", (long)r->data[3]); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3297:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, " %ld", (long)(r->data[5] - r->data[4] + 1)); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3299:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, " %ld x %ld", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3304:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, " %ld x %ld x %ld", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3315:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, " %ld", (long)r->data[3]); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3317:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, " %ld", (long)(r->data[5] - r->data[4] + 1)); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3319:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, " %ld x %ld", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3324:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, " %ld x %ld x %ld", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3335:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld x %ld", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3340:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld x %ld x %ld", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3358:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cd[16], pd[16], nz[16]; data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3370:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (pd, "%d", PhyDim); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3371:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (cd, "%d", CellDim); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3372:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (nz, "%d", nzones); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3390:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *p, buff[65]; data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3406:12: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). zone = atoi (argv[1]) + 1; data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3428:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld", (long)sizes[0]); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3431:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, " x %ld", (long)sizes[n]); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3435:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld", (long)sizes[ndim]); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3438:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, " x %ld", (long)sizes[n+CellDim]); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3456:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[128]; data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3468:9: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). n = atoi (argv[1]); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3474:9: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). n = atoi (argv[2]); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3485:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld x %ld", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3489:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld x %ld x %ld", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3498:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld -> %ld", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3506:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld %ld", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3518:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld -> %ld", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3524:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld -> %ld", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3528:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld -> %ld", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3533:21: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld -> %ld", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3551:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld", (long)r->data[3]); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3555:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld -> %ld", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3560:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld -> %ld", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3564:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld -> %ld", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3569:21: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld -> %ld", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3578:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buff, "%ld", (long)r->data[0]); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3587:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld", (long)r->data[3]); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3591:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld -> %ld", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3596:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld -> %ld", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3600:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld -> %ld", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3605:21: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld -> %ld", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3622:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld", (long)r->data[3]); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3626:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld -> %ld", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3631:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld -> %ld", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3635:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld -> %ld", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3640:21: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld -> %ld", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3652:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld -> %ld", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3656:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld -> %ld", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3661:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%ld -> %ld", data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3678:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[16]; data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3689:9: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). n = atoi (argv[1]); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3695:9: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). n = atoi (argv[2]); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3706:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "%d", z->regs[n].dim); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3809:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sbb[65]; data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3811:25: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). if (argc > 1) all = atoi(argv[1]); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3823:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (sbb, "%f %f", bbox[n][0], bbox[n][1]); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3839:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char slist[17]; data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3846:12: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). zone = atoi (argv[1]); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3852:12: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). regn = atoi (argv[2]); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3860:19: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). r->mode = atoi (argv[3]); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3902:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (slist, "%d", r->dlist); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3933:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char slist[17]; data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3940:11: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). vis = atoi (argv[1]); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3996:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (slist, "%d", AxisDL); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:4008:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char color[256]; data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:4016:17: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). index = abs(atoi(argv[1])) % 132; data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:4073:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(color, "%g %g %g", r, g, b); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:5197:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char slist[33]; data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:5209:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (slist, "%d", CutDL); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:5214:12: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). mode = atoi(argv[1]); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:5248:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (slist, "%ld %ld", (long)cutplane.nelems, (long)cutplane.nedges); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:5263:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char slist[17]; data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:5276:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (slist, "%d", PlaneDL); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:5346:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (slist, "%d", PlaneDL); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:5378:21: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). usecutclr = atoi (argv[2]); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:5380:25: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). ignorevis = atoi (argv[3]); data/libcgns-4.1.2/src/cgnstools/cgnsplot/winmain.c:64:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH+1]; data/libcgns-4.1.2/src/cgnstools/cgnsplot/winmain.c:178:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:83:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char errmsg[CGIO_MAX_ERROR_LENGTH+1]; data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:158:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char type[CGIO_MAX_DATATYPE_LENGTH+1]; data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:1003:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char version[33]; data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:1011:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (version, "%g", CGNS_DOTVERS); data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:1091:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char version[CGIO_MAX_VERSION_LENGTH+1]; data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:1116:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char rootname[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:1319:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:1354:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char label[CGIO_MAX_LABEL_LENGTH+1]; data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:1389:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char type[CGIO_MAX_DATATYPE_LENGTH+1]; data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:1534:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[65]; data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:1561:27: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). dims[n] = atoi (args[n]); data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:1571:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (str, "%ld", (long)dims[n]); data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:1586:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[65]; data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:1610:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (str, "%u", (unsigned)np * (unsigned)type->bytes); data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:1624:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *values, str[65]; data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:1668:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (str, "%d", (int)*u); data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:1675:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (str, "%d", *i); data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:1682:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (str, "%u", *u); data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:1689:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (str, "%ld", *i); data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:1696:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (str, "%lu", *u); data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:1703:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (str, "%g", *r); data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:1710:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (str, "%g", *r); data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:1717:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (str, "%g %g", *r, *(r+1)); data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:1725:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (str, "%g %g", *r, *(r+1)); data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:1752:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *values, type[CGIO_MAX_DATATYPE_LENGTH+1]; data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:1809:30: [2] (integer) atol: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). dims[n] = (cgsize_t) atol (args[n]); data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:1855:35: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). *u = (B1) atoi (args[n]); data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:1860:35: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). *i = (I4) atoi (args[n]); data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:1865:35: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). *u = (U4) atoi (args[n]); data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:1870:35: [2] (integer) atol: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). *i = (I8) atol (args[n]); data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:1875:35: [2] (integer) atol: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). *u = (U8) atol (args[n]); data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:2002:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:2054:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[33]; data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:2071:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%d", nchildren); data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:2084:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:2100:48: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). if (cgio_children_names (cgioNum, node_id, atoi(argv[2]), 1, data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:2114:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *node, label[CGIO_MAX_LABEL_LENGTH+1]; data/libcgns-4.1.2/src/cgnstools/cgnsview/winmain.c:63:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAX_PATH+1]; data/libcgns-4.1.2/src/cgnstools/cgnsview/winmain.c:175:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/libcgns-4.1.2/src/cgnstools/common/winhtml.c:19:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char winname[65] = ""; data/libcgns-4.1.2/src/cgnstools/common/winhtml.c:20:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char hlpfile[256] = ""; data/libcgns-4.1.2/src/cgnstools/tkogl/feedback.c:25:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf [80]; data/libcgns-4.1.2/src/cgnstools/tkogl/feedback.c:64:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%d", (int) *buffer); data/libcgns-4.1.2/src/cgnstools/tkogl/feedback.c:85:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf [80]; data/libcgns-4.1.2/src/cgnstools/tkogl/feedback.c:89:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%g", *buffer++); data/libcgns-4.1.2/src/cgnstools/tkogl/feedback.c:98:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf [80]; data/libcgns-4.1.2/src/cgnstools/tkogl/feedback.c:102:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%g", *buffer++); data/libcgns-4.1.2/src/cgnstools/tkogl/feedback.c:111:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf [80]; data/libcgns-4.1.2/src/cgnstools/tkogl/feedback.c:115:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%g", *buffer++); data/libcgns-4.1.2/src/cgnstools/tkogl/feedback.c:120:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%g", *buffer++); data/libcgns-4.1.2/src/cgnstools/tkogl/feedback.c:129:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf [80]; data/libcgns-4.1.2/src/cgnstools/tkogl/feedback.c:133:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%g", *buffer++); data/libcgns-4.1.2/src/cgnstools/tkogl/feedback.c:138:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%g", *buffer++); data/libcgns-4.1.2/src/cgnstools/tkogl/feedback.c:143:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%g", *buffer++); data/libcgns-4.1.2/src/cgnstools/tkogl/feedback.c:152:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf [80]; data/libcgns-4.1.2/src/cgnstools/tkogl/feedback.c:156:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%g", *buffer++); data/libcgns-4.1.2/src/cgnstools/tkogl/feedback.c:161:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%g", *buffer++); data/libcgns-4.1.2/src/cgnstools/tkogl/feedback.c:166:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%g", *buffer++); data/libcgns-4.1.2/src/cgnstools/tkogl/gencyl.c:278:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (dst->vtx, src->vtx, sizeof (Vector)*dst->nvtx); data/libcgns-4.1.2/src/cgnstools/tkogl/gencyl.c:294:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (&(dst->vtx [i]), &(src->vtx [i*nsrc/ndst]), sizeof(Vector)); data/libcgns-4.1.2/src/cgnstools/tkogl/gencyl.c:416:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (thisCross->normalUR, prevCross->normalUR, data/libcgns-4.1.2/src/cgnstools/tkogl/gencyl.c:554:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf [200]; data/libcgns-4.1.2/src/cgnstools/tkogl/gencyl.c:577:4: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "min %f %f %f", min[0], min[1], min[2]); data/libcgns-4.1.2/src/cgnstools/tkogl/gencyl.c:579:4: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "max %f %f %f", max[0], max[1], max[2]); data/libcgns-4.1.2/src/cgnstools/tkogl/gencyl.c:893:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (transf, ident, sizeof (Matrix)); data/libcgns-4.1.2/src/cgnstools/tkogl/gencyl.c:953:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf [100]; data/libcgns-4.1.2/src/cgnstools/tkogl/gencyl.c:961:10: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "displaylist %d", dlist); data/libcgns-4.1.2/src/cgnstools/tkogl/get.c:43:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf [80]; data/libcgns-4.1.2/src/cgnstools/tkogl/get.c:70:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%g", floatVal [j]); data/libcgns-4.1.2/src/cgnstools/tkogl/get.c:77:11: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%d", intVal [j]); data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:182:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name [80]; data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:407:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf [80]; data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:427:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%d", nface); data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:433:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%d", disp); data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:472:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%d", matface [imatface].n); data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:478:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%d", matface [imatface].displayList); data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:500:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char b [2]; data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:503:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char b [2], tmp; data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:510:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy ((char*) wptr, b, 2); data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:538:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy ((char*) wptr, (char*) b, 4); data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:556:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy ((char*) fptr, b, 4); data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:671:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf [80]; data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:675:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%f", c[i]); data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:684:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf [80]; data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:688:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%f", c[i]/255.0); data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:697:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf [80]; data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:699:4: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%d", perc); data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:707:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf [80]; data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:709:4: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%f", perc); data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:717:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf [80]; data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:741:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf [80]; data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:747:4: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%d", nv); data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:779:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%f", min [i]); data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:787:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%f", max [i]); data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:799:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf [80]; data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:803:4: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%d", nv); data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:850:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[80]; data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:884:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[80]; data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:891:4: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%d", nv); data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:931:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf [80]; data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:936:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%f", rot [i]); data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:946:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf [80]; data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:953:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%f", c[i]); data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:966:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf [80]; data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:974:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%f", c[i]); data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:978:4: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%f", c[3]); data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:981:4: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%f", c[4]); data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:991:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf [80]; data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:999:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%f", c[i]); data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:1004:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%f", c[i]); data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:1009:4: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%f", c[6]); data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:1013:4: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%f", c[7]); data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:1023:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf [80]; data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:1042:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf [80]; data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:1059:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[80]; data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:1066:4: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%d", (int)c[0]); data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:1070:4: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%d", (int)c[1]); data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:1116:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file3D = fopen (filename, "rb"); data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:1118:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file3D = fopen (filename, "r"); data/libcgns-4.1.2/src/cgnstools/tkogl/nurbs.c:244:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf [80]; data/libcgns-4.1.2/src/cgnstools/tkogl/nurbs.c:245:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%d", uStride * (uKnotCount - uOrder)); data/libcgns-4.1.2/src/cgnstools/tkogl/nurbs.c:281:6: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[128]; data/libcgns-4.1.2/src/cgnstools/tkogl/nurbs.c:282:6: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (tmp, "%d", dlist); data/libcgns-4.1.2/src/cgnstools/tkogl/outline.c:32:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf [80]; data/libcgns-4.1.2/src/cgnstools/tkogl/outline.c:44:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (desc->stroke, strokebuf, sizeof (Stroke) * nstroke); \ data/libcgns-4.1.2/src/cgnstools/tkogl/outline.c:48:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((f = fopen (filename, "r")) == 0) ERROR("Can't open ", filename); data/libcgns-4.1.2/src/cgnstools/tkogl/outline.c:107:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (strokebuf [nstroke].point, pointbuf, sizeof (CPoint)*npoint); data/libcgns-4.1.2/src/cgnstools/tkogl/printstr.c:112:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[128]; data/libcgns-4.1.2/src/cgnstools/tkogl/printstr.c:133:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (tmp, "%d", fontOffset); data/libcgns-4.1.2/src/cgnstools/tkogl/quadric.c:150:6: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[128]; data/libcgns-4.1.2/src/cgnstools/tkogl/quadric.c:151:6: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (tmp, "%d", dlist); data/libcgns-4.1.2/src/cgnstools/tkogl/strokefont.c:94:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf [80]; data/libcgns-4.1.2/src/cgnstools/tkogl/strokefont.c:106:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (desc->stroke, strokebuf, sizeof (Stroke) * nstroke); \ data/libcgns-4.1.2/src/cgnstools/tkogl/strokefont.c:109:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((f = fopen (filename, "r")) == 0) ERROR("Can't open ", filename); data/libcgns-4.1.2/src/cgnstools/tkogl/strokefont.c:169:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (strokebuf [nstroke].point, pointbuf, sizeof (CPoint)*npoint); data/libcgns-4.1.2/src/cgnstools/tkogl/tess.c:125:6: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[128]; data/libcgns-4.1.2/src/cgnstools/tkogl/tess.c:126:6: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (tmp, "%d", dlist); data/libcgns-4.1.2/src/cgnstools/tkogl/tkogl.c:851:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf [80]; data/libcgns-4.1.2/src/cgnstools/tkogl/tkogl.c:854:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%u", names); data/libcgns-4.1.2/src/cgnstools/tkogl/tkogl.c:856:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%f", ((double) (*ptr++)) / (unsigned int) 0xffffffff ); data/libcgns-4.1.2/src/cgnstools/tkogl/tkogl.c:858:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%f", ((double) (*ptr++)) / (unsigned int) 0xffffffff ); data/libcgns-4.1.2/src/cgnstools/tkogl/tkogl.c:861:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%d", *ptr++); data/libcgns-4.1.2/src/cgnstools/tkogl/tkogl.c:936:19: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. configSpecs, (char *) glxwinPtr, argv[2], 0); data/libcgns-4.1.2/src/cgnstools/tkogl/tkogl.c:952:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. (char *) glxwinPtr, argv[2], 0); data/libcgns-4.1.2/src/cgnstools/tkogl/tkogl.c:1003:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[128]; data/libcgns-4.1.2/src/cgnstools/tkogl/tkogl.c:1004:4: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (tmp, "%d", newlist); data/libcgns-4.1.2/src/cgnstools/tkogl/tkogl.c:1098:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[128]; data/libcgns-4.1.2/src/cgnstools/tkogl/tkogl.c:1099:2: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (tmp, "%f %f %f", x, y, z); data/libcgns-4.1.2/src/cgnstools/tkogl/tkoglparse.c:961:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf [80]; data/libcgns-4.1.2/src/cgnstools/tkogl/tkoglparse.c:984:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf [20]; data/libcgns-4.1.2/src/cgnstools/tkogl/tkoglparse.c:993:4: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%d", val); data/libcgns-4.1.2/src/cgnstools/tkogl/tkoglparse.c:1033:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf [80]; data/libcgns-4.1.2/src/cgnstools/tkogl/tkoglparse.c:1669:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (tmp, from, block.pitch); data/libcgns-4.1.2/src/cgnstools/tkogl/tkoglparse.c:1670:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (from, to, block.pitch); data/libcgns-4.1.2/src/cgnstools/tkogl/tkoglparse.c:1671:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (to, tmp, block.pitch); data/libcgns-4.1.2/src/cgnstools/tkogl/tkoglparse.c:1824:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf [10]; data/libcgns-4.1.2/src/cgnstools/tkogl/tkoglparse.c:1825:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%d", block.width); data/libcgns-4.1.2/src/cgnstools/tkogl/tkoglparse.c:1833:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf [20]; data/libcgns-4.1.2/src/cgnstools/tkogl/tkoglparse.c:1834:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%d", block.height); data/libcgns-4.1.2/src/cgnstools/tkogl/tkoglparse.c:1873:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf [20]; data/libcgns-4.1.2/src/cgnstools/tkogl/tkoglparse.c:1874:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%d", block.width); data/libcgns-4.1.2/src/cgnstools/tkogl/tkoglparse.c:2062:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf [20]; data/libcgns-4.1.2/src/cgnstools/tkogl/tkoglparse.c:2063:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%d", order * stride); data/libcgns-4.1.2/src/cgnstools/tkogl/tkoglparse.c:2103:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf [20]; data/libcgns-4.1.2/src/cgnstools/tkogl/tkoglparse.c:2104:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%d", uorder * vorder * ustride); data/libcgns-4.1.2/src/cgnstools/tkogl/tkoglparse.c:2109:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf [20]; data/libcgns-4.1.2/src/cgnstools/tkogl/tkoglparse.c:2110:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buf, "%d", uorder * ustride); data/libcgns-4.1.2/src/cgnstools/utilities/aflr3_to_cgns.c:402:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/libcgns-4.1.2/src/cgnstools/utilities/aflr3_to_cgns.c:404:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fp = fopen(filename, "r")) == NULL) { data/libcgns-4.1.2/src/cgnstools/utilities/aflr3_to_cgns.c:480:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/utilities/aflr3_to_cgns.c:575:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "TriElements %d", ns+1); data/libcgns-4.1.2/src/cgnstools/utilities/aflr3_to_cgns.c:593:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "QuadElements %d", ns+1+nTriSets); data/libcgns-4.1.2/src/cgnstools/utilities/aflr3_to_cgns.c:692:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. basename = (char *)malloc(strlen(argv[argind]) + 7); data/libcgns-4.1.2/src/cgnstools/utilities/aflr3_to_cgns.c:725:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(p, ".mapbc"); data/libcgns-4.1.2/src/cgnstools/utilities/aflr3_to_cgns.c:730:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(p, ".mapbc"); data/libcgns-4.1.2/src/cgnstools/utilities/aflr3_to_cgns.c:746:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(p, "cgns"); data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:158:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. char *memcpy (dest, s, cnt) data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:363:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char msg[81]; data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:519:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[128]; data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:607:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[8]; data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:628:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[8]; data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:646:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[4]; data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:670:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[8]; data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:687:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[8]; data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:711:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[8]; data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:732:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[8]; data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:895:18: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). bf->fp = fopen (fname, bf->flags & OPEN_WRITE ? "w+" : "r"); data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:897:18: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). bf->fp = fopen (fname, bf->flags & OPEN_WRITE ? "w+b" : "rb"); data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:899:14: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). bf->fp = fopen (fname, bf->flags & OPEN_WRITE ? "w+" : "r"); data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:1784:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static unsigned char val[2]; data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:1787:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (val, bytes, 2); data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:1793:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static unsigned char val[4]; data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:1796:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (val, bytes, 4); data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:1802:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static unsigned char val[8]; data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:1805:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (val, bytes, 8); data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:1827:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static unsigned char val[2]; data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:1840:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static unsigned char val[4]; data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:1854:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static unsigned char val[8]; data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:1872:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static unsigned char val[4]; data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:1889:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static unsigned char val[2]; data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:1907:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static unsigned char val[8]; data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:1929:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static unsigned char val[4]; data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:1956:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static unsigned char val[8]; data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:1959:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (&val[6], bytes, 2); data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:1967:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static unsigned char val[8]; data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:1970:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (&val[4], bytes, 4); data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:1979:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static unsigned char val[8]; data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:1989:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (&val[3], &bytes[2], 2); data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:1999:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static unsigned char val[8]; data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:2020:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static unsigned char val[2]; data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:2022:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (val, bytes + 6, 2); data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:2030:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static unsigned char val[4]; data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:2032:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (val, bytes + 4, 4); data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:2041:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static unsigned char val[4]; data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:2050:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (&val[2], &bytes[3], 2); data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:2060:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static unsigned char val[8]; data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:2089:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static unsigned char val[4]; data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:2098:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (&val[2], &bytes[2], 2); data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:2113:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static unsigned char val[8]; data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:2122:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (&val[2], &bytes[2], 6); data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:2137:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static unsigned char val[4]; data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:2146:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (&val[2], &bytes[2], 2); data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:2161:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static unsigned char val[8]; data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:2170:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (&val[2], &bytes[2], 6); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsImport.c:88:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char facemap[6]; /* remapping of faces */ data/libcgns-4.1.2/src/cgnstools/utilities/cgnsImport.c:99:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char region_name[33]; /* region name */ data/libcgns-4.1.2/src/cgnstools/utilities/cgnsImport.c:107:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; /* region name */ data/libcgns-4.1.2/src/cgnstools/utilities/cgnsImport.c:133:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cgnsZoneName[33] = ""; data/libcgns-4.1.2/src/cgnstools/utilities/cgnsImport.c:1280:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char errmsg[50]; data/libcgns-4.1.2/src/cgnstools/utilities/cgnsImport.c:1281:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (errmsg, "cgnsImportElement:element node %ld not found", data/libcgns-4.1.2/src/cgnstools/utilities/cgnsImport.c:1478:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char errmsg[50]; data/libcgns-4.1.2/src/cgnstools/utilities/cgnsImport.c:1502:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (errmsg, "cgnsImportAddReg:region node %ld not found", data/libcgns-4.1.2/src/cgnstools/utilities/cgnsImport.c:1521:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (errmsg, "cgnsImportAddReg:region element %ld not found", data/libcgns-4.1.2/src/cgnstools/utilities/cgnsImport.c:1542:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (errmsg, "cgnsImportAddReg:region element %ld not found", data/libcgns-4.1.2/src/cgnstools/utilities/cgnsImport.c:1750:25: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. if (!*cgnsZoneName) strcpy (cgnsZoneName, "Zone"); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_info.c:97:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char basename[33]; data/libcgns-4.1.2/src/cgnstools/utilities/cgns_info.c:109:28: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). cgnsbase = atoi (argarg); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_aflr3.c:80:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_aflr3.c:139:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static unsigned char buf[sizeof(double)]; data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_aflr3.c:327:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33], errmsg[128]; data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_aflr3.c:553:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_aflr3.c:909:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_aflr3.c:1102:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_aflr3.c:1230:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33], *outfile, *mapbc, *p; data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_aflr3.c:1266:26: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). cgBase = atoi(argarg); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_aflr3.c:1269:26: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). cgZone = atoi(argarg); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_aflr3.c:1351:20: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. outfile = (char *)malloc(strlen(argv[argind]) + 12); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_aflr3.c:1368:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(p, ".ugrid"); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_aflr3.c:1372:23: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (NULL == (fp = fopen (outfile, is_ascii ? "w+" : "w+b"))) data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_aflr3.c:1415:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(p, ".mapbc"); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_aflr3.c:1418:19: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fp = fopen(mapbc, "w+")) == NULL) { data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_fast.c:71:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_fast.c:101:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static unsigned char buf[sizeof(double)]; data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_fast.c:200:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33], errmsg[128]; data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_fast.c:366:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_fast.c:618:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_fast.c:663:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_fast.c:675:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "Coordinate%c", 'X' + n); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_fast.c:689:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "Coordinate%c", 'X' + n); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_fast.c:729:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_fast.c:837:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33], *fastfile, *mapbc, *p; data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_fast.c:873:26: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). cgBase = atoi(argarg); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_fast.c:876:26: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). cgZone = atoi(argarg); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_fast.c:949:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. fastfile = (char *)malloc(strlen(argv[argind]) + 12); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_fast.c:966:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(p, ".fgrid"); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_fast.c:970:23: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (NULL == (fp = fopen (fastfile, is_ascii ? "w+" : "w+b"))) data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_fast.c:1001:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(p, ".mapbc"); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_fast.c:1004:19: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fp = fopen(mapbc, "w+")) == NULL) { data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_plot3d.c:142:23: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (NULL == (fp = fopen (xyzfile, "w+b"))) { data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_plot3d.c:212:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[129]; data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_plot3d.c:325:23: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (NULL == (fp = fopen (xyzfile, "w+"))) { data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_plot3d.c:438:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_plot3d.c:439:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char *refnames[4] = { data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_plot3d.c:576:23: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (NULL == (fp = fopen (qfile, "w+b"))) { data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_plot3d.c:637:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[129]; data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_plot3d.c:741:23: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (NULL == (fp = fopen (qfile, "w+"))) { data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_plot3d.c:789:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char basename[33]; data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_plot3d.c:815:22: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). ib = atoi (argarg); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_plot3d.c:830:26: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). usesol = atoi (argarg); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_tecplot.c:247:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *p, basename[33], title[65]; data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_tecplot.c:263:22: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). ib = atoi (argarg); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_tecplot.c:273:26: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). usesol = atoi (argarg); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_tecplot.c:330:23: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (NULL == (fp = fopen (argv[argind], ascii ? "w+" : "w+b"))) data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_vtk.c:61:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_vtk.c:142:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static unsigned char buf[sizeof(double)]; data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_vtk.c:220:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33], coordtype[4]; data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_vtk.c:264:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (coordtype, " "); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_vtk.c:337:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_vtk.c:429:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_vtk.c:523:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_vtk.c:724:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33], outfile[65], buff[33]; data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_vtk.c:822:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, ".%d", nz); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_vtk.c:825:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (outfile, ".vtk"); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_vtk.c:828:19: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fp = fopen (outfile, "w+b")) == NULL) { data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_vtk.c:961:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33], outfile[37]; data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_vtk.c:974:28: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). cgnsbase = atoi (argarg); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_vtk.c:977:28: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). cgnszone = atoi (argarg); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_vtk.c:980:27: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). cgnssol = atoi (argarg); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_vtk.c:1069:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (outfile, ".vtk"); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_vtk.c:1077:19: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fp = fopen (outfile, "w+b")) == NULL) { data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:75:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char cgnstemp[16] = ""; data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:114:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (z[n].name, "Zone%d", n + 1); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:155:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (esets[n].name, "ElemSet%d", n + 1); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:174:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (ints[n].name, "Interface%d", n + 1); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:193:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (conns[n].name, "Connectivity%d", n + 1); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:212:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (bocos[n].name, "Boco%d", n + 1); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:231:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (sols[n].name, "FlowSolution%d", n + 1); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:250:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (flds[n].name, "Field%d", n+1); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:275:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (desc[n].name, "Descriptor%d", n + 1); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:382:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char exepath[MAXDIRLEN+1]; data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:500:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char pathname[MAXDIRLEN+1]; data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:525:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path1[257], path2[257]; data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:563:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, "%3.3d~", n); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:579:26: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (NULL == (oldfp = fopen (oldfile, "rb"))) data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:581:26: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (NULL == (newfp = fopen (newfile, "w+b"))) { data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:622:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[33]; data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:664:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[33]; data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:757:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[33]; data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:947:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (eset->name, "StructuredGridElements"); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.h:21:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.h:32:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.h:44:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.h:46:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char d_name[33]; data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.h:54:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.h:60:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char d_name[33]; data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.h:70:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.h:83:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.h:96:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.h:110:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/utilities/convert_dataclass.c:43:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buff[1024]; data/libcgns-4.1.2/src/cgnstools/utilities/convert_dataclass.c:44:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char cgnstemp[17] = ""; data/libcgns-4.1.2/src/cgnstools/utilities/convert_dataclass.c:272:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *p, line[257]; data/libcgns-4.1.2/src/cgnstools/utilities/convert_dataclass.c:321:16: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FILE *fp = fopen (cnvfile, "r"); data/libcgns-4.1.2/src/cgnstools/utilities/convert_dataclass.c:340:29: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). char *convfile = NULL, *tmpfile; data/libcgns-4.1.2/src/cgnstools/utilities/convert_dataclass.c:348:25: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). ibase = atoi (argarg); data/libcgns-4.1.2/src/cgnstools/utilities/convert_dataclass.c:351:25: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). izone = atoi (argarg); data/libcgns-4.1.2/src/cgnstools/utilities/convert_dataclass.c:354:24: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). isol = atoi (argarg); data/libcgns-4.1.2/src/cgnstools/utilities/convert_dataclass.c:386:30: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). copy_file (argv[argind], tmpfile); data/libcgns-4.1.2/src/cgnstools/utilities/convert_dataclass.c:390:44: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). printf ("reading CGNS file from %s\n", tmpfile); data/libcgns-4.1.2/src/cgnstools/utilities/convert_dataclass.c:391:19: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). cgnsCalcInit (tmpfile, 1, get_error); data/libcgns-4.1.2/src/cgnstools/utilities/convert_dataclass.c:423:38: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). printf ("\nrenaming %s to %s\n", tmpfile, argv[argind]); data/libcgns-4.1.2/src/cgnstools/utilities/convert_dataclass.c:425:17: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). if (rename (tmpfile, argv[argind])) { data/libcgns-4.1.2/src/cgnstools/utilities/convert_dataclass.c:426:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char msg[512]; data/libcgns-4.1.2/src/cgnstools/utilities/convert_dataclass.c:427:49: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). sprintf (msg, "rename %s -> %s failed", tmpfile, argv[argind]); data/libcgns-4.1.2/src/cgnstools/utilities/convert_dataclass.c:431:11: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). free (tmpfile); data/libcgns-4.1.2/src/cgnstools/utilities/convert_location.c:126:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char basename[33], *solname = NULL, *tmpfile; data/libcgns-4.1.2/src/cgnstools/utilities/convert_location.c:126:42: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). char basename[33], *solname = NULL, *tmpfile; data/libcgns-4.1.2/src/cgnstools/utilities/convert_location.c:149:28: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). cgnsbase = atoi (argarg); data/libcgns-4.1.2/src/cgnstools/utilities/convert_location.c:152:25: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). izone = atoi (argarg); data/libcgns-4.1.2/src/cgnstools/utilities/convert_location.c:155:24: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). isol = atoi (argarg); data/libcgns-4.1.2/src/cgnstools/utilities/convert_location.c:193:30: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). copy_file (argv[argind], tmpfile); data/libcgns-4.1.2/src/cgnstools/utilities/convert_location.c:197:44: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). printf ("reading CGNS file from %s\n", tmpfile); data/libcgns-4.1.2/src/cgnstools/utilities/convert_location.c:198:18: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). if (cg_open (tmpfile, CG_MODE_MODIFY, &cgnsfn) || data/libcgns-4.1.2/src/cgnstools/utilities/convert_location.c:246:29: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (s->name, "%30.30s%d", solname, s->id); data/libcgns-4.1.2/src/cgnstools/utilities/convert_location.c:262:36: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). printf ("renaming %s to %s\n", tmpfile, argv[argind]); data/libcgns-4.1.2/src/cgnstools/utilities/convert_location.c:264:17: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). if (rename (tmpfile, argv[argind])) { data/libcgns-4.1.2/src/cgnstools/utilities/convert_location.c:265:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char msg[512]; data/libcgns-4.1.2/src/cgnstools/utilities/convert_location.c:266:49: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). sprintf (msg, "rename %s -> %s failed", tmpfile, argv[argind]); data/libcgns-4.1.2/src/cgnstools/utilities/convert_location.c:270:11: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). free (tmpfile); data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:47:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:60:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buff[1024]; data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:82:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:181:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char *next_token (char *str, char token[33]) data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:181:26: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char *next_token (char *str, char token[33]) data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:181:37: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char *next_token (char *str, char token[33]) data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:213:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33], *p = *pp; data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:289:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *p, name[33]; data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:295:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (name, "add"); data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:299:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (name, "rem"); data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:309:21: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). nargs = atoi (p); data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:352:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *p, line[257]; data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:402:16: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FILE *fp = fopen (cmdfile, "r"); data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:420:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *p, *tmpfile, basename[33]; data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:420:15: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). char *p, *tmpfile, basename[33]; data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:440:28: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). cgnsbase = atoi (argarg); data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:443:25: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). izone = atoi (argarg); data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:446:24: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). isol = atoi (argarg); data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:477:30: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). copy_file (argv[argind], tmpfile); data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:481:44: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). printf ("reading CGNS file from %s\n", tmpfile); data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:482:18: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). if (cg_open (tmpfile, CG_MODE_MODIFY, &cgnsfn) || data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:529:29: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (s->name, "%30.30s%d", solname, s->id); data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:545:36: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). printf ("renaming %s to %s\n", tmpfile, argv[argind]); data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:547:17: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). if (rename (tmpfile, argv[argind])) { data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:548:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char msg[512]; data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:549:49: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). sprintf (msg, "rename %s -> %s failed", tmpfile, argv[argind]); data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:553:11: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). free (tmpfile); data/libcgns-4.1.2/src/cgnstools/utilities/extract_subset.c:619:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char basename[33], *newbase = NULL, *tmpfile; data/libcgns-4.1.2/src/cgnstools/utilities/extract_subset.c:619:42: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). char basename[33], *newbase = NULL, *tmpfile; data/libcgns-4.1.2/src/cgnstools/utilities/extract_subset.c:631:28: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). cgnsbase = atoi (argarg); data/libcgns-4.1.2/src/cgnstools/utilities/extract_subset.c:634:25: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). izone = atoi (argarg); data/libcgns-4.1.2/src/cgnstools/utilities/extract_subset.c:668:30: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). copy_file (argv[argind], tmpfile); data/libcgns-4.1.2/src/cgnstools/utilities/extract_subset.c:672:44: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). printf ("reading CGNS file from %s\n", tmpfile); data/libcgns-4.1.2/src/cgnstools/utilities/extract_subset.c:673:18: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). if (cg_open (tmpfile, CG_MODE_MODIFY, &cgnsfn) || data/libcgns-4.1.2/src/cgnstools/utilities/extract_subset.c:689:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (basename, "zone %d is not Structured", nz); data/libcgns-4.1.2/src/cgnstools/utilities/extract_subset.c:730:36: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). printf ("renaming %s to %s\n", tmpfile, argv[argind]); data/libcgns-4.1.2/src/cgnstools/utilities/extract_subset.c:732:17: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). if (rename (tmpfile, argv[argind])) { data/libcgns-4.1.2/src/cgnstools/utilities/extract_subset.c:733:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char msg[512]; data/libcgns-4.1.2/src/cgnstools/utilities/extract_subset.c:734:49: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). sprintf (msg, "rename %s -> %s failed", tmpfile, argv[argind]); data/libcgns-4.1.2/src/cgnstools/utilities/extract_subset.c:738:11: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). free (tmpfile); data/libcgns-4.1.2/src/cgnstools/utilities/fast_to_cgns.c:236:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/libcgns-4.1.2/src/cgnstools/utilities/fast_to_cgns.c:238:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fp = fopen(filename, "r")) == NULL) { data/libcgns-4.1.2/src/cgnstools/utilities/fast_to_cgns.c:314:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/utilities/fast_to_cgns.c:381:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "TriElements %d", ns+1); data/libcgns-4.1.2/src/cgnstools/utilities/fast_to_cgns.c:461:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. basename = (char *)malloc(strlen(argv[argind]) + 7); data/libcgns-4.1.2/src/cgnstools/utilities/fast_to_cgns.c:490:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(p, ".fastbc"); data/libcgns-4.1.2/src/cgnstools/utilities/fast_to_cgns.c:493:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(p, ".mapbc"); data/libcgns-4.1.2/src/cgnstools/utilities/fast_to_cgns.c:499:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(p, ".fastbc"); data/libcgns-4.1.2/src/cgnstools/utilities/fast_to_cgns.c:502:17: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(p, ".mapbc"); data/libcgns-4.1.2/src/cgnstools/utilities/fast_to_cgns.c:519:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(p, "cgns"); data/libcgns-4.1.2/src/cgnstools/utilities/interpolate_cgns.c:97:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buff[1024]; data/libcgns-4.1.2/src/cgnstools/utilities/interpolate_cgns.c:116:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "missing solution for zone %d", nz); data/libcgns-4.1.2/src/cgnstools/utilities/interpolate_cgns.c:876:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "vertex %g,%g,%g outside bounds", data/libcgns-4.1.2/src/cgnstools/utilities/interpolate_cgns.c:1049:11: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). char *tmpfile, *newbase = NULL, basename[33]; data/libcgns-4.1.2/src/cgnstools/utilities/interpolate_cgns.c:1057:25: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). base1 = atoi (argarg); data/libcgns-4.1.2/src/cgnstools/utilities/interpolate_cgns.c:1060:25: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). base2 = atoi (argarg); data/libcgns-4.1.2/src/cgnstools/utilities/interpolate_cgns.c:1078:29: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). max_depth = atoi (argarg); data/libcgns-4.1.2/src/cgnstools/utilities/interpolate_cgns.c:1081:32: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). max_elements = atoi (argarg); data/libcgns-4.1.2/src/cgnstools/utilities/interpolate_cgns.c:1087:28: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). max_iter = atoi (argarg); data/libcgns-4.1.2/src/cgnstools/utilities/interpolate_cgns.c:1121:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buff, "zone %d does not contain a solution", nz); data/libcgns-4.1.2/src/cgnstools/utilities/interpolate_cgns.c:1148:30: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). copy_file (argv[argind], tmpfile); data/libcgns-4.1.2/src/cgnstools/utilities/interpolate_cgns.c:1150:44: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). printf ("reading CGNS file from %s\n", tmpfile); data/libcgns-4.1.2/src/cgnstools/utilities/interpolate_cgns.c:1151:18: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). if (cg_open (tmpfile, CG_MODE_MODIFY, &cgnsfn) || data/libcgns-4.1.2/src/cgnstools/utilities/interpolate_cgns.c:1158:31: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). sprintf (buff, "%s.temp", tmpfile); data/libcgns-4.1.2/src/cgnstools/utilities/interpolate_cgns.c:1192:36: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). printf ("renaming %s to %s\n", tmpfile, argv[argind]); data/libcgns-4.1.2/src/cgnstools/utilities/interpolate_cgns.c:1194:17: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). if (rename (tmpfile, argv[argind])) { data/libcgns-4.1.2/src/cgnstools/utilities/interpolate_cgns.c:1195:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char msg[512]; data/libcgns-4.1.2/src/cgnstools/utilities/interpolate_cgns.c:1196:49: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). sprintf (msg, "rename %s -> %s failed", tmpfile, argv[argind]); data/libcgns-4.1.2/src/cgnstools/utilities/interpolate_cgns.c:1200:11: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). free (tmpfile); data/libcgns-4.1.2/src/cgnstools/utilities/p3dfout.c:38:27: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (NULL == (p3dout = fopen (p, "w+b"))) { data/libcgns-4.1.2/src/cgnstools/utilities/patran_to_cgns.c:54:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char errmsg[81]; data/libcgns-4.1.2/src/cgnstools/utilities/patran_to_cgns.c:72:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (errmsg, "element %d not found for packet 6\n", elemid); data/libcgns-4.1.2/src/cgnstools/utilities/patran_to_cgns.c:81:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (errmsg, data/libcgns-4.1.2/src/cgnstools/utilities/patran_to_cgns.c:92:18: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). faceid = atoi (&data[8]); data/libcgns-4.1.2/src/cgnstools/utilities/patran_to_cgns.c:94:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (errmsg, "invalid faceid for element %d\n", elemid); data/libcgns-4.1.2/src/cgnstools/utilities/patran_to_cgns.c:100:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (errmsg, data/libcgns-4.1.2/src/cgnstools/utilities/patran_to_cgns.c:105:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (errmsg, data/libcgns-4.1.2/src/cgnstools/utilities/patran_to_cgns.c:124:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *p, buffer[256], *basename = NULL; data/libcgns-4.1.2/src/cgnstools/utilities/patran_to_cgns.c:151:23: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (NULL == (fp = fopen (argv[argind], "r"))) { data/libcgns-4.1.2/src/cgnstools/utilities/patran_to_cgns.c:162:19: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). if ((packet = atoi (buffer)) == 25) { data/libcgns-4.1.2/src/cgnstools/utilities/patran_to_cgns.c:166:18: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). packet = atoi (buffer); data/libcgns-4.1.2/src/cgnstools/utilities/patran_to_cgns.c:174:18: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). packet = atoi (buffer); data/libcgns-4.1.2/src/cgnstools/utilities/patran_to_cgns.c:184:22: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). nodeid = atoi (&buffer[2]); data/libcgns-4.1.2/src/cgnstools/utilities/patran_to_cgns.c:199:22: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). elemid = atoi (&buffer[2]); data/libcgns-4.1.2/src/cgnstools/utilities/patran_to_cgns.c:200:17: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). n = atoi (&buffer[10]); data/libcgns-4.1.2/src/cgnstools/utilities/patran_to_cgns.c:201:22: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). nlines = atoi (&buffer[18]); data/libcgns-4.1.2/src/cgnstools/utilities/patran_to_cgns.c:223:22: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). elemid = atoi (&buffer[2]); data/libcgns-4.1.2/src/cgnstools/utilities/patran_to_cgns.c:224:22: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). loadid = atoi (&buffer[10]); data/libcgns-4.1.2/src/cgnstools/utilities/patran_to_cgns.c:225:22: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). nlines = atoi (&buffer[18]); data/libcgns-4.1.2/src/cgnstools/utilities/patran_to_cgns.c:228:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (buffer, "PatranLoad%d", loadid); data/libcgns-4.1.2/src/cgnstools/utilities/patran_to_cgns.c:246:22: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). elemid = atoi (&buffer[2]); data/libcgns-4.1.2/src/cgnstools/utilities/patran_to_cgns.c:247:22: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). nnodes = atoi (&buffer[10]) / 2; data/libcgns-4.1.2/src/cgnstools/utilities/patran_to_cgns.c:285:22: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). nlines = atoi (&buffer[18]); data/libcgns-4.1.2/src/cgnstools/utilities/patran_to_cgns.c:293:18: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). packet = atoi (buffer); data/libcgns-4.1.2/src/cgnstools/utilities/plot3d_to_cgns.c:265:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (sol->name, "FlowSolution"); data/libcgns-4.1.2/src/cgnstools/utilities/plot3d_to_cgns.c:434:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char basename[33] = "Base"; data/libcgns-4.1.2/src/cgnstools/utilities/plot3d_to_cgns.c:471:22: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). ib = atoi (argarg); data/libcgns-4.1.2/src/cgnstools/utilities/tecplot_to_cgns.c:37:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[257], name[33]; data/libcgns-4.1.2/src/cgnstools/utilities/tecplot_to_cgns.c:46:16: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FILE *fp = fopen (fname, "rb"); data/libcgns-4.1.2/src/cgnstools/utilities/tecplot_to_cgns.c:112:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *p, what[5]; data/libcgns-4.1.2/src/cgnstools/utilities/tecplot_to_cgns.c:249:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char elemname[33]; data/libcgns-4.1.2/src/cgnstools/utilities/tecplot_to_cgns.c:250:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char zonename[33], *p, *s, *basename = NULL; data/libcgns-4.1.2/src/cgnstools/utilities/tecplot_to_cgns.c:278:23: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (NULL == (fp = fopen (argv[argind], "r"))) { data/libcgns-4.1.2/src/cgnstools/utilities/tecplot_to_cgns.c:331:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (zonename, "Zone%d", ++nz); data/libcgns-4.1.2/src/cgnstools/utilities/tecplot_to_cgns.c:355:30: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). ni = atoi (s); data/libcgns-4.1.2/src/cgnstools/utilities/tecplot_to_cgns.c:358:30: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). nj = atoi (s); data/libcgns-4.1.2/src/cgnstools/utilities/tecplot_to_cgns.c:361:30: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). nk = atoi (s); data/libcgns-4.1.2/src/cgnstools/utilities/tecplot_to_cgns.c:364:30: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). nn = atoi (s); data/libcgns-4.1.2/src/cgnstools/utilities/tecplot_to_cgns.c:367:30: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). ne = atoi (s); data/libcgns-4.1.2/src/cgnstools/utilities/tetgen_to_cgns.c:55:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buff[256]; data/libcgns-4.1.2/src/cgnstools/utilities/tetgen_to_cgns.c:143:14: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). nEdges = atoi(line); data/libcgns-4.1.2/src/cgnstools/utilities/tetgen_to_cgns.c:268:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(ext, ".node"); data/libcgns-4.1.2/src/cgnstools/utilities/tetgen_to_cgns.c:270:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fp = fopen (fname, "r")) == NULL) { data/libcgns-4.1.2/src/cgnstools/utilities/tetgen_to_cgns.c:279:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(ext, ".edge"); data/libcgns-4.1.2/src/cgnstools/utilities/tetgen_to_cgns.c:282:19: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fp = fopen (fname, "r")) == NULL) { data/libcgns-4.1.2/src/cgnstools/utilities/tetgen_to_cgns.c:294:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fp = fopen (fname, "r")) == NULL) { data/libcgns-4.1.2/src/cgnstools/utilities/tetgen_to_cgns.c:304:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(ext, ".ele"); data/libcgns-4.1.2/src/cgnstools/utilities/tetgen_to_cgns.c:306:19: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fp = fopen (fname, "r")) == NULL) { data/libcgns-4.1.2/src/cgnstools/utilities/tetgen_to_cgns.c:405:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fp = fopen (fname, "r")) == NULL) { data/libcgns-4.1.2/src/cgnstools/utilities/tetgen_to_cgns.c:463:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/utilities/tetgen_to_cgns.c:475:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "Tri Group %d", mark); data/libcgns-4.1.2/src/cgnstools/utilities/tetgen_to_cgns.c:534:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/utilities/tetgen_to_cgns.c:554:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "Face Group %d", mark); data/libcgns-4.1.2/src/cgnstools/utilities/tetgen_to_cgns.c:611:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/utilities/tetgen_to_cgns.c:623:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "Tet Group %d", mark); data/libcgns-4.1.2/src/cgnstools/utilities/tetgen_to_cgns.c:666:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. basename = (char *)malloc(strlen(argv[1]) + 9); data/libcgns-4.1.2/src/cgnstools/utilities/tetgen_to_cgns.c:689:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(ext, ".node"); data/libcgns-4.1.2/src/cgnstools/utilities/tetgen_to_cgns.c:694:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(ext, ".1.node"); data/libcgns-4.1.2/src/cgnstools/utilities/tetgen_to_cgns.c:701:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(ext, ".smesh"); data/libcgns-4.1.2/src/cgnstools/utilities/tetgen_to_cgns.c:707:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(ext, ".poly"); data/libcgns-4.1.2/src/cgnstools/utilities/tetgen_to_cgns.c:715:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(ext, ".poly"); data/libcgns-4.1.2/src/cgnstools/utilities/tetgen_to_cgns.c:719:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(ext, ".smesh"); data/libcgns-4.1.2/src/cgnstools/utilities/tetgen_to_cgns.c:734:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (ext, ".cgns"); data/libcgns-4.1.2/src/cgnstools/utilities/update_ngon.c:78:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char datatype[3]; data/libcgns-4.1.2/src/cgnstools/utilities/update_ngon.c:212:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char datatype[3]; data/libcgns-4.1.2/src/cgnstools/utilities/update_ngon.c:328:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char nodelabel[CGIO_MAX_NAME_LENGTH + 1]; data/libcgns-4.1.2/src/cgnstools/utilities/update_ngon.c:337:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char msg[512]; data/libcgns-4.1.2/src/cgnstools/utilities/update_ngon.c:338:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(msg, "Mismatch in number of children and child IDs read\n"); data/libcgns-4.1.2/src/cgnstools/utilities/update_ngon.c:423:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char label[CGIO_MAX_NAME_LENGTH + 1]; data/libcgns-4.1.2/src/cgnstools/utilities/update_ngon.c:430:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char msg[512]; data/libcgns-4.1.2/src/cgnstools/utilities/update_ngon.c:431:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(msg, "Mismatch in number of children and child IDs read\n"); data/libcgns-4.1.2/src/cgnstools/utilities/update_ngon.c:460:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char version[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cgnstools/utilities/update_ngon.c:461:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char created[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cgnstools/utilities/update_ngon.c:462:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char modified[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/cgnstools/utilities/update_ngon.c:534:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tempfile[1024]; data/libcgns-4.1.2/src/cgnstools/utilities/update_ngon.c:535:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char label[CGIO_MAX_NAME_LENGTH + 1]; data/libcgns-4.1.2/src/cgnstools/utilities/update_ngon.c:583:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char msg[512]; data/libcgns-4.1.2/src/cgnstools/utilities/update_ngon.c:584:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(msg, "Mismatch in number of children and child IDs read\n"); data/libcgns-4.1.2/src/cgnstools/utilities/update_ngon.c:613:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char msg[512]; data/libcgns-4.1.2/src/cgnstools/utilities/vgrid_to_cgns.c:28:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/cgnstools/utilities/vgrid_to_cgns.c:186:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/libcgns-4.1.2/src/cgnstools/utilities/vgrid_to_cgns.c:188:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fp = fopen(filename, "r")) == NULL) { data/libcgns-4.1.2/src/cgnstools/utilities/vgrid_to_cgns.c:243:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(Patchs[n].name, "Patch%0*d", i, n + 1); data/libcgns-4.1.2/src/cgnstools/utilities/vgrid_to_cgns.c:283:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256], *p; data/libcgns-4.1.2/src/cgnstools/utilities/vgrid_to_cgns.c:285:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((fp = fopen(filename, "r")) == NULL) { data/libcgns-4.1.2/src/cgnstools/utilities/vgrid_to_cgns.c:319:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(&Patchs[np].name[nn], "%0*d", fmt, n+1); data/libcgns-4.1.2/src/cgnstools/utilities/vgrid_to_cgns.c:345:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(&Patchs[n].name[len], "%02d", ns); data/libcgns-4.1.2/src/cgnstools/utilities/vgrid_to_cgns.c:521:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. basename = (char *)malloc(strlen(argv[argind]) + 7); data/libcgns-4.1.2/src/cgnstools/utilities/vgrid_to_cgns.c:543:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(p, "cogsg"); data/libcgns-4.1.2/src/cgnstools/utilities/vgrid_to_cgns.c:552:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(p, "bc"); data/libcgns-4.1.2/src/cgnstools/utilities/vgrid_to_cgns.c:562:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(p, "mapbc"); data/libcgns-4.1.2/src/cgnstools/utilities/vgrid_to_cgns.c:575:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(p, "cgns"); data/libcgns-4.1.2/src/pcgnslib.c:44:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern char hdf5_access[64]; data/libcgns-4.1.2/src/pcgnslib.c:436:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(hdf5_access,"PARALLEL"); data/libcgns-4.1.2/src/pcgnslib.c:444:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(hdf5_access,"NATIVE"); data/libcgns-4.1.2/src/pcgnslib.c:914:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(section->parelem->name, "ParentElements"); data/libcgns-4.1.2/src/pcgnslib.c:937:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(section->parface->name, "ParentElementsPosition"); data/libcgns-4.1.2/src/ptests/benchmark_hdf5.c:110:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/ptests/benchmark_hdf5.c:184:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fname[32]; data/libcgns-4.1.2/src/ptests/benchmark_hdf5.c:185:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[32]; data/libcgns-4.1.2/src/ptests/benchmark_hdf5.c:223:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(fname, "benchmark_%06d.cgns", comm_size); data/libcgns-4.1.2/src/ptests/benchmark_hdf5.c:823:17: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FILE *fid = fopen(fname, "w"); data/libcgns-4.1.2/src/ptests/benchmark_hdf5_w.c:63:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/ptests/benchmark_hdf5_w.c:114:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fname[32]; data/libcgns-4.1.2/src/ptests/benchmark_hdf5_w.c:115:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[32]; data/libcgns-4.1.2/src/ptests/benchmark_hdf5_w.c:140:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(fname, "benchmark_%06d.cgns", comm_size); data/libcgns-4.1.2/src/ptests/benchmark_hdf5_w.c:219:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(fname, "timing_%06d_%d.dat", comm_size, piomode_i+1); data/libcgns-4.1.2/src/ptests/benchmark_hdf5_w.c:220:17: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FILE *fid = fopen(fname, "w"); data/libcgns-4.1.2/src/ptests/benchmark_hdf5_wf.c:63:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/ptests/benchmark_hdf5_wf.c:114:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fname[32]; data/libcgns-4.1.2/src/ptests/benchmark_hdf5_wf.c:115:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[32]; data/libcgns-4.1.2/src/ptests/benchmark_hdf5_wf.c:140:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(fname, "benchmark_%06d.cgns", comm_size); data/libcgns-4.1.2/src/ptests/benchmark_hdf5_wf.c:263:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(fname, "timing_%06d_%d.dat", comm_size, piomode_i+1); data/libcgns-4.1.2/src/ptests/benchmark_hdf5_wf.c:264:17: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FILE *fid = fopen(fname, "w"); data/libcgns-4.1.2/src/ptests/comm_test.c:19:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char test[20]; data/libcgns-4.1.2/src/ptests/pcgns_ctest.c:28:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/ptests/pcgns_ctest.c:30:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char *piomode[2] = {"independent", "collective"}; data/libcgns-4.1.2/src/ptests/pcgns_ctest.c:41:24: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). scale_factor = atoi(argv[1]); data/libcgns-4.1.2/src/ptests/pcgns_ctest.c:91:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "Base %d", nb + 1); data/libcgns-4.1.2/src/ptests/pcgns_ctest.c:98:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "Zone %d", nz + 1); data/libcgns-4.1.2/src/ptests/test_base.c:28:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char basename[100]; data/libcgns-4.1.2/src/ptests/test_zone.c:30:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char zonename[100]; data/libcgns-4.1.2/src/ptests/thesis_benchmark.c:189:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char zonename[100+1]; data/libcgns-4.1.2/src/tests/benchmark_hdf5.c:60:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/tests/benchmark_hdf5.c:95:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fname[32]; data/libcgns-4.1.2/src/tests/benchmark_hdf5.c:96:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[32]; data/libcgns-4.1.2/src/tests/benchmark_hdf5.c:132:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(fname, "benchmark.cgns"); data/libcgns-4.1.2/src/tests/benchmark_hdf5.c:706:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(fname, "timing.dat"); data/libcgns-4.1.2/src/tests/benchmark_hdf5.c:707:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FILE *fid = fopen(fname, "w"); data/libcgns-4.1.2/src/tests/cgioc.c:23:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char label[CGIO_MAX_LABEL_LENGTH+1]; data/libcgns-4.1.2/src/tests/cgioc.c:24:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data_type[CGIO_MAX_DATATYPE_LENGTH+1]; data/libcgns-4.1.2/src/tests/cgioc.c:225:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char node_name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/tests/cgioc_hdf.c:39:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&ia, &a, sizeof(a)); data/libcgns-4.1.2/src/tests/cgioc_hdf.c:40:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&ib, &b, sizeof(b)); data/libcgns-4.1.2/src/tests/cgioc_hdf.c:73:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c1[1] = "C"; data/libcgns-4.1.2/src/tests/cgioc_hdf.c:80:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char b1[DIM0]; data/libcgns-4.1.2/src/tests/cgioc_hdf.c:217:6: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char label_r[CGIO_MAX_LABEL_LENGTH+1]; data/libcgns-4.1.2/src/tests/cgioc_hdf.c:218:6: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data_type_r[CGIO_MAX_DATATYPE_LENGTH+1]; data/libcgns-4.1.2/src/tests/cgioc_hdf.c:227:6: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c1_r[1]; data/libcgns-4.1.2/src/tests/cgioc_hdf.c:234:15: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char b1_r[DIM0]; data/libcgns-4.1.2/src/tests/cgioc_hdf.c:237:6: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char files[NFILES][60] = { data/libcgns-4.1.2/src/tests/dbtest.c:28:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[30]; data/libcgns-4.1.2/src/tests/ser_benchmark_hdf5.c:65:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/tests/ser_benchmark_hdf5.c:100:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fname[32]; data/libcgns-4.1.2/src/tests/ser_benchmark_hdf5.c:101:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[32]; data/libcgns-4.1.2/src/tests/ser_benchmark_hdf5.c:137:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(fname, "benchmark.cgns"); data/libcgns-4.1.2/src/tests/ser_benchmark_hdf5.c:710:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(fname, "timing.dat"); data/libcgns-4.1.2/src/tests/ser_benchmark_hdf5.c:711:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FILE *fid = fopen(fname, "w"); data/libcgns-4.1.2/src/tests/test64c.c:39:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buff[64]; data/libcgns-4.1.2/src/tests/test64c.c:42:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buff, "%gb", (double)size / 1000000000); data/libcgns-4.1.2/src/tests/test64c.c:44:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buff, "%gm", (double)size / 1000000); data/libcgns-4.1.2/src/tests/test64c.c:46:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buff, "%gk", (double)size / 1000); data/libcgns-4.1.2/src/tests/test64c.c:48:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buff, "%ld", (long)size); data/libcgns-4.1.2/src/tests/test64c.c:55:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buff[64]; data/libcgns-4.1.2/src/tests/test64c.c:62:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buff, "%dh%dm%ds", h, m, s); data/libcgns-4.1.2/src/tests/test64c.c:64:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buff, "%dm%ds", m, s); data/libcgns-4.1.2/src/tests/test64c.c:66:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buff, "%ds", s); data/libcgns-4.1.2/src/tests/test64c.c:85:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bname[33], zname[33], cname[33]; data/libcgns-4.1.2/src/tests/test_exts.c:42:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/tests/test_exts.c:235:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (name, "User%d", i); data/libcgns-4.1.2/src/tests/test_exts.c:261:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (name, "User%d.%d", i, j); data/libcgns-4.1.2/src/tests/test_exts.c:290:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (name, "User%d.%d.%d", i, j, k); data/libcgns-4.1.2/src/tests/test_exts.c:318:21: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (name, "User%d.%d.%d.