Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler. Number of rules (primarily dangerous function names) in C/C++ ruleset: 223 Examining data/libuv1-1.40.0/docs/code/cgi/main.c Examining data/libuv1-1.40.0/docs/code/cgi/tick.c Examining data/libuv1-1.40.0/docs/code/detach/main.c Examining data/libuv1-1.40.0/docs/code/dns/main.c Examining data/libuv1-1.40.0/docs/code/helloworld/main.c Examining data/libuv1-1.40.0/docs/code/idle-basic/main.c Examining data/libuv1-1.40.0/docs/code/idle-compute/main.c Examining data/libuv1-1.40.0/docs/code/interfaces/main.c Examining data/libuv1-1.40.0/docs/code/locks/main.c Examining data/libuv1-1.40.0/docs/code/multi-echo-server/main.c Examining data/libuv1-1.40.0/docs/code/multi-echo-server/worker.c Examining data/libuv1-1.40.0/docs/code/onchange/main.c Examining data/libuv1-1.40.0/docs/code/pipe-echo-server/main.c Examining data/libuv1-1.40.0/docs/code/plugin/hello.c Examining data/libuv1-1.40.0/docs/code/plugin/main.c Examining data/libuv1-1.40.0/docs/code/plugin/plugin.h Examining data/libuv1-1.40.0/docs/code/proc-streams/main.c Examining data/libuv1-1.40.0/docs/code/proc-streams/test.c Examining data/libuv1-1.40.0/docs/code/progress/main.c Examining data/libuv1-1.40.0/docs/code/queue-cancel/main.c Examining data/libuv1-1.40.0/docs/code/queue-work/main.c Examining data/libuv1-1.40.0/docs/code/ref-timer/main.c Examining data/libuv1-1.40.0/docs/code/signal/main.c Examining data/libuv1-1.40.0/docs/code/spawn/main.c Examining data/libuv1-1.40.0/docs/code/tcp-echo-server/main.c Examining data/libuv1-1.40.0/docs/code/thread-create/main.c Examining data/libuv1-1.40.0/docs/code/tty-gravity/main.c Examining data/libuv1-1.40.0/docs/code/tty/main.c Examining data/libuv1-1.40.0/docs/code/udp-dhcp/main.c Examining data/libuv1-1.40.0/docs/code/uvcat/main.c Examining data/libuv1-1.40.0/docs/code/uvstop/main.c Examining data/libuv1-1.40.0/docs/code/uvtee/main.c Examining data/libuv1-1.40.0/docs/code/uvwget/main.c Examining data/libuv1-1.40.0/include/uv.h Examining data/libuv1-1.40.0/include/uv/aix.h Examining data/libuv1-1.40.0/include/uv/android-ifaddrs.h Examining data/libuv1-1.40.0/include/uv/bsd.h Examining data/libuv1-1.40.0/include/uv/darwin.h Examining data/libuv1-1.40.0/include/uv/errno.h Examining data/libuv1-1.40.0/include/uv/linux.h Examining data/libuv1-1.40.0/include/uv/os390.h Examining data/libuv1-1.40.0/include/uv/posix.h Examining data/libuv1-1.40.0/include/uv/stdint-msvc2008.h Examining data/libuv1-1.40.0/include/uv/sunos.h Examining data/libuv1-1.40.0/include/uv/threadpool.h Examining data/libuv1-1.40.0/include/uv/tree.h Examining data/libuv1-1.40.0/include/uv/unix.h Examining data/libuv1-1.40.0/include/uv/version.h Examining data/libuv1-1.40.0/include/uv/win.h Examining data/libuv1-1.40.0/src/fs-poll.c Examining data/libuv1-1.40.0/src/heap-inl.h Examining data/libuv1-1.40.0/src/idna.c Examining data/libuv1-1.40.0/src/idna.h Examining data/libuv1-1.40.0/src/inet.c Examining data/libuv1-1.40.0/src/queue.h Examining data/libuv1-1.40.0/src/random.c Examining data/libuv1-1.40.0/src/strscpy.c Examining data/libuv1-1.40.0/src/strscpy.h Examining data/libuv1-1.40.0/src/threadpool.c Examining data/libuv1-1.40.0/src/timer.c Examining data/libuv1-1.40.0/src/unix/aix-common.c Examining data/libuv1-1.40.0/src/unix/aix.c Examining data/libuv1-1.40.0/src/unix/android-ifaddrs.c Examining data/libuv1-1.40.0/src/unix/async.c Examining data/libuv1-1.40.0/src/unix/atomic-ops.h Examining data/libuv1-1.40.0/src/unix/bsd-ifaddrs.c Examining data/libuv1-1.40.0/src/unix/bsd-proctitle.c Examining data/libuv1-1.40.0/src/unix/core.c Examining data/libuv1-1.40.0/src/unix/cygwin.c Examining data/libuv1-1.40.0/src/unix/darwin-proctitle.c Examining data/libuv1-1.40.0/src/unix/darwin-stub.h Examining data/libuv1-1.40.0/src/unix/darwin.c Examining data/libuv1-1.40.0/src/unix/dl.c Examining data/libuv1-1.40.0/src/unix/freebsd.c Examining data/libuv1-1.40.0/src/unix/fsevents.c Examining data/libuv1-1.40.0/src/unix/getaddrinfo.c Examining data/libuv1-1.40.0/src/unix/getnameinfo.c Examining data/libuv1-1.40.0/src/unix/haiku.c Examining data/libuv1-1.40.0/src/unix/ibmi.c Examining data/libuv1-1.40.0/src/unix/internal.h Examining data/libuv1-1.40.0/src/unix/kqueue.c Examining data/libuv1-1.40.0/src/unix/linux-core.c Examining data/libuv1-1.40.0/src/unix/linux-inotify.c Examining data/libuv1-1.40.0/src/unix/linux-syscalls.c Examining data/libuv1-1.40.0/src/unix/linux-syscalls.h Examining data/libuv1-1.40.0/src/unix/loop-watcher.c Examining data/libuv1-1.40.0/src/unix/loop.c Examining data/libuv1-1.40.0/src/unix/netbsd.c Examining data/libuv1-1.40.0/src/unix/no-fsevents.c Examining data/libuv1-1.40.0/src/unix/no-proctitle.c Examining data/libuv1-1.40.0/src/unix/openbsd.c Examining data/libuv1-1.40.0/src/unix/os390-syscalls.c Examining data/libuv1-1.40.0/src/unix/os390-syscalls.h Examining data/libuv1-1.40.0/src/unix/os390.c