Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/libsfml-2.5.1+dfsg/doc/mainpage.hpp
Examining data/libsfml-2.5.1+dfsg/examples/X11/X11.cpp
Examining data/libsfml-2.5.1+dfsg/examples/android/app/src/main/jni/main.cpp
Examining data/libsfml-2.5.1+dfsg/examples/cocoa/CocoaAppDelegate.h
Examining data/libsfml-2.5.1+dfsg/examples/cocoa/NSString+stdstring.h
Examining data/libsfml-2.5.1+dfsg/examples/ftp/Ftp.cpp
Examining data/libsfml-2.5.1+dfsg/examples/iOS/main.cpp
Examining data/libsfml-2.5.1+dfsg/examples/island/Island.cpp
Examining data/libsfml-2.5.1+dfsg/examples/island/stb_perlin.h
Examining data/libsfml-2.5.1+dfsg/examples/joystick/Joystick.cpp
Examining data/libsfml-2.5.1+dfsg/examples/opengl/OpenGL.cpp
Examining data/libsfml-2.5.1+dfsg/examples/pong/Pong.cpp
Examining data/libsfml-2.5.1+dfsg/examples/shader/Effect.hpp
Examining data/libsfml-2.5.1+dfsg/examples/shader/Shader.cpp
Examining data/libsfml-2.5.1+dfsg/examples/sockets/Sockets.cpp
Examining data/libsfml-2.5.1+dfsg/examples/sockets/TCP.cpp
Examining data/libsfml-2.5.1+dfsg/examples/sockets/UDP.cpp
Examining data/libsfml-2.5.1+dfsg/examples/sound/Sound.cpp
Examining data/libsfml-2.5.1+dfsg/examples/sound_capture/SoundCapture.cpp
Examining data/libsfml-2.5.1+dfsg/examples/voip/Client.cpp
Examining data/libsfml-2.5.1+dfsg/examples/voip/Server.cpp
Examining data/libsfml-2.5.1+dfsg/examples/voip/VoIP.cpp
Examining data/libsfml-2.5.1+dfsg/examples/win32/Win32.cpp
Examining data/libsfml-2.5.1+dfsg/examples/window/Window.cpp
Examining data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image.h
Examining data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image_write.h
Examining data/libsfml-2.5.1+dfsg/include/SFML/Audio.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Audio/AlResource.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Audio/Export.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Audio/InputSoundFile.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Audio/Listener.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Audio/Music.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Audio/OutputSoundFile.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Audio/Sound.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Audio/SoundBuffer.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Audio/SoundBufferRecorder.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Audio/SoundFileFactory.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Audio/SoundFileReader.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Audio/SoundFileWriter.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Audio/SoundRecorder.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Audio/SoundSource.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Audio/SoundStream.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Config.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/GpuPreference.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Graphics.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Graphics/BlendMode.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Graphics/CircleShape.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Graphics/Color.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Graphics/ConvexShape.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Graphics/Drawable.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Graphics/Export.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Graphics/Font.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Graphics/Glsl.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Graphics/Glyph.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Graphics/Image.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Graphics/PrimitiveType.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Graphics/Rect.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Graphics/RectangleShape.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Graphics/RenderStates.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Graphics/RenderTarget.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Graphics/RenderTexture.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Graphics/RenderWindow.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Graphics/Shader.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Graphics/Shape.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Graphics/Sprite.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Graphics/Text.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Graphics/Texture.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Graphics/Transform.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Graphics/Transformable.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Graphics/Vertex.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Graphics/VertexArray.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Graphics/VertexBuffer.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Graphics/View.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Main.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Network.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Network/Export.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Network/Ftp.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Network/Http.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Network/IpAddress.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Network/Packet.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Network/Socket.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Network/SocketHandle.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Network/SocketSelector.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Network/TcpListener.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Network/TcpSocket.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Network/UdpSocket.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/OpenGL.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/System.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/System/Clock.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/System/Err.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/System/Export.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/System/FileInputStream.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/System/InputStream.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/System/Lock.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/System/MemoryInputStream.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/System/Mutex.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/System/NativeActivity.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/System/NonCopyable.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/System/Sleep.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/System/String.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/System/Thread.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/System/ThreadLocal.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/System/ThreadLocalPtr.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/System/Time.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/System/Utf.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/System/Vector2.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/System/Vector3.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Window.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Window/Clipboard.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Window/Context.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Window/ContextSettings.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Window/Cursor.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Window/Event.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Window/Export.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Window/GlResource.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Window/Joystick.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Window/Keyboard.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Window/Mouse.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Window/Sensor.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Window/Touch.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Window/VideoMode.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Window/Window.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Window/WindowHandle.hpp
Examining data/libsfml-2.5.1+dfsg/include/SFML/Window/WindowStyle.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Audio/ALCheck.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Audio/ALCheck.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Audio/AlResource.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Audio/AudioDevice.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Audio/AudioDevice.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Audio/InputSoundFile.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Audio/Listener.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Audio/Music.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Audio/OutputSoundFile.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Audio/Sound.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundBuffer.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundBufferRecorder.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileFactory.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderFlac.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderFlac.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderOgg.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderOgg.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderWav.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderWav.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileWriterFlac.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileWriterFlac.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileWriterOgg.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileWriterOgg.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileWriterWav.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileWriterWav.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundRecorder.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundSource.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundStream.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/BlendMode.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/CircleShape.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/Color.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/ConvexShape.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/Font.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/GLCheck.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/GLCheck.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/GLExtensions.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/GLExtensions.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/GLLoader.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/GLLoader.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/Glsl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/Image.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/ImageLoader.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/ImageLoader.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/RectangleShape.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/RenderStates.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/RenderTarget.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/RenderTexture.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/RenderTextureImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/RenderTextureImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/RenderTextureImplDefault.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/RenderTextureImplDefault.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/RenderTextureImplFBO.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/RenderTextureImplFBO.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/RenderWindow.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/Shader.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/Shape.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/Sprite.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/Text.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/Texture.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/TextureSaver.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/TextureSaver.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/Transform.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/Transformable.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/Vertex.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/VertexArray.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/VertexBuffer.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Graphics/View.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Main/MainAndroid.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Main/MainWin32.