%d", i, j, k, n); data/libcgns-4.1.2/src/tests/test_family_tree.c:39:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char outfile[33], name[33], tname[33]; data/libcgns-4.1.2/src/tests/test_family_tree.c:40:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char family_name[CG_MAX_GOTO_DEPTH*33+1]; data/libcgns-4.1.2/src/tests/test_family_tree.c:41:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tfamily_name[CG_MAX_GOTO_DEPTH*33+1]; data/libcgns-4.1.2/src/tests/test_family_tree.c:43:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char big_family_name[33*CG_MAX_GOTO_DEPTH+2]; data/libcgns-4.1.2/src/tests/test_family_tree.c:47:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy( outfile, "family_tree.cgns" ); data/libcgns-4.1.2/src/tests/test_family_tree.c:210:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(big_family_name, "/FamilyTree/"); data/libcgns-4.1.2/src/tests/test_family_tree.c:238:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "ZoneFamily%d", j); data/libcgns-4.1.2/src/tests/test_family_tree.c:239:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(family_name, "/FamilyTree/Family1/Family1.2/Family1.2.1/Family1.2.1.%d", j); data/libcgns-4.1.2/src/tests/test_family_tree.c:271:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "BCFamily%d", j); data/libcgns-4.1.2/src/tests/test_family_tree.c:272:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(family_name, "/FamilyTree/Family%d", j); data/libcgns-4.1.2/src/tests/test_family_tree.c:285:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "SubRegionFamily%d", j); data/libcgns-4.1.2/src/tests/test_family_tree.c:286:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(family_name, "/FamilyTree/Family%d", j); data/libcgns-4.1.2/src/tests/test_family_tree.c:302:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "UserDataFamily%d", j); data/libcgns-4.1.2/src/tests/test_family_tree.c:303:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(family_name, "/FamilyTree/Family%d", j); data/libcgns-4.1.2/src/tests/test_family_tree.c:419:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( tname, "FamilyN1.1-%d", n ); data/libcgns-4.1.2/src/tests/test_family_tree.c:420:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( tfamily_name, "/FamilyTree/Family2/Family2.1"); data/libcgns-4.1.2/src/tests/test_family_tree.c:439:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( tname, "FamilyN1.1-%d", n+1 ); data/libcgns-4.1.2/src/tests/test_family_tree.c:440:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( tfamily_name, "/FamilyTree/Family2/Family%d.1", n+1 ); data/libcgns-4.1.2/src/tests/test_general_reshape.c:204:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name1[16], name2[16]; data/libcgns-4.1.2/src/tests/test_goto.c:46:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/tests/test_goto.c:225:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (name, "User%d", i); data/libcgns-4.1.2/src/tests/test_goto.c:245:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (name, "User%d.%d", i, j); data/libcgns-4.1.2/src/tests/test_goto.c:265:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (name, "User%d.%d.%d", i, j, k); data/libcgns-4.1.2/src/tests/test_goto.c:281:21: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (name, "User%d.%d.%d.%d", i, j, k, n); data/libcgns-4.1.2/src/tests/test_multifam.c:34:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33], outfile[33]; data/libcgns-4.1.2/src/tests/test_multifam.c:35:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tname[33]; data/libcgns-4.1.2/src/tests/test_multifam.c:37:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tfamily[66],family[66]; data/libcgns-4.1.2/src/tests/test_multifam.c:39:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tfamily[33],family[33]; data/libcgns-4.1.2/src/tests/test_multifam.c:42:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (outfile, "multifam.cgns"); data/libcgns-4.1.2/src/tests/test_multifam.c:71:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(family, "TopFamily%d", i); data/libcgns-4.1.2/src/tests/test_multifam.c:75:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "SubFamily%d", j); data/libcgns-4.1.2/src/tests/test_multifam.c:76:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(family, "Family%d", j); data/libcgns-4.1.2/src/tests/test_multifam.c:109:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "ZoneFamily%d", j); data/libcgns-4.1.2/src/tests/test_multifam.c:110:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(family, "Family%d", j); data/libcgns-4.1.2/src/tests/test_multifam.c:138:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "BCFamily%d", j); data/libcgns-4.1.2/src/tests/test_multifam.c:139:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(family, "Family%d", j); data/libcgns-4.1.2/src/tests/test_multifam.c:152:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "SubRegionFamily%d", j); data/libcgns-4.1.2/src/tests/test_multifam.c:153:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(family, "Family%d", j); data/libcgns-4.1.2/src/tests/test_multifam.c:167:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "UserDataFamily%d", j); data/libcgns-4.1.2/src/tests/test_multifam.c:168:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(family, "Family%d", j); data/libcgns-4.1.2/src/tests/test_multifam.c:182:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tfamily, "TopFamily%d", i); data/libcgns-4.1.2/src/tests/test_multifam.c:190:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tname, "SubFamily%d", j); data/libcgns-4.1.2/src/tests/test_multifam.c:191:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tfamily, "Family%d", j); data/libcgns-4.1.2/src/tests/test_multifam.c:200:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tname, "SubFamily%d", i); data/libcgns-4.1.2/src/tests/test_multifam.c:212:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tname, "ZoneFamily%d", j); data/libcgns-4.1.2/src/tests/test_multifam.c:213:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tfamily, "Family%d", j); data/libcgns-4.1.2/src/tests/test_multifam.c:233:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tname, "BCFamily%d", j); data/libcgns-4.1.2/src/tests/test_multifam.c:234:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tfamily, "Family%d", j); data/libcgns-4.1.2/src/tests/test_multifam.c:256:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tname, "SubRegionFamily%d", j); data/libcgns-4.1.2/src/tests/test_multifam.c:257:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tfamily, "Family%d", j); data/libcgns-4.1.2/src/tests/test_multifam.c:273:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tname, "UserDataFamily%d", j); data/libcgns-4.1.2/src/tests/test_multifam.c:274:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tfamily, "Family%d", j); data/libcgns-4.1.2/src/tests/test_partial.c:81:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/tests/test_ver31.c:45:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char errmsg[256]; data/libcgns-4.1.2/src/tests/test_ver31.c:61:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char outfile[32]; data/libcgns-4.1.2/src/tests/test_ver31.c:64:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (outfile, "ver31.cgns"); data/libcgns-4.1.2/src/tests/test_ver31.c:278:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (errmsg, "zone %d coordinates", nz); data/libcgns-4.1.2/src/tests/test_ver31.c:298:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (errmsg, "zone %d elements", nz); data/libcgns-4.1.2/src/tests/test_ver31.c:312:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33], cname[33], hname[33], sname[33], zcname[33]; data/libcgns-4.1.2/src/tests/test_ver31.c:313:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cpointers[32*NUM_ZCONN+1], spointers[32*NUM_ZCONN+1]; data/libcgns-4.1.2/src/tests/test_ver31.c:354:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "Zone%d", n); data/libcgns-4.1.2/src/tests/test_ver31.c:357:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (errmsg, "structured zone %d", n); data/libcgns-4.1.2/src/tests/test_ver31.c:395:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(cname, "conn%d", nc); data/libcgns-4.1.2/src/tests/test_ver31.c:396:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(hname, "hole%d", nc); data/libcgns-4.1.2/src/tests/test_ver31.c:485:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(sname, "SubRegion2"); data/libcgns-4.1.2/src/tests/test_ver31.c:512:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(sname, "SubRegion%d", nc); data/libcgns-4.1.2/src/tests/test_ver31.c:590:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(sname, "SubRegion%d", nc); data/libcgns-4.1.2/src/tests/test_ver31.c:597:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "Zone%dInterativeData", n); data/libcgns-4.1.2/src/tests/test_ver31.c:630:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33], zcname[33], pointers[32*NUM_ZCONN+1]; data/libcgns-4.1.2/src/tests/test_ver31.c:657:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "Zone%d", n); data/libcgns-4.1.2/src/tests/test_ver31.c:660:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (errmsg, "unstructured zone %d", n); data/libcgns-4.1.2/src/tests/test_ver31.c:679:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "conn%d", nc); data/libcgns-4.1.2/src/tests/test_ver31.c:775:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "hole%d", nc); data/libcgns-4.1.2/src/tests/test_ver31.c:828:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "Zone%dInterativeData", n); data/libcgns-4.1.2/src/tests/test_ver31.c:852:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/tests/test_ver31.c:875:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33], zcname[33], expected[33], pointers[32*NUM_ZCONN+1]; data/libcgns-4.1.2/src/tests/test_ver31.c:896:14: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). nc = atoi(&zcname[n]); data/libcgns-4.1.2/src/tests/test_ver31.c:932:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(expected, "conn%d", nc); data/libcgns-4.1.2/src/tests/test_ver31.c:951:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(expected, "hole%d", nc); data/libcgns-4.1.2/src/tests/test_ver31.c:967:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char srname[33], name[33], text[65], *descr; data/libcgns-4.1.2/src/tests/write_array.c:18:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/tests/write_array.c:86:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (name, "Array%d", na); data/libcgns-4.1.2/src/tests/write_array.c:107:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (name, "Array%d", na); data/libcgns-4.1.2/src/tests/write_bcdata.c:16:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/tests/write_bcdata.c:111:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (name, "BC%d", j); data/libcgns-4.1.2/src/tests/write_bcdata.c:117:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (name, "BCData%d", i); data/libcgns-4.1.2/src/tests/write_bcdata.c:136:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (name, "Family%d", j); data/libcgns-4.1.2/src/tests/write_bcdata.c:143:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (name, "FamilyBCData%d", i); data/libcgns-4.1.2/src/tests/write_links.c:24:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33], linkpath[33]; data/libcgns-4.1.2/src/tests/write_links.c:25:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fname[33], linkfile[33]; data/libcgns-4.1.2/src/tests/write_links.c:54:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (fname, "zone%d.cgns", nz); data/libcgns-4.1.2/src/tests/write_links.c:62:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (fname, "zone%d.cgns", nz); data/libcgns-4.1.2/src/tests/write_links.c:79:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (fname, "links.cgns"); data/libcgns-4.1.2/src/tests/write_links.c:81:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (linkpath, "/Base/Zone"); data/libcgns-4.1.2/src/tests/write_links.c:89:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (name, "Zone%d", nz); data/libcgns-4.1.2/src/tests/write_links.c:90:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (linkfile, "zone%d.cgns", nz); data/libcgns-4.1.2/src/tests/write_test.c:62:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char errmsg[128]; data/libcgns-4.1.2/src/tests/write_test.c:76:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char outfile[32]; data/libcgns-4.1.2/src/tests/write_test.c:78:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (outfile, "test.cgns"); data/libcgns-4.1.2/src/tests/write_test.c:322:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (errmsg, "reference state data %d", n+1); data/libcgns-4.1.2/src/tests/write_test.c:333:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (errmsg, "reference state data %d dataclass", n+1); data/libcgns-4.1.2/src/tests/write_test.c:482:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (errmsg, "zone %d coordinates", nz); data/libcgns-4.1.2/src/tests/write_test.c:496:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (errmsg, "zone %d elements", nz); data/libcgns-4.1.2/src/tests/write_test.c:503:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pathname[128]; data/libcgns-4.1.2/src/tests/write_test.c:508:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (errmsg, "zone %d link", nz); data/libcgns-4.1.2/src/tests/write_test.c:523:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/tests/write_test.c:550:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "Zone%d", n); data/libcgns-4.1.2/src/tests/write_test.c:553:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (errmsg, "structured zone %d", n); data/libcgns-4.1.2/src/tests/write_test.c:740:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/tests/write_test.c:771:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "Zone%d", n); data/libcgns-4.1.2/src/tests/write_test.c:774:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (errmsg, "unstructured zone %d", n); data/libcgns-4.1.2/src/tests/write_zones.c:25:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33], linkpath[65]; data/libcgns-4.1.2/src/tests/write_zones.c:75:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (name, "Zone%d", nz); data/libcgns-4.1.2/src/tests/write_zones.c:109:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (name, "Zone%d", nz); data/libcgns-4.1.2/src/tests/write_zones.c:139:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (name, "Link to Zone%d", nz); data/libcgns-4.1.2/src/tests/write_zones.c:140:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (linkpath, "/Base/Zone%d", nz); data/libcgns-4.1.2/src/tools/cgnames.c:430:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. if (matches ((char *)pattern, Identifier[n].name) > 0) { data/libcgns-4.1.2/src/tools/cgnames.c:469:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/tools/cgnscheck.c:63:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/tools/cgnscheck.c:76:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/tools/cgnscheck.c:96:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. typedef char CGNSNAME[33]; data/libcgns-4.1.2/src/tools/cgnscheck.c:214:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char goLabel[MAX_GOTO_DEPTH][33]; data/libcgns-4.1.2/src/tools/cgnscheck.c:223:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *labels[MAX_GOTO_DEPTH]; data/libcgns-4.1.2/src/tools/cgnscheck.c:338:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/tools/cgnscheck.c:365:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (p, "%3.3d~", n); data/libcgns-4.1.2/src/tools/cgnscheck.c:379:26: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (NULL == (oldfp = fopen (oldfile, "rb"))) data/libcgns-4.1.2/src/tools/cgnscheck.c:381:26: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (NULL == (newfp = fopen (newfile, "w+b"))) { data/libcgns-4.1.2/src/tools/cgnscheck.c:1169:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/tools/cgnscheck.c:1910:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/tools/cgnscheck.c:1948:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33], *desc; data/libcgns-4.1.2/src/tools/cgnscheck.c:2049:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *desc, name[33]; data/libcgns-4.1.2/src/tools/cgnscheck.c:2112:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *desc, name[33]; data/libcgns-4.1.2/src/tools/cgnscheck.c:2179:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/tools/cgnscheck.c:2244:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *desc, name[33]; data/libcgns-4.1.2/src/tools/cgnscheck.c:2500:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/tools/cgnscheck.c:3114:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33], *desc; data/libcgns-4.1.2/src/tools/cgnscheck.c:3264:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/tools/cgnscheck.c:3282:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33], *desc; data/libcgns-4.1.2/src/tools/cgnscheck.c:3562:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33], *desc; data/libcgns-4.1.2/src/tools/cgnscheck.c:3619:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33], dname[33], *desc; data/libcgns-4.1.2/src/tools/cgnscheck.c:3834:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33], dname[33], *desc; data/libcgns-4.1.2/src/tools/cgnscheck.c:4137:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/tools/cgnscheck.c:4223:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char zcname[33]; data/libcgns-4.1.2/src/tools/cgnscheck.c:4243:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33], *desc; data/libcgns-4.1.2/src/tools/cgnscheck.c:4274:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/tools/cgnscheck.c:4380:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/tools/cgnscheck.c:4459:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/tools/cgnscheck.c:4560:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/tools/cgnscheck.c:4672:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33], dname[33], *p; data/libcgns-4.1.2/src/tools/cgnscheck.c:4827:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33], *sname; data/libcgns-4.1.2/src/tools/cgnscheck.c:5031:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *p, *desc, name[33], buff[33]; data/libcgns-4.1.2/src/tools/cgnscheck.c:5187:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33], *desc; data/libcgns-4.1.2/src/tools/cgnscheck.c:5429:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[33]; data/libcgns-4.1.2/src/tools/cgnscheck.c:5503:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *desc, name[33]; data/libcgns-4.1.2/src/tools/cgnscheck.c:5563:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char famname[33], name[33], cad[33], *filename; data/libcgns-4.1.2/src/tools/cgnscheck.c:5659:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *p, *desc, name[33]; data/libcgns-4.1.2/src/tools/cgnscheck.c:5896:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char basename[33], name[33], *desc1, *desc2, *desc3; data/libcgns-4.1.2/src/tools/cgnscheck.c:6153:26: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). dowarn = atoi (argarg); data/libcgns-4.1.2/src/tools/cgnsconvert.c:39:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tempfile[1024]; data/libcgns-4.1.2/src/tools/cgnsdiff.c:40:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char errmsg[128]; data/libcgns-4.1.2/src/tools/cgnsdiff.c:137:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char label1[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/tools/cgnsdiff.c:138:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char type1[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/tools/cgnsdiff.c:142:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char label2[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/tools/cgnsdiff.c:143:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char type2[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/tools/cgnsdiff.c:257:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char p1[33], p2[33]; data/libcgns-4.1.2/src/tools/cgnsdiff.c:267:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char p1[33], p2[33]; data/libcgns-4.1.2/src/tools/cgnsdiff.c:292:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path1[1024], path2[1024]; data/libcgns-4.1.2/src/tools/cgnslist.c:26:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char leader[MAX_LEADER+1]; data/libcgns-4.1.2/src/tools/cgnslist.c:50:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char label[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/tools/cgnslist.c:51:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char type[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/tools/cgnslist.c:97:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/tools/cgnslist.c:98:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name_in_file[CGIO_MAX_LINK_LENGTH+1]; data/libcgns-4.1.2/src/tools/cgnslist.c:99:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char file_name[CGIO_MAX_FILE_LENGTH+1]; data/libcgns-4.1.2/src/tools/cgnslist.c:156:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *name, rootname[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/tools/cgnslist.c:158:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char version[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/tools/cgnslist.c:159:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char created[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/tools/cgnslist.c:160:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char modified[CGIO_MAX_NAME_LENGTH+1]; data/libcgns-4.1.2/src/tools/cgnslist.c:171:26: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). indent = atoi (argarg); data/libcgns-4.1.2/src/tools/cgnsnames.c:9:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char term[16], num[33], den[33]; data/libcgns-4.1.2/src/tools/cgnsnames.c:22:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (term, "%c^%d", label[n], abs(i)); data/libcgns-4.1.2/src/tools/cgnsnames.c:24:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (term, "%c", label[n]); data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_timevert_str.c:118:5: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(sn[0],&solname[0],32); data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_timevert_str.c:119:5: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(sn[1],&solname[32],32); data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_timevert_str.c:120:5: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(sn[2],&solname[64],32); data/libcgns-4.1.2/src/Test_UserGuideCode/C_code/read_timevert_str.c:136:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strncmp(solname2,sn[n-1],strlen(solname2)) != 0) data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:58:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if( strlen( &tmp_names[ i * (*name_length+1) ]) == *name_length ) { data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:60:7: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( &pstr[ i * (*name_length) ], &tmp_names[ i * (*name_length+1) ], data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:271:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( F2CP(error_string), msg_buf, *str_length ) ; data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:300:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if( strlen( ctype ) < *data_type_length ) { data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:305:7: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( F2CP(data_type), ctype, *data_type_length ) ; data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:347:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if( strlen( clabel ) < *label_length ) { data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:352:7: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( F2CP(label), clabel, *label_length ) ; data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:374:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if( strlen(cfilename) < *filename_length ) { data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:379:7: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( F2CP(filename), cfilename, *filename_length ) ; data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:382:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if( strlen(cpath) < *link_path_length ) { data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:387:7: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( F2CP(link_path), cpath, *link_path_length ) ; data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:406:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if( strlen( cname ) < *name_length ) { data/libcgns-4.1.2/src/adf/ADF_fortran_2_c.c:411:7: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( F2CP(name), cname, *name_length ) ; data/libcgns-4.1.2/src/adf/ADF_interface.c:506:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). name_length = (int)strlen( &name[ name_start ] ) ; data/libcgns-4.1.2/src/adf/ADF_interface.c:530:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( child_node.name, &name[ name_start ], name_length ) ; data/libcgns-4.1.2/src/adf/ADF_interface.c:866:4: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( node_header.name, ROOT_NODE_NAME, strlen( ROOT_NODE_NAME )) ; data/libcgns-4.1.2/src/adf/ADF_interface.c:866:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strncpy( node_header.name, ROOT_NODE_NAME, strlen( ROOT_NODE_NAME )) ; data/libcgns-4.1.2/src/adf/ADF_interface.c:867:4: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( node_header.label, ROOT_NODE_LABEL, strlen( ROOT_NODE_LABEL ) ) ; data/libcgns-4.1.2/src/adf/ADF_interface.c:867:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strncpy( node_header.label, ROOT_NODE_LABEL, strlen( ROOT_NODE_LABEL ) ) ; data/libcgns-4.1.2/src/adf/ADF_interface.c:1298:4: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (err_msg_str, strerror(ADF_sys_err), ADF_MAX_ERROR_STR_LENGTH-8); data/libcgns-4.1.2/src/adf/ADF_interface.c:1300:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = err_msg_str + strlen(err_msg_str) - 1; data/libcgns-4.1.2/src/adf/ADF_interface.c:1599:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). else if ( lenfilename > 0 && lenfilename == strlen( link_data ) ) data/libcgns-4.1.2/src/adf/ADF_interface.c:1605:4: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( file, link_data, lenfilename) ; data/libcgns-4.1.2/src/adf/ADF_interface.c:1689:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *len_name = (int)strlen(link_data) - 1; data/libcgns-4.1.2/src/adf/ADF_interface.c:1691:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). else if ( lenfilename > 0 && lenfilename == strlen( link_data ) ) data/libcgns-4.1.2/src/adf/ADF_interface.c:1698:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *len_name = (int)(strlen(link_data) - lenfilename - 1); data/libcgns-4.1.2/src/adf/ADF_interface.c:1802:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). name_length = (int)strlen( name ) ; data/libcgns-4.1.2/src/adf/ADF_interface.c:2053:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). lversion = (int)strlen ( version ) ; data/libcgns-4.1.2/src/adf/ADF_interface.c:2127:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). filename_length = (int)strlen( file_name) ; data/libcgns-4.1.2/src/adf/ADF_interface.c:2129:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). linked_to_length = (int)strlen( name_in_file ) ; data/libcgns-4.1.2/src/adf/ADF_interface.c:2424:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). datatype_length = (int)strlen( data_type ) ; data/libcgns-4.1.2/src/adf/ADF_interface.c:2515:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). name_length = (int)strlen( &name[ name_start ] ) ; data/libcgns-4.1.2/src/adf/ADF_interface.c:2563:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). name_length = (int)strlen( name ) ; data/libcgns-4.1.2/src/adf/ADF_interface.c:3251:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). label_length = (int)strlen( label ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:195:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). # define READ read data/libcgns-4.1.2/src/adf/ADF_internals.c:709:7: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( sub_node_table[i].child_name, data/libcgns-4.1.2/src/adf/ADF_internals.c:1362:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for( i=(int)strlen( str ); i<length; i++ ) data/libcgns-4.1.2/src/adf/ADF_internals.c:1667:7: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( sub_node_entry->child_name, sub_node_table[i].child_name, data/libcgns-4.1.2/src/adf/ADF_internals.c:1712:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). str_length = (int)strlen( str ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:1718:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if( (int) strlen( str ) > max_length ) { data/libcgns-4.1.2/src/adf/ADF_internals.c:1835:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). new_length = (int)strlen( new_name ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:2855:4: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy ( sub_node_table[i].child_name, sub_node_table[i+1].child_name, data/libcgns-4.1.2/src/adf/ADF_internals.c:2862:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). Risk is low because the source is a constant string. strncpy ( sub_node_table[i].child_name, data/libcgns-4.1.2/src/adf/ADF_internals.c:3171:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). str_len = (int)strlen( data_type_string ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:4168:4: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( free_chunk.start_tag, free_chunk_start_tag, TAG_SIZE ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:4169:4: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( free_chunk.end_tag, free_chunk_end_tag, TAG_SIZE ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:4442:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( file_header->tag0, file_header_tags[0], TAG_SIZE ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:4443:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( file_header->tag1, file_header_tags[1], TAG_SIZE ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:4444:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( file_header->tag2, file_header_tags[2], TAG_SIZE ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:4445:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( file_header->tag3, file_header_tags[3], TAG_SIZE ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:4446:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( file_header->tag4, file_header_tags[4], TAG_SIZE ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:4447:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( file_header->tag5, file_header_tags[5], TAG_SIZE ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:4450:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( file_header->what, what_string, WHAT_STRING_SIZE ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:4451:6: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ( strlen(what_string) < WHAT_STRING_SIZE ) data/libcgns-4.1.2/src/adf/ADF_internals.c:4460:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( file_header->modification_date, file_header->creation_date, data/libcgns-4.1.2/src/adf/ADF_internals.c:4569:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( free_chunk_table->start_tag, free_chunk_table_start_tag, TAG_SIZE ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:4570:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( free_chunk_table->end_tag, free_chunk_table_end_tag, TAG_SIZE ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:4608:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( node_header->node_start_tag, node_start_tag, TAG_SIZE ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:4609:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( node_header->node_end_tag, node_end_tag, TAG_SIZE ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:5553:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ADF_file[index].file_name = (char *) malloc (strlen(file) + 1); data/libcgns-4.1.2/src/adf/ADF_internals.c:6372:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( (char *)file_header->what, &disk_header[ 0], 32 ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:6373:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( (char *)file_header->tag0, &disk_header[ 32], TAG_SIZE ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:6374:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( (char *)file_header->creation_date, &disk_header[ 36], DATE_TIME_SIZE); data/libcgns-4.1.2/src/adf/ADF_internals.c:6375:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( (char *)file_header->tag1, &disk_header[ 64], TAG_SIZE ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:6376:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( (char *)file_header->modification_date, &disk_header[ 68], data/libcgns-4.1.2/src/adf/ADF_internals.c:6378:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( (char *)file_header->tag2, &disk_header[ 96], TAG_SIZE ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:6381:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( (char *)file_header->tag3, &disk_header[102], TAG_SIZE ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:6455:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( file_header->tag4, &disk_header[130], TAG_SIZE ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:6497:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( file_header->tag5, &disk_header[182], TAG_SIZE ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:6609:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( free_chunk->start_tag, free_chunk_start_tag, 4 ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:6610:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( free_chunk->end_tag, free_chunk_end_tag, 4 ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:6678:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( (char *)free_chunk_table->start_tag, &disk_free_chunk_data[ 0], data/libcgns-4.1.2/src/adf/ADF_internals.c:6680:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( (char *)free_chunk_table->end_tag, data/libcgns-4.1.2/src/adf/ADF_internals.c:6838:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( (char *)node_header->node_start_tag, &disk_node_data[ 0], TAG_SIZE ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:6839:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( (char *)node_header->node_end_tag, data/libcgns-4.1.2/src/adf/ADF_internals.c:6842:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( (char *)node_header->name, &disk_node_data[ TAG_SIZE], data/libcgns-4.1.2/src/adf/ADF_internals.c:6844:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( (char *)node_header->label, &disk_node_data[ 36], ADF_LABEL_LENGTH ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:6866:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( (char *)node_header->data_type, &disk_node_data[ 96], data/libcgns-4.1.2/src/adf/ADF_internals.c:7059:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( sub_node_table_entry->child_name, &sub_node_entry_disk_data[0], data/libcgns-4.1.2/src/adf/ADF_internals.c:7145:5: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if( strlen( what_string ) > WHAT_STRING_SIZE ) { data/libcgns-4.1.2/src/adf/ADF_internals.c:8189:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( &disk_header[ 0], (char *)file_header->what, WHAT_STRING_SIZE ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:8190:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( &disk_header[ 32], (char *)file_header->tag0, TAG_SIZE ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:8191:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( &disk_header[ 36], (char *)file_header->creation_date, DATE_TIME_SIZE); data/libcgns-4.1.2/src/adf/ADF_internals.c:8192:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( &disk_header[ 64], (char *)file_header->tag1, TAG_SIZE ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:8193:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( &disk_header[ 68], (char *)file_header->modification_date, data/libcgns-4.1.2/src/adf/ADF_internals.c:8195:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( &disk_header[ 96], (char *)file_header->tag2, TAG_SIZE ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:8198:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( &disk_header[102], (char *)file_header->tag3, TAG_SIZE ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:8249:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( &disk_header[130], file_header->tag4, TAG_SIZE ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:8291:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( &disk_header[182], file_header->tag5, TAG_SIZE ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:8484:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( &disk_free_chunk_data[ 0], (char *)free_chunk_table->start_tag, data/libcgns-4.1.2/src/adf/ADF_internals.c:8549:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( &disk_free_chunk_data[ 76], (char *)free_chunk_table->end_tag, data/libcgns-4.1.2/src/adf/ADF_internals.c:8672:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( &disk_node_data[ 0], (char *)node_header->node_start_tag, TAG_SIZE ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:8673:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( &disk_node_data[ TAG_SIZE], (char *)node_header->name, data/libcgns-4.1.2/src/adf/ADF_internals.c:8675:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( &disk_node_data[ 36], (char *)node_header->label, ADF_LABEL_LENGTH ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:8697:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( &disk_node_data[ 96], (char *)node_header->data_type, data/libcgns-4.1.2/src/adf/ADF_internals.c:8737:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( &disk_node_data[242], (char *)node_header->node_end_tag, TAG_SIZE ) ; data/libcgns-4.1.2/src/adf/ADF_internals.c:8881:1: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( &sub_node_entry_disk_data[0], sub_node_table_entry->child_name, data/libcgns-4.1.2/src/adf/ADF_internals.c:8941:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). string_len = (int)strlen ( *string_pos ) ; data/libcgns-4.1.2/src/adfh/ADFH.c:889:5: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(p, name, mta_root->n_length-1); data/libcgns-4.1.2/src/adfh/ADFH.c:903:5: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(p, name, mta_root->n_length-1); data/libcgns-4.1.2/src/adfh/ADFH.c:1227:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(p) > ADF_NAME_LENGTH) { data/libcgns-4.1.2/src/adfh/ADFH.c:1235:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (p = name+strlen(name)-1; p >= name && isspace(*p); p--) data/libcgns-4.1.2/src/adfh/ADFH.c:1439:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). namelen = (int)strlen(nodename); data/libcgns-4.1.2/src/adfh/ADFH.c:1504:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(label) > ADF_NAME_LENGTH) { data/libcgns-4.1.2/src/adfh/ADFH.c:1789:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char *path = (char *) malloc (strlen(name)+1); data/libcgns-4.1.2/src/adfh/ADFH.c:1982:3: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(buff, stat, 9); data/libcgns-4.1.2/src/adfh/ADFH.c:2025:5: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(buff, fmt, 11); data/libcgns-4.1.2/src/adfh/ADFH.c:2166:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). new_str_data(gid, D_FORMAT, format, (int)strlen(format), err) || data/libcgns-4.1.2/src/adfh/ADFH.c:2871:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). target = (char *) malloc (strlen(name_in_file)+2); data/libcgns-4.1.2/src/adfh/ADFH.c:2892:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (new_str_data(lid,D_PATH,name_in_file,(int)strlen(name_in_file),err)) return; data/libcgns-4.1.2/src/adfh/ADFH.c:2893:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (*file && new_str_data(lid,D_FILE,file,(int)strlen(file),err)) return; data/libcgns-4.1.2/src/adfh/ADFH_ftoc.c:71:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(c_string); data/libcgns-4.1.2/src/cg_ftoc.c:79:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = (int)strlen(c_string); data/libcgns-4.1.2/src/cg_ftoc.c:3059:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *size = (cgint_f)strlen(c_descr_text); data/libcgns-4.1.2/src/cg_ftoc.c:3332:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *descr_size = (cgint_f)strlen(c_descr_text); data/libcgns-4.1.2/src/cgio_ftoc.c:62:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). c_len = (int)strlen(c_str); data/libcgns-4.1.2/src/cgio_ftoc.c:92:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(c_str) < 1) { data/libcgns-4.1.2/src/cgns_internals.c:389:13: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(zone->famname[n].family, fam, (CG_MAX_GOTO_DEPTH*(CGIO_MAX_NAME_LENGTH+1))); data/libcgns-4.1.2/src/cgns_internals.c:478:13: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(family->famname[n].family, fam,(CG_MAX_GOTO_DEPTH*(CGIO_MAX_NAME_LENGTH+1))); data/libcgns-4.1.2/src/cgns_internals.c:571:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(geoformat)>32) { data/libcgns-4.1.2/src/cgns_internals.c:759:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(FamilyName) > (CG_MAX_GOTO_DEPTH*(CGIO_MAX_NAME_LENGTH+1))) { data/libcgns-4.1.2/src/cgns_internals.c:774:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cgsize_t len = (cgsize_t)strlen(family_name); data/libcgns-4.1.2/src/cgns_internals.c:2486:13: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(boco->famname[n].family, fam, (CG_MAX_GOTO_DEPTH*(CGIO_MAX_NAME_LENGTH+1))); data/libcgns-4.1.2/src/cgns_internals.c:2606:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cgsize_t len = (cgsize_t)strlen(locname); data/libcgns-4.1.2/src/cgns_internals.c:4534:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(string_data) != 32*5) { data/libcgns-4.1.2/src/cgns_internals.c:4552:5: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (unit_name, string_data, 32); data/libcgns-4.1.2/src/cgns_internals.c:4556:5: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (unit_name, &string_data[32], 32); data/libcgns-4.1.2/src/cgns_internals.c:4560:5: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (unit_name, &string_data[64], 32); data/libcgns-4.1.2/src/cgns_internals.c:4564:5: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (unit_name, &string_data[96], 32); data/libcgns-4.1.2/src/cgns_internals.c:4568:5: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (unit_name, &string_data[128], 32); data/libcgns-4.1.2/src/cgns_internals.c:4584:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(string_data) != 32*3) { data/libcgns-4.1.2/src/cgns_internals.c:4592:9: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (unit_name, string_data, 32); data/libcgns-4.1.2/src/cgns_internals.c:4596:9: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (unit_name, &string_data[32], 32); data/libcgns-4.1.2/src/cgns_internals.c:4600:9: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (unit_name, &string_data[64], 32); data/libcgns-4.1.2/src/cgns_internals.c:5123:17: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(user_data[0][n].famname[i].family, fam, (CG_MAX_GOTO_DEPTH*33)); data/libcgns-4.1.2/src/cgns_internals.c:5345:17: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(reg[n].famname[i].family, fam, (20*33)-1); data/libcgns-4.1.2/src/cgns_internals.c:5926:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals = (cgsize_t)strlen(SimulationTypeName[base->type]); data/libcgns-4.1.2/src/cgns_internals.c:5960:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals[0] = (cgsize_t)strlen(ZoneTypeName[zone->type]); data/libcgns-4.1.2/src/cgns_internals.c:5974:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals[0] = (cgsize_t)strlen(zone->family_name); data/libcgns-4.1.2/src/cgns_internals.c:5981:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals[0] = (cgsize_t)strlen(zone->famname[n].family); data/libcgns-4.1.2/src/cgns_internals.c:6072:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals = (cgsize_t)strlen(family->famname[n].family); data/libcgns-4.1.2/src/cgns_internals.c:6091:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals = (cgsize_t)strlen(BCTypeName[fambc->type]); data/libcgns-4.1.2/src/cgns_internals.c:6120:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals = (cgsize_t)strlen(geo->file); data/libcgns-4.1.2/src/cgns_internals.c:6125:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals = (cgsize_t)strlen(geo->format); data/libcgns-4.1.2/src/cgns_internals.c:6266:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals = (cgsize_t)strlen(GridLocationName[sol->location]); data/libcgns-4.1.2/src/cgns_internals.c:6345:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals = (cgsize_t)strlen(one21->donor); data/libcgns-4.1.2/src/cgns_internals.c:6396:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals = (cgsize_t)strlen(conn->donor); data/libcgns-4.1.2/src/cgns_internals.c:6401:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals = (cgsize_t)strlen(GridConnectivityTypeName[conn->type]); data/libcgns-4.1.2/src/cgns_internals.c:6408:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals = (cgsize_t)strlen(GridLocationName[conn->location]); data/libcgns-4.1.2/src/cgns_internals.c:6487:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals = (cgsize_t)strlen(AverageInterfaceTypeName[caverage->type]); data/libcgns-4.1.2/src/cgns_internals.c:6558:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals = (cgsize_t)strlen(GridLocationName[hole->location]); data/libcgns-4.1.2/src/cgns_internals.c:6638:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals = (cgsize_t)strlen(BCTypeName[boco->type]); data/libcgns-4.1.2/src/cgns_internals.c:6651:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals = (cgsize_t)strlen(GridLocationName[boco->location]); data/libcgns-4.1.2/src/cgns_internals.c:6658:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals = (cgsize_t)strlen(boco->family_name); data/libcgns-4.1.2/src/cgns_internals.c:6665:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals = (cgsize_t)strlen(boco->famname[n].family); data/libcgns-4.1.2/src/cgns_internals.c:6761:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals = (cgsize_t)strlen(WallFunctionTypeName[bcwall->type]); data/libcgns-4.1.2/src/cgns_internals.c:6786:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals = (cgsize_t)strlen(AreaTypeName[bcarea->type]); data/libcgns-4.1.2/src/cgns_internals.c:6819:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals= (cgsize_t)strlen(BCTypeName[dataset->type]); data/libcgns-4.1.2/src/cgns_internals.c:6875:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals = (cgsize_t)strlen(GridLocationName[dataset->location]); data/libcgns-4.1.2/src/cgns_internals.c:6981:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals = (cgsize_t)strlen(GoverningEquationsTypeName[governing->type]); data/libcgns-4.1.2/src/cgns_internals.c:7085:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals = (cgsize_t)strlen(ModelTypeName[model->type]); data/libcgns-4.1.2/src/cgns_internals.c:7319:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals = (cgsize_t)strlen(GridLocationName[discrete->location]); data/libcgns-4.1.2/src/cgns_internals.c:7397:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals=(cgsize_t)strlen(RigidGridMotionTypeName[rmotion->type]); data/libcgns-4.1.2/src/cgns_internals.c:7437:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals=(cgsize_t)strlen(ArbitraryGridMotionTypeName[amotion->type]); data/libcgns-4.1.2/src/cgns_internals.c:7447:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals = (cgsize_t)strlen(GridLocationName[amotion->location]); data/libcgns-4.1.2/src/cgns_internals.c:7688:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals=(cgsize_t)strlen(DataClassName[data_class]); data/libcgns-4.1.2/src/cgns_internals.c:7704:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals=(cgsize_t)strlen(descr->text); data/libcgns-4.1.2/src/cgns_internals.c:7756:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals = (cgsize_t)strlen(GridLocationName[user_data->location]); data/libcgns-4.1.2/src/cgns_internals.c:7765:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals = (cgsize_t)strlen(user_data->family_name); data/libcgns-4.1.2/src/cgns_internals.c:7774:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals = (cgsize_t)strlen(user_data->famname[n].family); data/libcgns-4.1.2/src/cgns_internals.c:8469:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). leni=(int)strlen(names[i]); data/libcgns-4.1.2/src/cgns_internals.c:8472:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). lenj=(int)strlen(names[j]); data/libcgns-4.1.2/src/cgns_internals.c:8480:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). leni=(int)strlen(names[i]); data/libcgns-4.1.2/src/cgns_internals.c:8489:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (k==(int)(strlen(names[j])-1)) { data/libcgns-4.1.2/src/cgns_internals.c:8493:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). leni=(int)strlen(names[i]); data/libcgns-4.1.2/src/cgns_internals.c:8626:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(string) > 32) { data/libcgns-4.1.2/src/cgns_internals.c:8638:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(string) > 65) { data/libcgns-4.1.2/src/cgns_internals.c:8657:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (p==strlen(string)-1){ data/libcgns-4.1.2/src/cgns_io.c:243:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). tmpfile = (char *)malloc(strlen(filename) + 6); data/libcgns-4.1.2/src/cgns_io.c:249:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). tmpfile = (char *)malloc(strlen(linkfile) + 6); data/libcgns-4.1.2/src/cgns_io.c:310:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cgio_paths[cgio_n_paths] = (char *) malloc (strlen(path)+1); data/libcgns-4.1.2/src/cgns_io.c:360:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = max_path_len - 1 - (int)strlen(filename); data/libcgns-4.1.2/src/cgns_io.c:383:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (int)strlen(parentfile) < max_path_len-1) { data/libcgns-4.1.2/src/cgns_io.c:391:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((int)strlen(pathname) <= size) { data/libcgns-4.1.2/src/cgns_io.c:428:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = (int)strlen(p); data/libcgns-4.1.2/src/cgns_io.c:433:13: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (pathname, p, len); data/libcgns-4.1.2/src/cgns_io.c:459:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = (int)strlen(p); data/libcgns-4.1.2/src/cgns_io.c:464:13: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (pathname, p, len); data/libcgns-4.1.2/src/cgns_io.c:490:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = (int)strlen(p); data/libcgns-4.1.2/src/cgns_io.c:495:17: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (pathname, p, len); data/libcgns-4.1.2/src/cgnslib.c:397:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cg->filename = CGNS_NEW(char,strlen(filename) + 1); data/libcgns-4.1.2/src/cgnslib.c:1280:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals[0] = (cgsize_t)strlen(ZoneTypeName[type]); data/libcgns-4.1.2/src/cgnslib.c:1345:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ( strlen( family_name ) == 0 ){ data/libcgns-4.1.2/src/cgnslib.c:1349:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ( strlen( family_name ) > (CGIO_MAX_NAME_LENGTH+1)*CG_MAX_GOTO_DEPTH ){ data/libcgns-4.1.2/src/cgnslib.c:1377:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pch += strlen( base->name ); data/libcgns-4.1.2/src/cgnslib.c:1525:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ( strlen(family) > (CGIO_MAX_NAME_LENGTH+1)*CG_MAX_GOTO_DEPTH ) { data/libcgns-4.1.2/src/cgnslib.c:1526:67: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cgi_error( "Family path too long (%s, size %ld)", family, strlen(family) ); data/libcgns-4.1.2/src/cgnslib.c:1562:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim = (cgsize_t)strlen(famname->family); data/libcgns-4.1.2/src/cgnslib.c:1701:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ( strlen(family_name) > (CGIO_MAX_NAME_LENGTH+1)*CG_MAX_GOTO_DEPTH ) { data/libcgns-4.1.2/src/cgnslib.c:1702:72: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cgi_error( "Family path too long (%s, size %ld)", family_name, strlen(family_name) ); data/libcgns-4.1.2/src/cgnslib.c:1745:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim = (cgsize_t)strlen(famname->family); data/libcgns-4.1.2/src/cgnslib.c:1886:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). length = (cgsize_t)strlen(BCTypeName[bocotype]); data/libcgns-4.1.2/src/cgnslib.c:2007:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). length = (cgsize_t)strlen(BCTypeName[bocotype]); data/libcgns-4.1.2/src/cgnslib.c:2039:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). geo_file[0]=CGNS_NEW(char,strlen(family->geo[G-1].file)+1); data/libcgns-4.1.2/src/cgnslib.c:2107:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). length = (int)strlen(filename); data/libcgns-4.1.2/src/cgnslib.c:2122:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). length = (cgsize_t)strlen(geo->file); data/libcgns-4.1.2/src/cgnslib.c:2125:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). length = (cgsize_t)strlen(geo->format); data/libcgns-4.1.2/src/cgnslib.c:2169:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). geo_file[0]=CGNS_NEW(char,strlen(family->geo[G-1].file)+1); data/libcgns-4.1.2/src/cgnslib.c:2249:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). length = (int)strlen(filename); data/libcgns-4.1.2/src/cgnslib.c:2264:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). length = (cgsize_t)strlen(geo->file); data/libcgns-4.1.2/src/cgnslib.c:2267:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). length = (cgsize_t)strlen(geo->format); data/libcgns-4.1.2/src/cgnslib.c:2702:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals = (cgsize_t)strlen(GridLocationName[location]); data/libcgns-4.1.2/src/cgnslib.c:5507:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cgsize_t length = (cgsize_t)strlen(GridLocationName[sol->location]); data/libcgns-4.1.2/src/cgnslib.c:5639:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals = (cgsize_t)strlen(GridLocationName[location]); data/libcgns-4.1.2/src/cgnslib.c:6027:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *bcname_len = (int)strlen(subreg->bcname->text); data/libcgns-4.1.2/src/cgnslib.c:6032:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *gcname_len = (int)strlen(subreg->gcname->text); data/libcgns-4.1.2/src/cgnslib.c:6203:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals = (cgsize_t)strlen(GridLocationName[location]); data/libcgns-4.1.2/src/cgnslib.c:6229:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). subreg->bcname->text = (char *)malloc(strlen(bcname)+1); data/libcgns-4.1.2/src/cgnslib.c:6264:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). subreg->gcname->text = (char *)malloc(strlen(gcname)+1); data/libcgns-4.1.2/src/cgnslib.c:6665:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cgsize_t length = (cgsize_t)strlen(GridLocationName[hole->location]); data/libcgns-4.1.2/src/cgnslib.c:7085:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). length = (cgsize_t)strlen(conn->donor); data/libcgns-4.1.2/src/cgnslib.c:7090:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). length = (cgsize_t)strlen(GridConnectivityTypeName[conn->type]); data/libcgns-4.1.2/src/cgnslib.c:7096:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). length = (cgsize_t)strlen(GridLocationName[conn->location]); data/libcgns-4.1.2/src/cgnslib.c:7474:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). length = (cgsize_t)strlen(one21->donor); data/libcgns-4.1.2/src/cgnslib.c:7780:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). length = (cgsize_t)strlen(BCTypeName[boco->type]); data/libcgns-4.1.2/src/cgnslib.c:7793:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). length = (cgsize_t)strlen(GridLocationName[boco->location]); data/libcgns-4.1.2/src/cgnslib.c:7827:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals = (cgsize_t)strlen(GridLocationName[location]); data/libcgns-4.1.2/src/cgnslib.c:8004:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). length = (cgsize_t)strlen(BCTypeName[dataset->type]); data/libcgns-4.1.2/src/cgnslib.c:8179:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). length = (cgsize_t)strlen(RigidGridMotionTypeName[rmotion->type]); data/libcgns-4.1.2/src/cgnslib.c:8292:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). length = (cgsize_t)strlen(ArbitraryGridMotionTypeName[amotion->type]); data/libcgns-4.1.2/src/cgnslib.c:8354:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). length = (cgsize_t)strlen(SimulationTypeName[type]); data/libcgns-4.1.2/src/cgnslib.c:8787:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). length = (cgsize_t)strlen(WallFunctionTypeName[bcwall->type]); data/libcgns-4.1.2/src/cgnslib.c:8913:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = (int)strlen(RegionName); data/libcgns-4.1.2/src/cgnslib.c:8946:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = (cgsize_t)strlen(AreaTypeName[bcarea->type]); data/libcgns-4.1.2/src/cgnslib.c:9213:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). length = (cgsize_t)strlen(AverageInterfaceTypeName[caverage->type]); data/libcgns-4.1.2/src/cgnslib.c:9486:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). length = (cgsize_t)strlen(AverageInterfaceTypeName[caverage->type]); data/libcgns-4.1.2/src/cgnslib.c:9674:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = (int)strlen(p); data/libcgns-4.1.2/src/cgnslib.c:9681:9: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(label[0], p, len); data/libcgns-4.1.2/src/cgnslib.c:9722:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = (int)strlen(p); data/libcgns-4.1.2/src/cgnslib.c:9735:9: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(label[n], p, len); data/libcgns-4.1.2/src/cgnslib.c:9799:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!strlen(famname)) return CG_NODE_NOT_FOUND; data/libcgns-4.1.2/src/cgnslib.c:9825:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals = (cgsize_t)strlen(family_name); data/libcgns-4.1.2/src/cgnslib.c:9909:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals = (cgsize_t)strlen(family); data/libcgns-4.1.2/src/cgnslib.c:9938:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). NormDefinitions[0] = CGNS_NEW(char, strlen(descr->text)+1); data/libcgns-4.1.2/src/cgnslib.c:9972:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (NormDefinitions && strlen(NormDefinitions)) { data/libcgns-4.1.2/src/cgnslib.c:9976:57: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). converg->NormDefinitions->text = CGNS_NEW(char, strlen(NormDefinitions)+1); data/libcgns-4.1.2/src/cgnslib.c:10014:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). StateDescription[0]=CGNS_NEW(char, strlen(descr->text)+1); data/libcgns-4.1.2/src/cgnslib.c:10046:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (StateDescription && strlen(StateDescription)) { data/libcgns-4.1.2/src/cgnslib.c:10050:56: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). state->StateDescription->text = CGNS_NEW(char, strlen(StateDescription)+1); data/libcgns-4.1.2/src/cgnslib.c:10269:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals = (cgsize_t)strlen(GoverningEquationsTypeName[governing->type]); data/libcgns-4.1.2/src/cgnslib.c:10506:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ModelName[strlen(ModelLabel)-2]='\0'; data/libcgns-4.1.2/src/cgnslib.c:11240:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). descr_text[0]=CGNS_NEW(char, strlen(descr->text)+1); data/libcgns-4.1.2/src/cgnslib.c:11264:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((descr->text = (char *)malloc((strlen(descr_text)+1)*sizeof(char)))==NULL) { data/libcgns-4.1.2/src/cgnslib.c:11953:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). dim_vals = (cgsize_t)strlen(GridLocationName[GridLocation]); data/libcgns-4.1.2/src/cgnslib.c:12672:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). length = (cgsize_t)strlen(BCTypeName[dataset->type]); data/libcgns-4.1.2/src/cgnstools/calclib/calc.c:674:51: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!strncmp (name, unitspec[n].name, strlen(unitspec[n].name))) { data/libcgns-4.1.2/src/cgnstools/calclib/calc.c:1100:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int length = (int)strlen (expression); data/libcgns-4.1.2/src/cgnstools/calclib/calc.c:1118:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (p = cmd + strlen(cmd) - 1; p >= cmd && isspace(*p); p--) data/libcgns-4.1.2/src/cgnstools/calclib/calc.c:1184:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int n, length = (int)strlen (expression); data/libcgns-4.1.2/src/cgnstools/calclib/calc.c:1205:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (p = cmd + strlen(cmd) - 1; p >= cmd && isspace(*p); p--) data/libcgns-4.1.2/src/cgnstools/calclib/calctest.c:49:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = line + strlen(line); data/libcgns-4.1.2/src/cgnstools/calclib/calctest.c:57:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). n = strlen (buff); data/libcgns-4.1.2/src/cgnstools/calclib/calctest.c:64:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = line + strlen(line); data/libcgns-4.1.2/src/cgnstools/calclib/calctest.c:71:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen (p); data/libcgns-4.1.2/src/cgnstools/calclib/calctest.c:79:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (p = buff+strlen(buff)-1; p >= buff && isspace(*p); p--) data/libcgns-4.1.2/src/cgnstools/calclib/calctest.c:101:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (p = cmd + strlen(cmd) - 1; p >= cmd && isspace(*p); p--) data/libcgns-4.1.2/src/cgnstools/calclib/vec.c:910:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (pos < 0 || pos > (int)strlen (str)) { data/libcgns-4.1.2/src/cgnstools/calclib/vecsym.c:129:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = (int)strlen (name); data/libcgns-4.1.2/src/cgnstools/calclib/vecsym.c:192:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen (name) > SYMNAME_MAXLEN) data/libcgns-4.1.2/src/cgnstools/calclib/vecsym.c:217:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen (name) > SYMNAME_MAXLEN) data/libcgns-4.1.2/src/cgnstools/calclib/vecsym.c:250:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen (name) > SYMNAME_MAXLEN) data/libcgns-4.1.2/src/cgnstools/calclib/vecsym.c:263:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). vecsym_equstr(sym) = (char *) malloc (strlen (equ) + 1); data/libcgns-4.1.2/src/cgnstools/calclib/vecsym.c:286:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen (name) > SYMNAME_MAXLEN) data/libcgns-4.1.2/src/cgnstools/calclib/vecsym.c:314:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen (name) > SYMNAME_MAXLEN) data/libcgns-4.1.2/src/cgnstools/calclib/vecsym.c:327:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). vecsym_macro(sym) = (char *) malloc (strlen (macro) + 1); data/libcgns-4.1.2/src/cgnstools/calclib/vecsym.c:350:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen (name) > SYMNAME_MAXLEN) data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:32:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen (p); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:162:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen (p); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:164:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen (p); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:166:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen (p); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:169:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen (p); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:178:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen (p); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:240:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen (p); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:243:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:246:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:250:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen (p); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:253:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen (p); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:262:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen (p); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:319:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen (p); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:322:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:325:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:333:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen (p); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:335:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen (p); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:338:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen (p); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:347:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen (p); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:373:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:376:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:378:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy (p, "]"); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:477:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen (p); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:480:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:489:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen (p); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:503:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen (p); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:507:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen (p); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:515:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen (p); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:523:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen (p); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:541:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen (p); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:548:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen (p); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:596:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen (p); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:599:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:607:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:621:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p); data/libcgns-4.1.2/src/cgnstools/cgnscalc/calctcl.c:636:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p); data/libcgns-4.1.2/src/cgnstools/cgnscalc/winmain.c:244:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (unsigned) (size * sizeof(char *) + strlen(cmdLine) + 1)); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3220:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = buff + strlen(buff); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3430:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = buff + strlen(buff); data/libcgns-4.1.2/src/cgnstools/cgnsplot/cgnstcl.c:3437:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = buff + strlen(buff); data/libcgns-4.1.2/src/cgnstools/cgnsplot/winmain.c:247:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (unsigned) (size * sizeof(char *) + strlen(cmdLine) + 