Examining data/libuv1-1.40.0/src/unix/pipe.c Examining data/libuv1-1.40.0/src/unix/poll.c Examining data/libuv1-1.40.0/src/unix/posix-hrtime.c Examining data/libuv1-1.40.0/src/unix/posix-poll.c Examining data/libuv1-1.40.0/src/unix/process.c Examining data/libuv1-1.40.0/src/unix/procfs-exepath.c Examining data/libuv1-1.40.0/src/unix/proctitle.c Examining data/libuv1-1.40.0/src/unix/pthread-fixes.c Examining data/libuv1-1.40.0/src/unix/qnx.c Examining data/libuv1-1.40.0/src/unix/random-devurandom.c Examining data/libuv1-1.40.0/src/unix/random-getentropy.c Examining data/libuv1-1.40.0/src/unix/random-getrandom.c Examining data/libuv1-1.40.0/src/unix/random-sysctl-linux.c Examining data/libuv1-1.40.0/src/unix/signal.c Examining data/libuv1-1.40.0/src/unix/spinlock.h Examining data/libuv1-1.40.0/src/unix/stream.c Examining data/libuv1-1.40.0/src/unix/sunos.c Examining data/libuv1-1.40.0/src/unix/sysinfo-loadavg.c Examining data/libuv1-1.40.0/src/unix/sysinfo-memory.c Examining data/libuv1-1.40.0/src/unix/tcp.c Examining data/libuv1-1.40.0/src/unix/thread.c Examining data/libuv1-1.40.0/src/unix/tty.c Examining data/libuv1-1.40.0/src/unix/udp.c Examining data/libuv1-1.40.0/src/unix/fs.c Examining data/libuv1-1.40.0/src/uv-common.c Examining data/libuv1-1.40.0/src/uv-common.h Examining data/libuv1-1.40.0/src/uv-data-getter-setters.c Examining data/libuv1-1.40.0/src/version.c Examining data/libuv1-1.40.0/src/win/async.c Examining data/libuv1-1.40.0/src/win/atomicops-inl.h Examining data/libuv1-1.40.0/src/win/core.c Examining data/libuv1-1.40.0/src/win/detect-wakeup.c Examining data/libuv1-1.40.0/src/win/dl.c Examining data/libuv1-1.40.0/src/win/error.c Examining data/libuv1-1.40.0/src/win/fs-event.c Examining data/libuv1-1.40.0/src/win/fs-fd-hash-inl.h Examining data/libuv1-1.40.0/src/win/fs.c Examining data/libuv1-1.40.0/src/win/getaddrinfo.c Examining data/libuv1-1.40.0/src/win/getnameinfo.c Examining data/libuv1-1.40.0/src/win/handle-inl.h Examining data/libuv1-1.40.0/src/win/handle.c Examining data/libuv1-1.40.0/src/win/internal.h Examining data/libuv1-1.40.0/src/win/loop-watcher.c Examining data/libuv1-1.40.0/src/win/pipe.c Examining data/libuv1-1.40.0/src/win/poll.c Examining data/libuv1-1.40.0/src/win/process-stdio.c Examining data/libuv1-1.40.0/src/win/process.c Examining data/libuv1-1.40.0/src/win/req-inl.h Examining data/libuv1-1.40.0/src/win/signal.c Examining data/libuv1-1.40.0/src/win/snprintf.c Examining data/libuv1-1.40.0/src/win/stream-inl.h Examining data/libuv1-1.40.0/src/win/stream.c Examining data/libuv1-1.40.0/src/win/tcp.c Examining data/libuv1-1.40.0/src/win/thread.c Examining data/libuv1-1.40.0/src/win/tty.c Examining data/libuv1-1.40.0/src/win/udp.c Examining data/libuv1-1.40.0/src/win/util.c Examining data/libuv1-1.40.0/src/win/winapi.c Examining data/libuv1-1.40.0/src/win/winapi.h Examining data/libuv1-1.40.0/src/win/winsock.c Examining data/libuv1-1.40.0/src/win/winsock.h Examining data/libuv1-1.40.0/test/benchmark-async-pummel.c Examining data/libuv1-1.40.0/test/benchmark-async.c Examining data/libuv1-1.40.0/test/benchmark-fs-stat.c Examining data/libuv1-1.40.0/test/benchmark-getaddrinfo.c Examining data/libuv1-1.40.0/test/benchmark-list.h Examining data/libuv1-1.40.0/test/benchmark-loop-count.c Examining data/libuv1-1.40.0/test/benchmark-million-async.c Examining data/libuv1-1.40.0/test/benchmark-million-timers.c Examining data/libuv1-1.40.0/test/benchmark-multi-accept.c Examining data/libuv1-1.40.0/test/benchmark-ping-pongs.c Examining data/libuv1-1.40.0/test/benchmark-ping-udp.c Examining data/libuv1-1.40.0/test/benchmark-pound.c Examining data/libuv1-1.40.0/test/benchmark-pump.c Examining data/libuv1-1.40.0/test/benchmark-sizes.c Examining data/libuv1-1.40.0/test/benchmark-spawn.c Examining data/libuv1-1.40.0/test/benchmark-tcp-write-batch.c Examining data/libuv1-1.40.0/test/benchmark-thread.c Examining data/libuv1-1.40.0/test/benchmark-udp-pummel.c Examining data/libuv1-1.40.0/test/blackhole-server.c Examining data/libuv1-1.40.0/test/dns-server.c Examining data/libuv1-1.40.0/test/echo-server.c Examining data/libuv1-1.40.0/test/run-benchmarks.c Examining data/libuv1-1.40.0/test/run-tests.c Examining data/libuv1-1.40.0/test/runner-unix.c Examining data/libuv1-1.40.0/test/runner-unix.h Examining data/libuv1-1.40.0/test/runner-win.c Examining data/libuv1-1.40.0/test/runner-win.h Examining data/libuv1-1.40.0/test/runner.c Examining data/libuv1-1.40.0/test/runner.h Examining data/libuv1-1.40.0/test/task.h Examining data/libuv1-1.40.0/test/test-active.c Examining data/libuv1-1.40.0/test/test-async-null-cb.c Examining data/libuv1-1.40.0/test/test-async.c Examining data/libuv1-1.40.0/test/test-barrier.c Examining data/libuv1-1.40.0/test/test-callback-order.c Examining data/libuv1-1.40.0/test/test-callback-stack.c Examining data/libuv1-1.40.0/test/test-close-fd.c Examining data/libuv1-1.40.0/test/test-close-order.c