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Main/SFMLActivity.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Network/Ftp.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Network/Http.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Network/IpAddress.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Network/Packet.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Network/Socket.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Network/SocketImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Network/SocketSelector.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Network/TcpListener.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Network/TcpSocket.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Network/UdpSocket.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Network/Unix/SocketImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Network/Unix/SocketImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Network/Win32/SocketImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Network/Win32/SocketImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/System/Android/Activity.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/System/Android/Activity.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/System/Android/NativeActivity.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/System/Android/ResourceStream.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/System/Android/ResourceStream.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/System/Clock.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/System/Err.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/System/FileInputStream.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/System/Lock.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/System/MemoryInputStream.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/System/Mutex.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/System/Sleep.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/System/String.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/System/Thread.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/System/ThreadLocal.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/System/Time.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/System/Unix/ClockImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/System/Unix/ClockImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/System/Unix/MutexImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/System/Unix/MutexImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/System/Unix/SleepImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/System/Unix/SleepImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/System/Unix/ThreadImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/System/Unix/ThreadImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/System/Unix/ThreadLocalImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/System/Unix/ThreadLocalImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/System/Win32/ClockImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/System/Win32/ClockImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/System/Win32/MutexImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/System/Win32/MutexImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/System/Win32/SleepImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/System/Win32/SleepImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/System/Win32/ThreadImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/System/Win32/ThreadImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/System/Win32/ThreadLocalImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/System/Win32/ThreadLocalImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Android/ClipboardImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Android/ClipboardImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Android/CursorImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Android/CursorImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Android/InputImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Android/InputImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Android/JoystickImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Android/JoystickImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Android/SensorImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Android/SensorImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Android/VideoModeImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Android/WindowImplAndroid.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Android/WindowImplAndroid.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Clipboard.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/ClipboardImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Context.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Cursor.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/CursorImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/EGLCheck.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/EGLCheck.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/EglContext.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/EglContext.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/FreeBSD/JoystickImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/FreeBSD/JoystickImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/GlContext.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/GlContext.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/GlResource.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/InputImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Joystick.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/JoystickImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/JoystickManager.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/JoystickManager.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Keyboard.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Mouse.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/OSX/AutoreleasePoolWrapper.h
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/OSX/ClipboardImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/OSX/CursorImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/OSX/HIDInputManager.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/OSX/HIDJoystickManager.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/OSX/HIDJoystickManager.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/OSX/InputImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/OSX/JoystickImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/OSX/JoystickImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/OSX/NSImage+raw.h
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/OSX/SFApplication.h
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/OSX/SFApplicationDelegate.h
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/OSX/SFContext.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/OSX/SFKeyboardModifiersHelper.h
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/OSX/SFOpenGLView+keyboard_priv.h
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/OSX/SFOpenGLView+mouse_priv.h
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/OSX/SFOpenGLView.h
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/OSX/SFSilentResponder.h
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/OSX/SFViewController.h
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/OSX/SFWindow.h
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/OSX/SFWindowController.h
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/OSX/Scaling.h
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/OSX/SensorImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/OSX/SensorImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/OSX/VideoModeImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/OSX/WindowImplCocoa.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/OSX/WindowImplDelegateProtocol.h
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/OSX/cg_sf_conversion.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/OSX/cpp_objc_conversion.h
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/OpenBSD/JoystickImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/OpenBSD/JoystickImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Sensor.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/SensorImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/SensorManager.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/SensorManager.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Touch.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Unix/ClipboardImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Unix/ClipboardImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Unix/CursorImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Unix/CursorImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Unix/Display.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Unix/Display.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Unix/GlxContext.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Unix/GlxContext.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Unix/GlxExtensions.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Unix/GlxExtensions.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Unix/InputImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Unix/InputImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Unix/JoystickImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Unix/JoystickImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Unix/SensorImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Unix/SensorImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Unix/VideoModeImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Unix/WindowImplX11.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Unix/WindowImplX11.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/VideoMode.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/VideoModeImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Win32/ClipboardImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Win32/ClipboardImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Win32/CursorImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Win32/CursorImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Win32/InputImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Win32/InputImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Win32/JoystickImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Win32/JoystickImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Win32/SensorImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Win32/SensorImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Win32/VideoModeImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Win32/WglContext.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Win32/WglContext.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Win32/WglExtensions.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Win32/WglExtensions.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Win32/WindowImplWin32.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Win32/WindowImplWin32.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/Window.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/WindowImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/WindowImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/iOS/ClipboardImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/iOS/CursorImpl.cpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/iOS/CursorImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/iOS/EaglContext.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/iOS/InputImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/iOS/JoystickImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/iOS/ObjCType.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/iOS/SFAppDelegate.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/iOS/SFMain.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/iOS/SFView.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/iOS/SFViewController.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/iOS/SensorImpl.hpp
Examining data/libsfml-2.5.1+dfsg/src/SFML/Window/iOS/WindowImplUIKit.hpp
Examining data/libsfml-2.5.1+dfsg/debian/tests/sfml_test.cpp
FINAL RESULTS:
data/libsfml-2.5.1+dfsg/include/SFML/Config.hpp:67:37: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
#error This Apple operating system is not supported by SFML library
data/libsfml-2.5.1+dfsg/include/SFML/Config.hpp:97:36: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
#error This UNIX operating system is not supported by SFML library
data/libsfml-2.5.1+dfsg/include/SFML/Config.hpp:104:27: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
#error This operating system is not supported by SFML library
data/libsfml-2.5.1+dfsg/include/SFML/Window/Event.hpp:68:23: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
bool system; ///< Is the System key pressed?