1)); data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:1417:9: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (type, argv[2], CGIO_MAX_DATATYPE_LENGTH); data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:1773:5: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (type, argv[2], CGIO_MAX_DATATYPE_LENGTH); data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:1830:13: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (values, argv[4], (size_t)np); data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:1831:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (ns = (int)strlen(argv[4]); ns < np; ns++) data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:1846:25: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (p, args[n], (size_t)dims[0]); data/libcgns-4.1.2/src/cgnstools/cgnsview/cgiotcl.c:1847:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (ns = (int)strlen(args[n]); ns < dims[0]; ns++) data/libcgns-4.1.2/src/cgnstools/cgnsview/winmain.c:244:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (unsigned) (size * sizeof(char *) + strlen(cmdLine) + 1)); data/libcgns-4.1.2/src/cgnstools/common/winhtml.c:51:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen (argv[2]) >= sizeof(hlpfile)) { data/libcgns-4.1.2/src/cgnstools/common/winhtml.c:63:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). n = strlen (hlpfile); data/libcgns-4.1.2/src/cgnstools/common/winhtml.c:88:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = hlpfile + strlen (hlpfile); data/libcgns-4.1.2/src/cgnstools/common/winhtml.c:91:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = hlpfile + strlen (hlpfile); data/libcgns-4.1.2/src/cgnstools/tkogl/feedback.c:195:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = (int)strlen (argv [3]); data/libcgns-4.1.2/src/cgnstools/tkogl/gencyl.c:767:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = (int)strlen (argv [iarg]); data/libcgns-4.1.2/src/cgnstools/tkogl/gencyl.c:813:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = (int)strlen (argv [iarg]); data/libcgns-4.1.2/src/cgnstools/tkogl/gencyl.c:832:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = (int)strlen (argv [iarg]); data/libcgns-4.1.2/src/cgnstools/tkogl/gencyl.c:851:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = (int)strlen (argv [iarg]); data/libcgns-4.1.2/src/cgnstools/tkogl/get.c:52:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = (int)strlen (argv [2]); data/libcgns-4.1.2/src/cgnstools/tkogl/glphoto.c:40:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen (argv[0]); data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:721:12: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). c = fgetc(f); data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:854:11: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). c = fgetc(f); data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:1027:11: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). c = fgetc(f); data/libcgns-4.1.2/src/cgnstools/tkogl/load3ds.c:1046:11: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). c = fgetc(f); data/libcgns-4.1.2/src/cgnstools/tkogl/nurbs.c:113:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = (int)strlen (argv [iarg]); data/libcgns-4.1.2/src/cgnstools/tkogl/outline.c:58:11: [1] (buffer) fscanf: It's unclear if the %s limit in the format string is small enough (CWE-120). Check that the limit is sufficiently small, or use a different input function. if (fscanf (f, "%79s", buf) != 1) data/libcgns-4.1.2/src/cgnstools/tkogl/outline.c:93:14: [1] (buffer) getc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ch = getc (f); data/libcgns-4.1.2/src/cgnstools/tkogl/printstr.c:151:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). glCallLists((GLsizei)strlen(argv [3]), GL_UNSIGNED_BYTE, (GLubyte *) argv[3]); data/libcgns-4.1.2/src/cgnstools/tkogl/quadric.c:32:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = (int)strlen (argv [iarg]); data/libcgns-4.1.2/src/cgnstools/tkogl/strokefont.c:119:11: [1] (buffer) fscanf: It's unclear if the %s limit in the format string is small enough (CWE-120). Check that the limit is sufficiently small, or use a different input function. if (fscanf (f, "%79s", buf) != 1) data/libcgns-4.1.2/src/cgnstools/tkogl/strokefont.c:156:14: [1] (buffer) getc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ch = getc (f); data/libcgns-4.1.2/src/cgnstools/tkogl/strokefont.c:197:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = strlen (argv [iarg]); data/libcgns-4.1.2/src/cgnstools/tkogl/tess.c:46:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = (int)strlen (argv [iarg]); data/libcgns-4.1.2/src/cgnstools/tkogl/tess.c:90:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = (int)strlen (argv [iarg]); data/libcgns-4.1.2/src/cgnstools/tkogl/tkogl.c:820:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ptr->name = (char*) malloc (strlen (extname)+1); data/libcgns-4.1.2/src/cgnstools/tkogl/tkogl.c:925:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). length = (int)strlen(argv[1]); data/libcgns-4.1.2/src/cgnstools/utilities/aflr3_to_cgns.c:692:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). basename = (char *)malloc(strlen(argv[argind]) + 7); data/libcgns-4.1.2/src/cgnstools/utilities/aflr3_to_cgns.c:723:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = basename + strlen(basename); data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:429:24: [1] (buffer) getc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). (void) getc (bf->fp); data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:430:31: [1] (buffer) getc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). rec_size = (long) getc (bf->fp); data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:477:31: [1] (buffer) getc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). rec_size = (long) getc (bf->fp); data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:499:24: [1] (buffer) getc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while (EOF != (c = getc (bf->fp))) { data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:527:21: [1] (buffer) getc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (EOF == (c = getc (bf->fp))) data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:532:25: [1] (buffer) getc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (EOF == (c = getc (bf->fp))) data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:539:25: [1] (buffer) getc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (EOF == (c = getc (bf->fp))) data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:553:25: [1] (buffer) getc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (EOF == (c = getc (bf->fp))) data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:567:25: [1] (buffer) getc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (EOF == (c = getc (bf->fp))) data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:572:29: [1] (buffer) getc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (EOF == (c = getc (bf->fp))) data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:579:33: [1] (buffer) getc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (EOF == (c = getc (bf->fp))) data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:986:28: [1] (buffer) getc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while (EOF != (c = getc (bf->fp))) { data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:1043:28: [1] (buffer) getc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while (EOF != (c = getc (bf->fp))) { data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:1074:28: [1] (buffer) getc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while (EOF != (c = getc (bf->fp))) { data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:1277:29: [1] (buffer) getc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (EOF == (c = getc (bf->fp))) data/libcgns-4.1.2/src/cgnstools/utilities/binaryio.c:1313:29: [1] (buffer) getc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (EOF == (c = getc (bf->fp))) data/libcgns-4.1.2/src/cgnstools/utilities/cgnsImport.c:442:5: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (reglist[pos].name, name, 32); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsImport.c:1191:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). var_names[num_vars] = (char *) malloc (strlen(varname) + 1); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsImport.c:1459:9: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (region_name, regname, sizeof(region_name)); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsImport.c:1613:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len += ((int)strlen (reglist[n].name) + 1); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsImport.c:1623:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). names += (strlen (reglist[n].name) + 1); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsImport.c:1709:5: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (cgnsZoneName, zonename, 32); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsImport.c:1826:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(var_names[nv]) > 32) var_names[nv][32] = 0; data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_aflr3.c:1351:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). outfile = (char *)malloc(strlen(argv[argind]) + 12); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_aflr3.c:1361:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = outfile + strlen(outfile); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_aflr3.c:1406:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). mapbc = (char *)malloc(strlen(outfile) + 8); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_aflr3.c:1414:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = mapbc + strlen(mapbc); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_fast.c:949:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). fastfile = (char *)malloc(strlen(argv[argind]) + 12); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_fast.c:959:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = fastfile + strlen(fastfile); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_fast.c:992:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). mapbc = (char *)malloc(strlen(fastfile) + 8); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_fast.c:1000:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = mapbc + strlen(mapbc); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_plot3d.c:244:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (n = (int)strlen(buff); n < 128; n++) data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_plot3d.c:666:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (n = (int)strlen(buff); n < 128; n++) data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_plot3d.c:818:17: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (basename, argarg, 32); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_tecplot.c:266:17: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (basename, argarg, 32); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_tecplot.c:301:9: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (title, argv[argind], sizeof(title)); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_tecplot.c:303:9: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (title, ++p, sizeof(title)); data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_vtk.c:405:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = (int)strlen(vars[nv].name) - 1; data/libcgns-4.1.2/src/cgnstools/utilities/cgns_to_vtk.c:495:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). name[strlen(name)-1] = 0; data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:400:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = exepath + strlen(exepath); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:443:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = exepath + strlen(exepath); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:465:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). n = (int)strlen (exepath); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:469:13: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (exepath, p, n); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:556:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). n = (int)strlen (basename); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:561:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = temp + strlen(temp); data/libcgns-4.1.2/src/cgnstools/utilities/cgnsutil.c:585:24: [1] (buffer) getc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while (EOF != (c = getc (oldfp))) data/libcgns-4.1.2/src/cgnstools/utilities/convert_dataclass.c:276:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = line + strlen(line); data/libcgns-4.1.2/src/cgnstools/utilities/convert_dataclass.c:284:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). n = (int)strlen (buff); data/libcgns-4.1.2/src/cgnstools/utilities/convert_dataclass.c:291:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = line + strlen(line); data/libcgns-4.1.2/src/cgnstools/utilities/convert_dataclass.c:298:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = (int)strlen (p); data/libcgns-4.1.2/src/cgnstools/utilities/convert_dataclass.c:306:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (p = buff+strlen(buff)-1; p >= buff && isspace(*p); p--) data/libcgns-4.1.2/src/cgnstools/utilities/convert_location.c:244:29: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (s->name, solname, 32); data/libcgns-4.1.2/src/cgnstools/utilities/convert_location.c:245:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). else if (strlen (solname) > 30) data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:356:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = line + strlen(line); data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:364:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). n = (int)strlen (buff); data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:371:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = line + strlen(line); data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:378:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = (int)strlen (p); data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:386:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (p = buff+strlen(buff)-1; p >= buff && isspace(*p); p--) data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:527:29: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (s->name, solname, 32); data/libcgns-4.1.2/src/cgnstools/utilities/convert_variables.c:528:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). else if (strlen (solname) > 30) data/libcgns-4.1.2/src/cgnstools/utilities/extract_subset.c:704:9: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (basename, newbase, 32); data/libcgns-4.1.2/src/cgnstools/utilities/fast_to_cgns.c:461:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). basename = (char *)malloc(strlen(argv[argind]) + 7); data/libcgns-4.1.2/src/cgnstools/utilities/fast_to_cgns.c:488:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = basename + strlen(basename); data/libcgns-4.1.2/src/cgnstools/utilities/interpolate_cgns.c:963:9: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (sol->name, solname, 32); data/libcgns-4.1.2/src/cgnstools/utilities/interpolate_cgns.c:1181:9: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (basename, newbase, 32); data/libcgns-4.1.2/src/cgnstools/utilities/p3dfout.c:9:18: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). void OPENF (int *read, char *fname, int length) data/libcgns-4.1.2/src/cgnstools/utilities/p3dfout.c:13:10: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (*read) { data/libcgns-4.1.2/src/cgnstools/utilities/p3dfout.c:31:5: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (buff, fname, length); data/libcgns-4.1.2/src/cgnstools/utilities/p3dfout.c:33:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (p = buff+strlen(buff)-1; p >= buff && isspace(*p); p--) data/libcgns-4.1.2/src/cgnstools/utilities/patran_to_cgns.c:211:24: [1] (buffer) getc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while (getc (fp) != '\n') data/libcgns-4.1.2/src/cgnstools/utilities/patran_to_cgns.c:253:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = buffer + strlen (buffer); data/libcgns-4.1.2/src/cgnstools/utilities/patran_to_cgns.c:275:20: [1] (buffer) getc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while (getc (fp) != '\n') data/libcgns-4.1.2/src/cgnstools/utilities/plot3d_to_cgns.c:474:17: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (basename, argarg, 32); data/libcgns-4.1.2/src/cgnstools/utilities/tecplot_to_cgns.c:73:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (p = buffer+strlen(buffer)-1; p >= buffer && isspace(*p); p--) data/libcgns-4.1.2/src/cgnstools/utilities/tecplot_to_cgns.c:334:33: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while ((n = fgetc (fp)) != EOF && data/libcgns-4.1.2/src/cgnstools/utilities/tecplot_to_cgns.c:346:25: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (zonename, s, 32); data/libcgns-4.1.2/src/cgnstools/utilities/tecplot_to_cgns.c:370:25: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (elemname, s, 32); data/libcgns-4.1.2/src/cgnstools/utilities/tetgen_to_cgns.c:62:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (p = buff+strlen(buff)-1; p >= buff && isspace(*p); p--) data/libcgns-4.1.2/src/cgnstools/utilities/tetgen_to_cgns.c:266:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). char *ext = fname + strlen(fname); data/libcgns-4.1.2/src/cgnstools/utilities/tetgen_to_cgns.c:666:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). basename = (char *)malloc(strlen(argv[1]) + 9); data/libcgns-4.1.2/src/cgnstools/utilities/tetgen_to_cgns.c:688:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ext = basename + strlen(basename); data/libcgns-4.1.2/src/cgnstools/utilities/vgrid_to_cgns.c:343:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(Patchs[n].name); data/libcgns-4.1.2/src/cgnstools/utilities/vgrid_to_cgns.c:521:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). basename = (char *)malloc(strlen(argv[argind]) + 7); data/libcgns-4.1.2/src/cgnstools/utilities/vgrid_to_cgns.c:538:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcmp(p, ".mapbc"))) p = basename + strlen(basename); data/libcgns-4.1.2/src/tests/test_ver31.c:587:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). i = strlen(zcname); data/libcgns-4.1.2/src/tests/test_ver31.c:591:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). i = strlen(sname); data/libcgns-4.1.2/src/tests/test_ver31.c:822:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). i = strlen(zcname); data/libcgns-4.1.2/src/tests/test_ver31.c:889:9: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(zcname, &pointers[32*nz], 32); data/libcgns-4.1.2/src/tests/test_ver31.c:891:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (n = strlen(zcname)-1; n >= 0 && zcname[n] == ' '; n--) data/libcgns-4.1.2/src/tests/test_ver31.c:895:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). n = strlen(ZCONN_NAME); data/libcgns-4.1.2/src/tools/cgnames.c:316:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(Identifier[mid].name)); data/libcgns-4.1.2/src/tools/cgnscheck.c:245:9: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (goLabel[goDepth], name, 32); data/libcgns-4.1.2/src/tools/cgnscheck.c:274:13: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (goLabel[goDepth], name, 32); data/libcgns-4.1.2/src/tools/cgnscheck.c:358:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). n = (int)strlen (basename); data/libcgns-4.1.2/src/tools/cgnscheck.c:363:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = temp + strlen(temp); data/libcgns-4.1.2/src/tools/cgnscheck.c:385:24: [1] (buffer) getc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). while (EOF != (c = getc (oldfp))) data/libcgns-4.1.2/src/tools/cgnscheck.c:5086:25: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (buff, &desc[nd<<5], 32); data/libcgns-4.1.2/src/tools/cgnscheck.c:5088:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = buff + strlen(buff); data/libcgns-4.1.2/src/tools/cgnscheck.c:5100:25: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (buff, &desc[nd<<5], 32); data/libcgns-4.1.2/src/tools/cgnscheck.c:5102:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = buff + strlen(buff); data/libcgns-4.1.2/src/tools/cgnscheck.c:5114:25: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (buff, &desc[nd<<5], 32); data/libcgns-4.1.2/src/tools/cgnscheck.c:5116:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = buff + strlen(buff); data/libcgns-4.1.2/src/tools/cgnscheck.c:5128:25: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (buff, &desc[nd<<5], 32); data/libcgns-4.1.2/src/tools/cgnscheck.c:5130:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = buff + strlen(buff); data/libcgns-4.1.2/src/tools/cgnscheck.c:5142:25: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (buff, &desc[nd<<5], 32); data/libcgns-4.1.2/src/tools/cgnscheck.c:5144:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = buff + strlen(buff); data/libcgns-4.1.2/src/tools/cgnscheck.c:5156:25: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (buff, &desc[nd<<5], 32); data/libcgns-4.1.2/src/tools/cgnscheck.c:5158:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = buff + strlen(buff); data/libcgns-4.1.2/src/tools/cgnscheck.c:5793:21: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (name, &desc[n + 32 * nd], 32); data/libcgns-4.1.2/src/tools/cgnscheck.c:5795:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = name + strlen(name); data/libcgns-4.1.2/src/tools/cgnscheck.c:5869:21: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (name, &desc[n + 32 * nd], 32); data/libcgns-4.1.2/src/tools/cgnscheck.c:5871:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p = name + strlen(name); data/libcgns-4.1.2/src/tools/cgnsconvert.c:79:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(outfile) > 1018) { data/libcgns-4.1.2/src/tools/cgnsnames.c:31:18: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. if (!num[0]) strcpy (num, "1"); ANALYSIS SUMMARY: Hits = 2711 Lines analyzed = 136143 in approximately 4.18 seconds (32602 lines/second) Physical Source Lines of Code (SLOC) = 104870 Hits@level = [0] 1929 [1] 471 [2] 1704 [3] 5 [4] 530 [5] 1 Hits@level+ = [0+] 4640 [1+] 2711 [2+] 2240 [3+] 536 [4+] 531 [5+] 1 Hits/KSLOC@level+ = [0+] 44.2453 [1+] 25.8511 [2+] 21.3598 [3+] 5.11109 [4+] 5.06341 [5+] 0.00953562 Dot directories skipped = 1 (--followdotdir overrides) Minimum risk level = 1 Not every hit is necessarily a security vulnerability. There may be other security vulnerabilities; review your code! See 'Secure Programming HOWTO' (https://dwheeler.com/secure-programs) for more information.