Examining data/libuv1-1.40.0/test/test-condvar.c Examining data/libuv1-1.40.0/test/test-connect-unspecified.c Examining data/libuv1-1.40.0/test/test-connection-fail.c Examining data/libuv1-1.40.0/test/test-cwd-and-chdir.c Examining data/libuv1-1.40.0/test/test-default-loop-close.c Examining data/libuv1-1.40.0/test/test-delayed-accept.c Examining data/libuv1-1.40.0/test/test-dlerror.c Examining data/libuv1-1.40.0/test/test-eintr-handling.c Examining data/libuv1-1.40.0/test/test-embed.c Examining data/libuv1-1.40.0/test/test-emfile.c Examining data/libuv1-1.40.0/test/test-env-vars.c Examining data/libuv1-1.40.0/test/test-error.c Examining data/libuv1-1.40.0/test/test-fail-always.c Examining data/libuv1-1.40.0/test/test-fork.c Examining data/libuv1-1.40.0/test/test-fs-copyfile.c Examining data/libuv1-1.40.0/test/test-fs-event.c Examining data/libuv1-1.40.0/test/test-fs-fd-hash.c Examining data/libuv1-1.40.0/test/test-fs-open-flags.c Examining data/libuv1-1.40.0/test/test-fs-poll.c Examining data/libuv1-1.40.0/test/test-fs-readdir.c Examining data/libuv1-1.40.0/test/test-fs.c Examining data/libuv1-1.40.0/test/test-get-currentexe.c Examining data/libuv1-1.40.0/test/test-get-loadavg.c Examining data/libuv1-1.40.0/test/test-get-memory.c Examining data/libuv1-1.40.0/test/test-get-passwd.c Examining data/libuv1-1.40.0/test/test-getaddrinfo.c Examining data/libuv1-1.40.0/test/test-gethostname.c Examining data/libuv1-1.40.0/test/test-getsockname.c Examining data/libuv1-1.40.0/test/test-getters-setters.c Examining data/libuv1-1.40.0/test/test-gettimeofday.c Examining data/libuv1-1.40.0/test/test-handle-fileno.c Examining data/libuv1-1.40.0/test/test-homedir.c Examining data/libuv1-1.40.0/test/test-hrtime.c Examining data/libuv1-1.40.0/test/test-idle.c Examining data/libuv1-1.40.0/test/test-idna.c Examining data/libuv1-1.40.0/test/test-ip4-addr.c Examining data/libuv1-1.40.0/test/test-ip6-addr.c Examining data/libuv1-1.40.0/test/test-ipc-heavy-traffic-deadlock-bug.c Examining data/libuv1-1.40.0/test/test-ipc-send-recv.c Examining data/libuv1-1.40.0/test/test-ipc.c Examining data/libuv1-1.40.0/test/test-list.h Examining data/libuv1-1.40.0/test/test-loop-alive.c Examining data/libuv1-1.40.0/test/test-loop-close.c Examining data/libuv1-1.40.0/test/test-loop-configure.c Examining data/libuv1-1.40.0/test/test-loop-handles.c Examining data/libuv1-1.40.0/test/test-loop-stop.c Examining data/libuv1-1.40.0/test/test-loop-time.c Examining data/libuv1-1.40.0/test/test-metrics.c Examining data/libuv1-1.40.0/test/test-multiple-listen.c Examining data/libuv1-1.40.0/test/test-mutexes.c Examining data/libuv1-1.40.0/test/test-osx-select.c Examining data/libuv1-1.40.0/test/test-pass-always.c Examining data/libuv1-1.40.0/test/test-ping-pong.c Examining data/libuv1-1.40.0/test/test-pipe-bind-error.c Examining data/libuv1-1.40.0/test/test-pipe-close-stdout-read-stdin.c Examining data/libuv1-1.40.0/test/test-pipe-connect-error.c Examining data/libuv1-1.40.0/test/test-pipe-connect-multiple.c Examining data/libuv1-1.40.0/test/test-pipe-connect-prepare.c Examining data/libuv1-1.40.0/test/test-pipe-getsockname.c Examining data/libuv1-1.40.0/test/test-pipe-pending-instances.c Examining data/libuv1-1.40.0/test/test-pipe-sendmsg.c Examining data/libuv1-1.40.0/test/test-pipe-server-close.c Examining data/libuv1-1.40.0/test/test-pipe-set-fchmod.c Examining data/libuv1-1.40.0/test/test-pipe-set-non-blocking.c Examining data/libuv1-1.40.0/test/test-platform-output.c Examining data/libuv1-1.40.0/test/test-poll-close-doesnt-corrupt-stack.c Examining data/libuv1-1.40.0/test/test-poll-close.c Examining data/libuv1-1.40.0/test/test-poll-closesocket.c Examining data/libuv1-1.40.0/test/test-poll-oob.c Examining data/libuv1-1.40.0/test/test-poll.c Examining data/libuv1-1.40.0/test/test-process-priority.c Examining data/libuv1-1.40.0/test/test-process-title-threadsafe.c Examining data/libuv1-1.40.0/test/test-process-title.c Examining data/libuv1-1.40.0/test/test-queue-foreach-delete.c Examining data/libuv1-1.40.0/test/test-random.c Examining data/libuv1-1.40.0/test/test-ref.c Examining data/libuv1-1.40.0/test/test-run-nowait.c Examining data/libuv1-1.40.0/test/test-run-once.c Examining data/libuv1-1.40.0/test/test-semaphore.c Examining data/libuv1-1.40.0/test/test-shutdown-close.c Examining data/libuv1-1.40.0/test/test-shutdown-eof.c Examining data/libuv1-1.40.0/test/test-shutdown-twice.c Examining data/libuv1-1.40.0/test/test-signal-multiple-loops.c Examining data/libuv1-1.40.0/test/test-signal-pending-on-close.c Examining data/libuv1-1.40.0/test/test-signal.c Examining data/libuv1-1.40.0/test/test-socket-buffer-size.c Examining data/libuv1-1.40.0/test/test-spawn.c Examining data/libuv1-1.40.0/test/test-stdio-over-pipes.c Examining data/libuv1-1.40.0/test/test-strscpy.c Examining data/libuv1-1.40.0/test/test-tcp-alloc-cb-fail.c Examining data/libuv1-1.40.0/test/test-tcp-bind-error.c