data/libsfml-2.5.1+dfsg/examples/pong/Pong.cpp:20:10: [3] (random) srand:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
std::srand(static_cast<unsigned int>(std::time(NULL)));
data/libsfml-2.5.1+dfsg/src/SFML/System/Win32/MutexImpl.cpp:38:5: [3] (misc) InitializeCriticalSection:
Exceptions can be thrown in low-memory situations. Use
InitializeCriticalSectionAndSpinCount instead.
InitializeCriticalSection(&m_mutex);
data/libsfml-2.5.1+dfsg/src/SFML/System/Win32/MutexImpl.cpp:52:5: [3] (misc) EnterCriticalSection:
On some versions of Windows, exceptions can be thrown in low-memory
situations. Use InitializeCriticalSectionAndSpinCount instead.
EnterCriticalSection(&m_mutex);
data/libsfml-2.5.1+dfsg/src/SFML/Window/Win32/WindowImplWin32.cpp:75:31: [3] (misc) LoadLibrary:
Ensure that the full path to the library is specified, or current directory
may be used (CWE-829, CWE-20). Use registry entry or GetWindowsDirectory to
find library path, if you aren't already.
HINSTANCE shCoreDll = LoadLibrary(L"Shcore.dll");
data/libsfml-2.5.1+dfsg/src/SFML/Window/Win32/WindowImplWin32.cpp:110:31: [3] (misc) LoadLibrary:
Ensure that the full path to the library is specified, or current directory
may be used (CWE-829, CWE-20). Use registry entry or GetWindowsDirectory to
find library path, if you aren't already.
HINSTANCE user32Dll = LoadLibrary(L"user32.dll");
data/libsfml-2.5.1+dfsg/examples/island/Island.cpp:499:10: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
std::memcpy(workItem.targetBuffer + (resolutionX * rowStart * 6), &vertices[0], sizeof(sf::Vertex) * resolutionX * rowCount * 6);
data/libsfml-2.5.1+dfsg/examples/island/stb_perlin.h:82:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char stb__perlin_randtab[512] =
data/libsfml-2.5.1+dfsg/examples/island/stb_perlin.h:153:20: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char indices[64] =
data/libsfml-2.5.1+dfsg/examples/sockets/TCP.cpp:37:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char in[128];
data/libsfml-2.5.1+dfsg/examples/sockets/TCP.cpp:70:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char in[128];
data/libsfml-2.5.1+dfsg/examples/sockets/UDP.cpp:24:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char in[128];
data/libsfml-2.5.1+dfsg/examples/sockets/UDP.cpp:65:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char in[128];
data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image.h:545:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef unsigned char validate_uint32[sizeof(stbi__uint32)==4 ? 1 : -1];
data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image.h:1047:10: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(temp, row0, bytes_copy);
data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image.h:1048:10: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(row0, row1, bytes_copy);
data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image.h:1049:10: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(row1, temp, bytes_copy);
data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image.h:1125:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen(filename, mode);
data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image.h:1405:10: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buffer, s->img_buffer, blen);
data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image.h:1415:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buffer, s->img_buffer, n);
data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image.h:2856:32: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char tag[5] = {'J','F','I','F','\0'};
data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image.h:2866:32: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char tag[6] = {'A','d','o','b','e','\0'};
data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image.h:2971:23: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char rgb[3] = { 'R', 'G', 'B' };
data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image.h:4043:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(a->zout, a->zbuffer, len);
data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image.h:4365:40: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
case STBI__F_none: memcpy(cur, raw, nk); break;
data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image.h:4521:16: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(final + out_y*a->s->img_x*out_bytes + out_x*out_bytes,
data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image.h:5390:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char raw_data[4] = {0};
data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image.h:6275:24: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if (prev_out) memcpy(g->out, prev_out, 4 * g->w * g->h);
data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image.h:6279:24: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if (prev_out) memcpy(g->out, prev_out, 4 * g->w * g->h);
data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image.h:6285:16: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&g->out[i + g->start_x], &g->old_out[i + g->start_x], g->max_x - g->start_x);
data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image.h:6478:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[STBI__HDR_BUFLEN];
data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image.h:6606:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[STBI__HDR_BUFLEN];
data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image_write.h:233:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *f = fopen(filename, "wb");
data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image_write.h:263:31: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char b[2];
data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image_write.h:269:31: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char b[4];
data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image_write.h:298:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char arr[3];
data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image_write.h:305:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char bg[3] = { 255, 0, 255}, px[3];
data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image_write.h:530:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char scanlineheader[4] = { 2, 2, 0, 0 };
data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image_write.h:531:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char rgbe[4];
data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image_write.h:625:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[128];
data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image_write.h:629:13: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
len = sprintf(buffer, "EXPOSURE= 1.0000000000000\n\n-Y %d +X %d\n", y, x);
data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image_write.h:917:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char sig[8] = { 137,80,78,71,13,10,26,10 };
data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image_write.h:1013:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen(filename, "wb");
data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image_write.h:1258:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char YTable[64], UVTable[64];
data/libsfml-2.5.1+dfsg/include/SFML/Audio/SoundFileReader.hpp:77:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
virtual bool open(InputStream& stream, Info& info) = 0;
data/libsfml-2.5.1+dfsg/include/SFML/Audio/SoundFileWriter.hpp:61:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
virtual bool open(const std::string& filename, unsigned int sampleRate, unsigned int channelCount) = 0;
data/libsfml-2.5.1+dfsg/include/SFML/System/FileInputStream.hpp:78:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool open(const std::string& filename);
data/libsfml-2.5.1+dfsg/include/SFML/System/MemoryInputStream.hpp:60:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
void open(const void* data, std::size_t sizeInBytes);
data/libsfml-2.5.1+dfsg/src/SFML/Audio/InputSoundFile.cpp:77:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!file->open(filename))
data/libsfml-2.5.1+dfsg/src/SFML/Audio/InputSoundFile.cpp:85:20: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!m_reader->open(*file, info))
data/libsfml-2.5.1+dfsg/src/SFML/Audio/InputSoundFile.cpp:117:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
memory->open(data, sizeInBytes);
data/libsfml-2.5.1+dfsg/src/SFML/Audio/InputSoundFile.cpp:121:20: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!m_reader->open(*memory, info))
data/libsfml-2.5.1+dfsg/src/SFML/Audio/InputSoundFile.cpp:160:20: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!m_reader->open(stream, info))
data/libsfml-2.5.1+dfsg/src/SFML/Audio/OutputSoundFile.cpp:62:20: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!m_writer->open(filename, sampleRate, channelCount))
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileFactory.cpp:73:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!stream.open(filename)) {
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileFactory.cpp:100:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
stream.open(data, sizeInBytes);
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderFlac.cpp:223:27: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool SoundFileReaderFlac::open(InputStream& stream, Info& info)
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderFlac.hpp:80:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
virtual bool open(sf::InputStream& stream, Info& info);
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderOgg.cpp:106:26: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool SoundFileReaderOgg::open(InputStream& stream, Info& info)
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderOgg.hpp:80:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
virtual bool open(InputStream& stream, Info& info);
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderWav.cpp:49:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char bytes[sizeof(value)];
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderWav.cpp:60:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char bytes[sizeof(value)];
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderWav.cpp:71:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char bytes[3];
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderWav.cpp:82:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char bytes[sizeof(value)];
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderWav.cpp:109:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char header[mainChunkSize];
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderWav.cpp:129:26: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool SoundFileReaderWav::open(InputStream& stream, Info& info)
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderWav.cpp:227:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mainChunk[mainChunkSize];
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderWav.cpp:236:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char subChunkId[4];
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderWav.cpp:309:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char subformat[16];
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderWav.hpp:72:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
virtual bool open(sf::InputStream& stream, Info& info);
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileWriterFlac.cpp:66:27: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool SoundFileWriterFlac::open(const std::string& filename, unsigned int sampleRate, unsigned int channelCount)
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileWriterFlac.hpp:82:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
virtual bool open(const std::string& filename, unsigned int sampleRate, unsigned int channelCount);