Examining data/libuv1-1.40.0/test/test-tcp-bind6-error.c Examining data/libuv1-1.40.0/test/test-tcp-close-accept.c Examining data/libuv1-1.40.0/test/test-tcp-close-reset.c Examining data/libuv1-1.40.0/test/test-tcp-close-while-connecting.c Examining data/libuv1-1.40.0/test/test-tcp-close.c Examining data/libuv1-1.40.0/test/test-tcp-connect-error-after-write.c Examining data/libuv1-1.40.0/test/test-tcp-connect-error.c Examining data/libuv1-1.40.0/test/test-tcp-connect-timeout.c Examining data/libuv1-1.40.0/test/test-tcp-connect6-error.c Examining data/libuv1-1.40.0/test/test-tcp-create-socket-early.c Examining data/libuv1-1.40.0/test/test-tcp-flags.c Examining data/libuv1-1.40.0/test/test-tcp-open.c Examining data/libuv1-1.40.0/test/test-tcp-read-stop-start.c Examining data/libuv1-1.40.0/test/test-tcp-read-stop.c Examining data/libuv1-1.40.0/test/test-tcp-shutdown-after-write.c Examining data/libuv1-1.40.0/test/test-tcp-try-write-error.c Examining data/libuv1-1.40.0/test/test-tcp-try-write.c Examining data/libuv1-1.40.0/test/test-tcp-unexpected-read.c Examining data/libuv1-1.40.0/test/test-tcp-write-after-connect.c Examining data/libuv1-1.40.0/test/test-tcp-write-fail.c Examining data/libuv1-1.40.0/test/test-tcp-write-queue-order.c Examining data/libuv1-1.40.0/test/test-tcp-write-to-half-open-connection.c Examining data/libuv1-1.40.0/test/test-tcp-writealot.c Examining data/libuv1-1.40.0/test/test-test-macros.c Examining data/libuv1-1.40.0/test/test-thread-equal.c Examining data/libuv1-1.40.0/test/test-thread.c Examining data/libuv1-1.40.0/test/test-threadpool-cancel.c Examining data/libuv1-1.40.0/test/test-threadpool.c Examining data/libuv1-1.40.0/test/test-timer-again.c Examining data/libuv1-1.40.0/test/test-timer-from-check.c Examining data/libuv1-1.40.0/test/test-timer.c Examining data/libuv1-1.40.0/test/test-tmpdir.c Examining data/libuv1-1.40.0/test/test-tty-duplicate-key.c Examining data/libuv1-1.40.0/test/test-tty-escape-sequence-processing.c Examining data/libuv1-1.40.0/test/test-tty.c Examining data/libuv1-1.40.0/test/test-udp-alloc-cb-fail.c Examining data/libuv1-1.40.0/test/test-udp-bind.c Examining data/libuv1-1.40.0/test/test-udp-connect.c Examining data/libuv1-1.40.0/test/test-udp-create-socket-early.c Examining data/libuv1-1.40.0/test/test-udp-dgram-too-big.c Examining data/libuv1-1.40.0/test/test-udp-ipv6.c Examining data/libuv1-1.40.0/test/test-udp-mmsg.c Examining data/libuv1-1.40.0/test/test-udp-multicast-interface.c Examining data/libuv1-1.40.0/test/test-udp-multicast-interface6.c Examining data/libuv1-1.40.0/test/test-udp-multicast-ttl.c Examining data/libuv1-1.40.0/test/test-udp-open.c Examining data/libuv1-1.40.0/test/test-udp-options.c Examining data/libuv1-1.40.0/test/test-udp-send-and-recv.c Examining data/libuv1-1.40.0/test/test-udp-send-hang-loop.c Examining data/libuv1-1.40.0/test/test-udp-send-immediate.c Examining data/libuv1-1.40.0/test/test-udp-send-unreachable.c Examining data/libuv1-1.40.0/test/test-udp-sendmmsg-error.c Examining data/libuv1-1.40.0/test/test-udp-try-send.c Examining data/libuv1-1.40.0/test/test-uname.c Examining data/libuv1-1.40.0/test/test-walk-handles.c Examining data/libuv1-1.40.0/test/test-watcher-cross-stop.c Examining data/libuv1-1.40.0/test/test-tcp-oob.c Examining data/libuv1-1.40.0/test/test-getnameinfo.c Examining data/libuv1-1.40.0/test/test-udp-multicast-join.c Examining data/libuv1-1.40.0/test/test-udp-multicast-join6.c FINAL RESULTS: data/libuv1-1.40.0/src/unix/aix.c:792:10: [5] (race) readlink: This accepts filename arguments; if an attacker can move those files or change the link content, a race condition results. Also, it does not terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach. rc = readlink(cwd, readlink_cwd, sizeof(readlink_cwd) - 1); data/libuv1-1.40.0/src/unix/fs.c:736:9: [5] (race) readlink: This accepts filename arguments; if an attacker can move those files or change the link content, a race condition results. Also, it does not terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach. len = readlink(req->path, buf, maxlen); data/libuv1-1.40.0/src/unix/fs.c:1602:14: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. X(CHMOD, chmod(req->path, req->mode)); data/libuv1-1.40.0/src/unix/fs.c:1603:14: [5] (race) chown: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchown( ) instead. X(CHOWN, chown(req->path, req->uid, req->gid)); data/libuv1-1.40.0/src/unix/os390-syscalls.c:499:10: [5] (race) readlink: This accepts filename arguments; if an attacker can move those files or change the link content, a race condition results. Also, it does not terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach. rlen = readlink(path, tmpbuf, len); data/libuv1-1.40.0/src/unix/pipe.c:377:7: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. r = chmod(name_buffer, pipe_stat.st_mode); data/libuv1-1.40.0/src/unix/procfs-exepath.c:36:9: [5] (race) readlink: This accepts filename arguments; if an attacker can move those files or change the link content, a race condition results. Also, it does not terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach. n = readlink("/proc/self/exe", buffer, n); data/libuv1-1.40.0/src/unix/sunos.c:393:11: [5] (race) readlink: This accepts filename arguments; if an attacker can move those files or change the link content, a race condition results. Also, it does not terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach. res = readlink(buf, buffer, res); data/libuv1-1.40.0/src/win/fs.c:2803:15: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. XX(CHMOD, chmod) data/libuv1-1.40.0/src/win/fs.c:2819:18: [5] (race) readlink: This accepts filename arguments; if an attacker can move those files or change the link content, a race condition results. Also, it does not terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach. XX(READLINK, readlink) data/libuv1-1.40.0/src/win/fs.c:2821:15: [5] (race) chown: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchown( ) instead. XX(CHOWN, chown) data/libuv1-1.40.0/test/test-fs-copyfile.c:205:3: [5] (race) chmod: This accepts filename arguments; if an attacker can move those files, a race condition results. (CWE-362). Use fchmod( ) instead. chmod(dst, S_IRUSR|S_IRGRP|S_IROTH); /* Sets file mode to 444 (read-only). */ data/libuv1-1.40.0/docs/code/onchange/main.c:23:5: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. system(command); data/libuv1-1.40.0/docs/code/tty-gravity/main.c:19:15: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. buf.len = sprintf(data, "\033[2J\033[H\033[%dB\033[%luC\033[42;37m%s", data/libuv1-1.40.0/src/inet.c:58:7: [4] (format) snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. l = snprintf(tmp, sizeof(tmp), fmt, src[0], src[1], src[2], src[3]); data/libuv1-1.40.0/src/unix/aix.c:575:3: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(mon_file, filename); data/libuv1-1.40.0/src/unix/aix.c:683:13: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. if (sscanf(p, "BEGIN_EVPROD_INFO\n%sEND_EVPROD_INFO", filename) == 1) { data/libuv1-1.40.0/src/unix/core.c:1593:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access(abspath, X_OK) == 0) { data/libuv1-1.40.0/src/unix/fs.c:1601:15: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. X(ACCESS, access(req->path, req->flags)); data/libuv1-1.40.0/src/unix/haiku.c:117:15: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. system_info system; data/libuv1-1.40.0/src/unix/haiku.c:149:29: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. status = get_system_info(&system); data/libuv1-1.40.0/src/unix/haiku.c:153:27: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. *cpu_infos = uv__calloc(system.cpu_count, sizeof(**cpu_infos)); data/libuv1-1.40.0/src/unix/haiku.c:159:24: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. for (i = 0; i < (int)system.cpu_count; i++) { data/libuv1-1.40.0/src/unix/haiku.c:164:12: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. *count = system.cpu_count; data/libuv1-1.40.0/src/unix/linux-core.c:860:14: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. If the scanf format is influenceable by an attacker, it's exploitable. if (6 != sscanf(buf + len, data/libuv1-1.40.0/src/unix/linux-core.c:898:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. If the scanf format is influenceable by an attacker, it's exploitable. if (fscanf(fp, "%" PRIu64, &val) != 1) data/libuv1-1.40.0/src/unix/linux-core.c:1116:5: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. If the scanf format is influenceable by an attacker, it's exploitable. sscanf(buf, "%" PRIu64, &rc); data/libuv1-1.40.0/src/unix/process.c:401:3: [4] (shell) execvp: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. execvp(options->file, options->args); data/libuv1-1.40.0/src/uv-common.h:51:14: [4] (format) snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. #if !defined(snprintf) && defined(_MSC_VER) && _MSC_VER < 1900 data/libuv1-1.40.0/src/uv-common.h:52:12: [4] (format) snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. extern int snprintf(char*, size_t, const char*, ...); data/libuv1-1.40.0/src/win/fs.c:451:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD access; data/libuv1-1.40.0/src/win/fs.c:501:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access &= ~FILE_WRITE_DATA; data/libuv1-1.40.0/src/win/fs.c:502:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= FILE_APPEND_DATA; data/libuv1-1.40.0/src/win/fs.c:553:5: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access |= DELETE; data/libuv1-1.40.0/src/win/fs.c:594:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & FILE_APPEND_DATA) { data/libuv1-1.40.0/src/win/fs.c:595:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access & FILE_WRITE_DATA) { data/libuv1-1.40.0/src/win/fs.c:596:9: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access &= ~FILE_APPEND_DATA; data/libuv1-1.40.0/src/win/fs.c:619:22: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access, data/libuv1-1.40.0/src/win/fs.c:2802:16: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. XX(ACCESS, access) data/libuv1-1.40.0/src/win/internal.h:118:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. int uv_stdio_pipe_server(uv_loop_t* loop, uv_pipe_t* handle, DWORD access, data/libuv1-1.40.0/src/win/pipe.c:205:68: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. int uv_stdio_pipe_server(uv_loop_t* loop, uv_pipe_t* handle, DWORD access, data/libuv1-1.40.0/src/win/pipe.c:215:7: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access | FILE_FLAG_OVERLAPPED | FILE_FLAG_FIRST_PIPE_INSTANCE | WRITE_DAC, data/libuv1-1.40.0/src/win/pipe.c:2085:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. FILE_ACCESS_INFORMATION access; data/libuv1-1.40.0/src/win/pipe.c:2116:40: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. &access, data/libuv1-1.40.0/src/win/pipe.c:2117:46: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. sizeof(access), data/libuv1-1.40.0/src/win/pipe.c:2123:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (!(access.AccessFlags & FILE_WRITE_DATA) || data/libuv1-1.40.0/src/win/pipe.c:2124:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. !(access.AccessFlags & FILE_READ_DATA)) { data/libuv1-1.40.0/src/win/pipe.c:2129:7: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access.AccessFlags & FILE_WRITE_DATA) data/libuv1-1.40.0/src/win/pipe.c:2131:7: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. if (access.AccessFlags & FILE_READ_DATA) data/libuv1-1.40.0/src/win/process-stdio.c:241:11: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. DWORD access) { data/libuv1-1.40.0/src/win/process-stdio.c:250:24: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access, data/libuv1-1.40.0/src/win/process-stdio.c:318:39: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. access); data/libuv1-1.40.0/src/win/process.c:594:7: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy(pos, temp_buffer); data/libuv1-1.40.0/src/win/process.c:796:9: [4] (buffer) wcscpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using a function version that stops copying at the end of the buffer. wcscpy(ptr, required_vars[i].wide_eq); data/libuv1-1.40.0/src/win/snprintf.c:30:5: [4] (format) snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. int snprintf(char* buf, size_t len, const char* fmt, ...) { data/libuv1-1.40.0/src/win/util.c:1692:45: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. static int uv__get_handle(uv_pid_t pid, int access, HANDLE* handle) { data/libuv1-1.40.0/src/win/util.c:1698:27: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. *handle = OpenProcess(access, FALSE, pid); data/libuv1-1.40.0/src/win/winapi.h:4496:50: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. # define CTL_CODE(device_type, function, method, access) \ data/libuv1-1.40.0/src/win/winapi.h:4497:32: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. (((device_type) << 16) | ((access) << 14) | ((function) << 2) | (method)) data/libuv1-1.40.0/test/runner-win.c:69:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(executable_path, argv[0]); data/libuv1-1.40.0/test/runner-win.h:32:14: [4] (format) snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. #if !defined(snprintf) && defined(_MSC_VER) && _MSC_VER < 1900 data/libuv1-1.40.0/test/runner-win.h:33:12: [4] (format) snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. extern int snprintf(char*, size_t, const char*, ...); data/libuv1-1.40.0/test/task.h:90:5: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, \ data/libuv1-1.40.0/test/task.h:105:5: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, \ data/libuv1-1.40.0/test/task.h:119:5: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, \ data/libuv1-1.40.0/test/task.h:137:5: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, \ data/libuv1-1.40.0/test/task.h:155:5: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, \ data/libuv1-1.40.0/test/task.h:178:5: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, \ data/libuv1-1.40.0/test/task.h:307:14: [4] (format) snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. #if !defined(snprintf) && defined(_MSC_VER) && _MSC_VER < 1900 data/libuv1-1.40.0/test/task.h:308:12: [4] (format) snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. extern int snprintf(char*, size_t, const char*, ...); data/libuv1-1.40.0/test/test-fs.c:4239:5: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. vsnprintf(icacls_command, ARRAYSIZE(icacls_command), command, args); data/libuv1-1.40.0/test/test-fs.c:4241:12: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. return system(icacls_command); data/libuv1-1.40.0/test/test-spawn.c:1193:5: [4] (buffer) wcscat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). wcscat(command_line, test_output[i]); data/libuv1-1.40.0/test/test-spawn.c:1706:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(file, exepath + len); data/libuv1-1.40.0/test/test-spawn.c:1709:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(path + 5, exepath); data/libuv1-1.40.0/test/test-spawn.c:1717:7: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(path, syspath); data/libuv1-1.40.0/docs/code/progress/main.c:21:28: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. downloaded += (200+random())%1000; // can only download max 1000bytes/sec, data/libuv1-1.40.0/docs/code/queue-cancel/main.c:20:9: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. if (random() % 2) data/libuv1-1.40.0/docs/code/queue-work/main.c:19:9: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. if (random() % 2) data/libuv1-1.40.0/docs/code/udp-dhcp/main.c:56:37: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. buffer.base[4] = (unsigned int) random(); data/libuv1-1.40.0/include/uv.h:180:14: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. XX(RANDOM, random) \ data/libuv1-1.40.0/include/uv/darwin.h:47:9: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. char* realpath; \ data/libuv1-1.40.0/src/threadpool.c:194:9: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. val = getenv("UV_THREADPOOL_SIZE"); data/libuv1-1.40.0/src/unix/core.c:1104:11: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. buf = getenv(name); \ data/libuv1-1.40.0/src/unix/core.c:1318:9: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. var = getenv(name); data/libuv1-1.40.0/src/unix/core.c:1561:9: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. if (realpath(prog, abspath) != abspath) data/libuv1-1.40.0/src/unix/core.c:1579:14: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. path_env = getenv("PATH"); data/libuv1-1.40.0/src/unix/core.c:1591:9: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. if (realpath(trypath, abspath) == abspath) { data/libuv1-1.40.0/src/unix/darwin.c:91:7: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. if (realpath(exepath, abspath) != abspath) data/libuv1-1.40.0/src/unix/fs.c:762:9: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. buf = realpath(req->path, NULL); data/libuv1-1.40.0/src/unix/fs.c:776:7: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. if (realpath(req->path, buf) == NULL) { data/libuv1-1.40.0/src/unix/fsevents.c:273:32: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. if (memcmp(path, handle->realpath, handle->realpath_len) != 0) data/libuv1-1.40.0/src/unix/fsevents.c:276:50: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. if (!(handle->realpath_len == 1 && handle->realpath[0] == '/')) { data/libuv1-1.40.0/src/unix/fsevents.c:462:20: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. assert(curr->realpath != NULL); data/libuv1-1.40.0/src/unix/fsevents.c:464:67: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. pCFStringCreateWithFileSystemRepresentation(NULL, curr->realpath); data/libuv1-1.40.0/src/unix/fsevents.c:822:22: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. handle->realpath = realpath(handle->path, NULL); data/libuv1-1.40.0/src/unix/fsevents.c:825:41: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. handle->realpath_len = strlen(handle->realpath); data/libuv1-1.40.0/src/unix/fsevents.c:874:20: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. uv__free(handle->realpath); data/libuv1-1.40.0/src/unix/fsevents.c:916:20: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. uv__free(handle->realpath); data/libuv1-1.40.0/src/unix/os390-syscalls.c:525:7: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. if (realpath(tmpbuf, realpathstr) == NULL) { data/libuv1-1.40.0/src/unix/qnx.c:63:3: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. realpath(_cmdname(NULL), path); data/libuv1-1.40.0/src/unix/tcp.c:339:23: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. const char* val = getenv("UV_TCP_SINGLE_ACCEPT"); data/libuv1-1.40.0/src/win/fs.c:2820:18: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. XX(REALPATH, realpath) data/libuv1-1.40.0/src/win/pipe.c:130:5: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&handle->pipe.conn.readfile_thread_lock); data/libuv1-1.40.0/src/win/pipe.c:748:5: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&handle->pipe.conn.readfile_thread_lock); data/libuv1-1.40.0/src/win/pipe.c:1002:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(lock); data/libuv1-1.40.0/src/win/pipe.c:1028:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(lock); data/libuv1-1.40.0/src/win/signal.c:43:3: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&uv__signal_lock); data/libuv1-1.40.0/src/win/signal.c:87:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&uv__signal_lock); data/libuv1-1.40.0/src/win/signal.c:167:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