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileWriterOgg.cpp:69:26: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool SoundFileWriterOgg::open(const std::string& filename, unsigned int sampleRate, unsigned int channelCount)
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileWriterOgg.cpp:90:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
m_file.open(filename.c_str(), std::ios::binary);
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileWriterOgg.hpp:82:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
virtual bool open(const std::string& filename, unsigned int sampleRate, unsigned int channelCount);
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileWriterWav.cpp:102:26: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool SoundFileWriterWav::open(const std::string& filename, unsigned int sampleRate, unsigned int channelCount)
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileWriterWav.cpp:105:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
m_file.open(filename.c_str(), std::ios::binary);
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileWriterWav.cpp:139:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mainChunkId[4] = {'R', 'I', 'F', 'F'};
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileWriterWav.cpp:145:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mainChunkFormat[4] = {'W', 'A', 'V', 'E'};
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileWriterWav.cpp:149:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmtChunkId[4] = {'f', 'm', 't', ' '};
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileWriterWav.cpp:169:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dataChunkId[4] = {'d', 'a', 't', 'a'};
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileWriterWav.hpp:82:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
virtual bool open(const std::string& filename, unsigned int sampleRate, unsigned int channelCount);
data/libsfml-2.5.1+dfsg/src/SFML/Graphics/Font.cpp:70:14: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
std::memcpy(&output, &input, sizeof(U));
data/libsfml-2.5.1+dfsg/src/SFML/Graphics/Image.cpp:254:18: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
std::memcpy(dstPixels, srcPixels, pitch);
data/libsfml-2.5.1+dfsg/src/SFML/Graphics/ImageLoader.cpp:116:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&pixels[0], ptr, pixels.size());
data/libsfml-2.5.1+dfsg/src/SFML/Graphics/ImageLoader.cpp:160:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&pixels[0], ptr, pixels.size());
data/libsfml-2.5.1+dfsg/src/SFML/Graphics/ImageLoader.cpp:215:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&pixels[0], ptr, pixels.size());
data/libsfml-2.5.1+dfsg/src/SFML/Graphics/Shader.cpp:876:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char log[1024];
data/libsfml-2.5.1+dfsg/src/SFML/Graphics/Shader.cpp:903:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char log[1024];
data/libsfml-2.5.1+dfsg/src/SFML/Graphics/Shader.cpp:931:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char log[1024];
data/libsfml-2.5.1+dfsg/src/SFML/Graphics/Shader.cpp:953:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char log[1024];
data/libsfml-2.5.1+dfsg/src/SFML/Graphics/Texture.cpp:386:18: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
std::memcpy(dst, src, dstPitch);
data/libsfml-2.5.1+dfsg/src/SFML/Graphics/VertexBuffer.cpp:243:10: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
std::memcpy(destination, source, sizeof(Vertex) * vertexBuffer.m_size);
data/libsfml-2.5.1+dfsg/src/SFML/Main/MainAndroid.cpp:498:14: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
std::memcpy(states->savedState, savedState, savedStateSize);
data/libsfml-2.5.1+dfsg/src/SFML/Main/SFMLActivity.cpp:48:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char name[256];
data/libsfml-2.5.1+dfsg/src/SFML/Network/Ftp.cpp:50:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
Ftp::Response open(Ftp::TransferMode mode);
data/libsfml-2.5.1+dfsg/src/SFML/Network/Ftp.cpp:212:30: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
Response response = data.open(Ascii);
data/libsfml-2.5.1+dfsg/src/SFML/Network/Ftp.cpp:282:30: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
Response response = data.open(mode);
data/libsfml-2.5.1+dfsg/src/SFML/Network/Ftp.cpp:345:30: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
Response response = data.open(mode);
data/libsfml-2.5.1+dfsg/src/SFML/Network/Ftp.cpp:396:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[1024];
data/libsfml-2.5.1+dfsg/src/SFML/Network/Ftp.cpp:534:33: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
Ftp::Response Ftp::DataChannel::open(Ftp::TransferMode mode)
data/libsfml-2.5.1+dfsg/src/SFML/Network/Ftp.cpp:598:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[1024];
data/libsfml-2.5.1+dfsg/src/SFML/Network/Ftp.cpp:620:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[1024];
data/libsfml-2.5.1+dfsg/src/SFML/Network/Http.cpp:397:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[1024];
data/libsfml-2.5.1+dfsg/src/SFML/Network/Packet.cpp:61:14: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
std::memcpy(&m_data[start], data, sizeInBytes);
data/libsfml-2.5.1+dfsg/src/SFML/Network/Packet.cpp:274:14: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
std::memcpy(data, &m_data[m_readPos], length);
data/libsfml-2.5.1+dfsg/src/SFML/Network/TcpSocket.cpp:323:10: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
std::memcpy(&blockToSend[0], &packetSize, sizeof(packetSize));
data/libsfml-2.5.1+dfsg/src/SFML/Network/TcpSocket.cpp:325:14: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
std::memcpy(&blockToSend[0] + sizeof(packetSize), data, size);
data/libsfml-2.5.1+dfsg/src/SFML/Network/TcpSocket.cpp:378:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[1024];
data/libsfml-2.5.1+dfsg/src/SFML/Network/TcpSocket.cpp:392:18: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
std::memcpy(begin, buffer, received);
data/libsfml-2.5.1+dfsg/src/SFML/System/FileInputStream.cpp:58:23: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool FileInputStream::open(const std::string& filename)
data/libsfml-2.5.1+dfsg/src/SFML/System/FileInputStream.cpp:69:19: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
m_file = std::fopen(filename.c_str(), "rb");
data/libsfml-2.5.1+dfsg/src/SFML/System/MemoryInputStream.cpp:44:25: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
void MemoryInputStream::open(const void* data, std::size_t sizeInBytes)
data/libsfml-2.5.1+dfsg/src/SFML/System/MemoryInputStream.cpp:63:14: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
std::memcpy(data, m_data + m_offset, static_cast<std::size_t>(count));
data/libsfml-2.5.1+dfsg/src/SFML/Window/Android/JoystickImpl.cpp:59:20: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool JoystickImpl::open(unsigned int index)
data/libsfml-2.5.1+dfsg/src/SFML/Window/Android/JoystickImpl.hpp:71:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool open(unsigned int index);
data/libsfml-2.5.1+dfsg/src/SFML/Window/Android/SensorImpl.cpp:83:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool SensorImpl::open(Sensor::Type sensor)
data/libsfml-2.5.1+dfsg/src/SFML/Window/Android/SensorImpl.hpp:77:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool open(Sensor::Type sensor);
data/libsfml-2.5.1+dfsg/src/SFML/Window/FreeBSD/JoystickImpl.cpp:58:22: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int file = ::open(name, O_RDONLY | O_NONBLOCK);
data/libsfml-2.5.1+dfsg/src/SFML/Window/FreeBSD/JoystickImpl.cpp:200:20: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool JoystickImpl::open(unsigned int index)
data/libsfml-2.5.1+dfsg/src/SFML/Window/FreeBSD/JoystickImpl.cpp:205:20: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
m_file = ::open(plugged[index].c_str(), O_RDONLY | O_NONBLOCK);
data/libsfml-2.5.1+dfsg/src/SFML/Window/FreeBSD/JoystickImpl.hpp:78:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool open(unsigned int index);
data/libsfml-2.5.1+dfsg/src/SFML/Window/JoystickManager.cpp:90:35: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (item.joystick.open(i))
data/libsfml-2.5.1+dfsg/src/SFML/Window/OSX/JoystickImpl.cpp:181:20: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool JoystickImpl::open(unsigned int index)
data/libsfml-2.5.1+dfsg/src/SFML/Window/OSX/JoystickImpl.hpp:82:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool open(unsigned int index);
data/libsfml-2.5.1+dfsg/src/SFML/Window/OSX/SensorImpl.cpp:58:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool SensorImpl::open(Sensor::Type /*sensor*/)
data/libsfml-2.5.1+dfsg/src/SFML/Window/OSX/SensorImpl.hpp:71:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool open(Sensor::Type sensor);
data/libsfml-2.5.1+dfsg/src/SFML/Window/OpenBSD/JoystickImpl.cpp:59:20: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool JoystickImpl::open(unsigned int index)
data/libsfml-2.5.1+dfsg/src/SFML/Window/OpenBSD/JoystickImpl.hpp:71:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool open(unsigned int index);
data/libsfml-2.5.1+dfsg/src/SFML/Window/SensorManager.cpp:107:33: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
m_sensors[i].sensor.open(static_cast<Sensor::Type>(i));
data/libsfml-2.5.1+dfsg/src/SFML/Window/Unix/GlxExtensions.hpp:122:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pipeName[80]; // Should be [GLX_HYPERPIPE_PIPE_NAME_LENGTH_SGIX]
data/libsfml-2.5.1+dfsg/src/SFML/Window/Unix/GlxExtensions.hpp:126:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pipeName[80]; // Should be [GLX_HYPERPIPE_PIPE_NAME_LENGTH_SGIX]
data/libsfml-2.5.1+dfsg/src/SFML/Window/Unix/GlxExtensions.hpp:132:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pipeName[80]; // Should be [GLX_HYPERPIPE_PIPE_NAME_LENGTH_SGIX]
data/libsfml-2.5.1+dfsg/src/SFML/Window/Unix/GlxExtensions.hpp:137:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pipeName[80]; // Should be [GLX_HYPERPIPE_PIPE_NAME_LENGTH_SGIX]
data/libsfml-2.5.1+dfsg/src/SFML/Window/Unix/InputImpl.cpp:163:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char keys[32];
data/libsfml-2.5.1+dfsg/src/SFML/Window/Unix/JoystickImpl.cpp:400:20: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = ::open(devnode.c_str(), O_RDONLY | O_NONBLOCK);
data/libsfml-2.5.1+dfsg/src/SFML/Window/Unix/JoystickImpl.cpp:405:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[128];
data/libsfml-2.5.1+dfsg/src/SFML/Window/Unix/JoystickImpl.cpp:546:20: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool JoystickImpl::open(unsigned int index)
data/libsfml-2.5.1+dfsg/src/SFML/Window/Unix/JoystickImpl.cpp:556:20: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
m_file = ::open(devnode.c_str(), O_RDONLY | O_NONBLOCK);
data/libsfml-2.5.1+dfsg/src/SFML/Window/Unix/JoystickImpl.hpp:83:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool open(unsigned int index);
data/libsfml-2.5.1+dfsg/src/SFML/Window/Unix/JoystickImpl.hpp:121:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char m_mapping[ABS_MAX + 1]; ///< Axes mapping (index to axis id)
data/libsfml-2.5.1+dfsg/src/SFML/Window/Unix/SensorImpl.cpp:58:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool SensorImpl::open(Sensor::Type /*sensor*/)
data/libsfml-2.5.1+dfsg/src/SFML/Window/Unix/SensorImpl.hpp:71:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool open(Sensor::Type sensor);
data/libsfml-2.5.1+dfsg/src/SFML/Window/Unix/WindowImplX11.cpp:108:22: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int file = ::open("/proc/self/cmdline", O_RDONLY | O_NONBLOCK);
data/libsfml-2.5.1+dfsg/src/SFML/Window/Unix/WindowImplX11.cpp:1871:21: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char keyBuffer[16];
data/libsfml-2.5.1+dfsg/src/SFML/Window/Win32/ClipboardImpl.cpp:93:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(GlobalLock(string_handle), text.toWideString().data(), string_size);
data/libsfml-2.5.1+dfsg/src/SFML/Window/Win32/JoystickImpl.cpp:156:9: [2] (buffer) TCHAR:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
TCHAR keyData[256];
data/libsfml-2.5.1+dfsg/src/SFML/Window/Win32/JoystickImpl.cpp:268:20: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool JoystickImpl::open(unsigned int index)
data/libsfml-2.5.1+dfsg/src/SFML/Window/Win32/JoystickImpl.hpp:104:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool open(unsigned int index);
data/libsfml-2.5.1+dfsg/src/SFML/Window/Win32/SensorImpl.cpp:58:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool SensorImpl::open(Sensor::Type /*sensor*/)
data/libsfml-2.5.1+dfsg/src/SFML/Window/Win32/SensorImpl.hpp:71:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool open(Sensor::Type sensor);
data/libsfml-2.5.1+dfsg/src/SFML/Window/Win32/WglContext.cpp:70:5: [2] (buffer) TCHAR:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
TCHAR errBuff[256];
data/libsfml-2.5.1+dfsg/src/SFML/Window/iOS/JoystickImpl.hpp:76:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool open(unsigned int index);
data/libsfml-2.5.1+dfsg/src/SFML/Window/iOS/SensorImpl.hpp:76:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool open(Sensor::Type sensor);
data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image.h:344:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int (*read) (void *user,char *data,int size); // fill 'data' with 'size' bytes. return number of bytes actually read
data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image.h:1344:19: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int n = (s->io.read)(s->io_user_data,(char*)s->buffer_start,s->buflen);
data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image.h:1371:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (s->io.read) {
data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image.h:1387:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (s->io.read) {
data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image.h:1400:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (s->io.read) {
data/libsfml-2.5.1+dfsg/extlibs/headers/stb_image/stb_image.h:1407:25: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
count = (s->io.read)(s->io_user_data, (char*) buffer + blen, n - blen);
data/libsfml-2.5.1+dfsg/include/SFML/Audio/InputSoundFile.hpp:196:12: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
Uint64 read(Int16* samples, Uint64 maxCount);
data/libsfml-2.5.1+dfsg/include/SFML/Audio/SoundFileReader.hpp:103:20: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
virtual Uint64 read(Int16* samples, Uint64 maxCount) = 0;
data/libsfml-2.5.1+dfsg/include/SFML/System/FileInputStream.hpp:92:19: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
virtual Int64 read(void* data, Int64 size);
data/libsfml-2.5.1+dfsg/include/SFML/System/InputStream.hpp:63:19: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
virtual Int64 read(void* data, Int64 size) = 0;
data/libsfml-2.5.1+dfsg/include/SFML/System/MemoryInputStream.hpp:74:19: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
virtual Int64 read(void* data, Int64 size);
data/libsfml-2.5.1+dfsg/src/SFML/Audio/InputSoundFile.cpp:246:24: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
Uint64 InputSoundFile::read(Int16* samples, Uint64 maxCount)
data/libsfml-2.5.1+dfsg/src/SFML/Audio/InputSoundFile.cpp:250:33: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
readSamples = m_reader->read(samples, maxCount);
data/libsfml-2.5.1+dfsg/src/SFML/Audio/Music.cpp:195:56: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
data.sampleCount = static_cast<std::size_t>(m_file.read(&m_samples[0], toFill));
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundBuffer.cpp:227:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (file.read(&m_samples[0], sampleCount) == sampleCount)
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderFlac.cpp:40:41: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
sf::Int64 count = data->stream->read(buffer, *bytes);
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderFlac.cpp:282:29: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
Uint64 SoundFileReaderFlac::read(Int16* samples, Uint64 maxCount)
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderFlac.hpp:106:20: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
virtual Uint64 read(Int16* samples, Uint64 maxCount);
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderOgg.cpp:38:12: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
size_t read(void* ptr, size_t size, size_t nmemb, void* data)
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderOgg.cpp:41:49: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
return static_cast<std::size_t>(stream->read(ptr, size * nmemb));
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderOgg.cpp:66:39: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
static ov_callbacks callbacks = {&read, &seek, NULL, &tell};
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderOgg.cpp:139:28: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
Uint64 SoundFileReaderOgg::read(Int16* samples, Uint64 maxCount)
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderOgg.hpp:106:20: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
virtual Uint64 read(Int16* samples, Uint64 maxCount);
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderWav.cpp:44:24: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
return stream.read(&value, sizeof(value)) == sizeof(value);
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderWav.cpp:50:20: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (stream.read(bytes, sizeof(bytes)) != sizeof(bytes))
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderWav.cpp:61:20: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (stream.read(bytes, sizeof(bytes)) != sizeof(bytes))
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderWav.cpp:72:20: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (stream.read(bytes, sizeof(bytes)) != sizeof(bytes))
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderWav.cpp:83:20: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (stream.read(bytes, sizeof(bytes)) != sizeof(bytes))
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderWav.cpp:110:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (stream.read(header, sizeof(header)) < static_cast<Int64>(sizeof(header)))
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderWav.cpp:153:28: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
Uint64 SoundFileReaderWav::read(Int16* samples, Uint64 maxCount)
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderWav.cpp:228:19: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (m_stream->read(mainChunk, sizeof(mainChunk)) != sizeof(mainChunk))
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderWav.cpp:237:23: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (m_stream->read(subChunkId, sizeof(subChunkId)) != sizeof(subChunkId))
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderWav.cpp:310:31: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (m_stream->read(subformat, sizeof(subformat)) != sizeof(subformat))
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundFileReaderWav.hpp:98:20: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
virtual Uint64 read(Int16* samples, Uint64 maxCount);
data/libsfml-2.5.1+dfsg/src/SFML/Audio/SoundRecorder.cpp:157:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
deviceList += std::strlen(deviceList) + 1;
data/libsfml-2.5.1+dfsg/src/SFML/Graphics/Font.cpp:48:19: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
unsigned long read(FT_Stream rec, unsigned long offset, unsigned char* buffer, unsigned long count)
data/libsfml-2.5.1+dfsg/src/SFML/Graphics/Font.cpp:54:59: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
return static_cast<unsigned long>(stream->read(reinterpret_cast<char*>(buffer), count));
data/libsfml-2.5.1+dfsg/src/SFML/Graphics/Font.cpp:286:32: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
rec->read = &read;
data/libsfml-2.5.1+dfsg/src/SFML/Graphics/ImageLoader.cpp:49:9: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int read(void* user, char* data, int size)
data/libsfml-2.5.1+dfsg/src/SFML/Graphics/ImageLoader.cpp:52:41: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
return static_cast<int>(stream->read(data, size));
data/libsfml-2.5.1+dfsg/src/SFML/Graphics/ImageLoader.cpp:195:23: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
callbacks.read = &read;
data/libsfml-2.5.1+dfsg/src/SFML/Graphics/Shader.cpp:93:22: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
file.read(&buffer[0], size);
data/libsfml-2.5.1+dfsg/src/SFML/Graphics/Shader.cpp:113:37: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
sf::Int64 read = stream.read(&buffer[0], size);
data/libsfml-2.5.1+dfsg/src/SFML/Main/SFMLActivity.cpp:80:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(name, applicationName, applicationNameLength);
data/libsfml-2.5.1+dfsg/src/SFML/Network/Ftp.cpp:626:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
stream.read(buffer, sizeof(buffer));
data/libsfml-2.5.1+dfsg/src/SFML/Network/Packet.cpp:497:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
Uint32 length = static_cast<Uint32>(std::strlen(data));
data/libsfml-2.5.1+dfsg/src/SFML/Network/Packet.cpp:526:46: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
Uint32 length = static_cast<Uint32>(std::wcslen(data));
data/libsfml-2.5.1+dfsg/src/SFML/System/Android/ResourceStream.cpp:60:23: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
Int64 ResourceStream::read(void *data, Int64 size)
data/libsfml-2.5.1+dfsg/src/SFML/System/Android/ResourceStream.hpp:72:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
Int64 read(void *data, Int64 size);
data/libsfml-2.5.1+dfsg/src/SFML/System/FileInputStream.cpp:77:24: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
Int64 FileInputStream::read(void* data, Int64 size)
data/libsfml-2.5.1+dfsg/src/SFML/System/FileInputStream.cpp:80:20: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
return m_file->read(data, size);
data/libsfml-2.5.1+dfsg/src/SFML/System/MemoryInputStream.cpp:53:26: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
Int64 MemoryInputStream::read(void* data, Int64 size)
data/libsfml-2.5.1+dfsg/src/SFML/System/String.cpp:72:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
std::size_t length = strlen(ansiString);
data/libsfml-2.5.1+dfsg/src/SFML/System/String.cpp:95:35: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
std::size_t length = std::wcslen(wideString);
data/libsfml-2.5.1+dfsg/src/SFML/Window/FreeBSD/JoystickImpl.cpp:296:12: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while (read(m_file, &m_buffer[0], m_length) == m_length)
data/libsfml-2.5.1+dfsg/src/SFML/Window/GlContext.cpp:218:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
std::size_t prefixLength = std::strlen(prefix);
data/libsfml-2.5.1+dfsg/src/SFML/Window/GlContext.cpp:220:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((std::strlen(version) >= (prefixLength + 3)) &&
data/libsfml-2.5.1+dfsg/src/SFML/Window/Unix/JoystickImpl.cpp:652:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int result = read(m_file, &joyState, sizeof(joyState));
data/libsfml-2.5.1+dfsg/src/SFML/Window/Unix/JoystickImpl.cpp:691:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
result = read(m_file, &joyState, sizeof(joyState));
data/libsfml-2.5.1+dfsg/src/SFML/Window/Unix/WindowImplX11.cpp:117:26: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while ((result = read(file, &buffer[offset], 256)) > 0)
ANALYSIS SUMMARY:
Hits = 217
Lines analyzed = 86172 in approximately 1.76 seconds (48849 lines/second)
Physical Source Lines of Code (SLOC) = 38214
Hits@level = [0] 4 [1] 60 [2] 148 [3] 5 [4] 4 [5] 0
Hits@level+ = [0+] 221 [1+] 217 [2+] 157 [3+] 9 [4+] 4 [5+] 0
Hits/KSLOC@level+ = [0+] 5.78322 [1+] 5.67855 [2+] 4.10844 [3+] 0.235516 [4+] 0.104674 [5+] 0
Dot directories skipped = 2 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.