&uv__signal_lock); data/libuv1-1.40.0/src/win/signal.c:217:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&uv__signal_lock); data/libuv1-1.40.0/src/win/thread.c:208:3: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(mutex); data/libuv1-1.40.0/src/win/thread.c:224:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(mutex); data/libuv1-1.40.0/src/win/thread.c:249:3: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&rwlock->state_.num_readers_lock_); data/libuv1-1.40.0/src/win/thread.c:266:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&rwlock->state_.num_readers_lock_); data/libuv1-1.40.0/src/win/thread.c:315:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&rwlock->state_.num_readers_lock_); data/libuv1-1.40.0/src/win/util.c:83:3: [3] (misc) InitializeCriticalSection: Exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. InitializeCriticalSection(&process_title_lock); data/libuv1-1.40.0/src/win/util.c:430:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&process_title_lock); data/libuv1-1.40.0/src/win/util.c:465:3: [3] (misc) EnterCriticalSection: On some versions of Windows, exceptions can be thrown in low-memory situations. Use InitializeCriticalSectionAndSpinCount instead. EnterCriticalSection(&process_title_lock); data/libuv1-1.40.0/test/run-tests.c:56:33: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. if (0 == geteuid() && NULL == getenv("UV_RUN_AS_ROOT")) { data/libuv1-1.40.0/test/run-tests.c:196:12: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. test = getenv("ENV_TEST"); data/libuv1-1.40.0/test/runner-unix.c:58:9: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. arg = getenv("UV_TEST_RUNNER_FD"); data/libuv1-1.40.0/test/runner-unix.c:92:9: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. arg = getenv("UV_USE_VALGRIND"); data/libuv1-1.40.0/test/runner.c:259:11: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. var = getenv("UV_TEST_TIMEOUT_MULTIPLIER"); data/libuv1-1.40.0/test/test-fs-event.c:755:27: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. const char* sys_drive = getenv("SystemDrive"); data/libuv1-1.40.0/test/test-get-currentexe.c:52:18: [3] (buffer) realpath: This function does not protect against buffer overflows, and some implementations can overflow internally (CWE-120/CWE-785!). Ensure that the destination buffer is at least of size MAXPATHLEN, andto protect against implementation problems, the input argument should also be checked to ensure it is no larger than MAXPATHLEN. ASSERT(NULL != realpath(executable_path, path)); data/libuv1-1.40.0/test/test-spawn.c:243:15: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. if (NULL != getenv("DYLD_LIBRARY_PATH") || data/libuv1-1.40.0/test/test-spawn.c:244:15: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. NULL != getenv("LD_LIBRARY_PATH") || data/libuv1-1.40.0/test/test-spawn.c:245:15: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. NULL != getenv("LIBPATH")) { data/libuv1-1.40.0/test/test-spawn.c:1357:16: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. char *path = getenv("PATH"); data/libuv1-1.40.0/test/test-spawn.c:1714:21: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. char* syspath = getenv("PATH"); data/libuv1-1.40.0/test/test-spawn.c:1723:12: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. env[1] = getenv(dyld_path_var); data/libuv1-1.40.0/docs/code/cgi/main.c:19:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[size]; data/libuv1-1.40.0/docs/code/cgi/main.c:21:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(path + (strlen(path) - strlen("cgi")), "tick"); data/libuv1-1.40.0/docs/code/dns/main.c:49:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char addr[17] = {'\0'}; data/libuv1-1.40.0/docs/code/idle-compute/main.c:8:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/libuv1-1.40.0/docs/code/interfaces/main.c:5:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[512]; data/libuv1-1.40.0/docs/code/multi-echo-server/main.c:19:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char worker_path[500]; data/libuv1-1.40.0/docs/code/multi-echo-server/main.c:54:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(worker_path + (strlen(worker_path) - strlen("multi-echo-server")), "worker"); data/libuv1-1.40.0/docs/code/onchange/main.c:10:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[1024]; data/libuv1-1.40.0/docs/code/proc-streams/main.c:20:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[size]; data/libuv1-1.40.0/docs/code/proc-streams/main.c:22:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(path + (strlen(path) - strlen("proc-streams")), "test"); data/libuv1-1.40.0/docs/code/tty-gravity/main.c:15:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data[500]; data/libuv1-1.40.0/docs/code/udp-dhcp/main.c:25:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sender[17] = { 0 }; data/libuv1-1.40.0/docs/code/udp-dhcp/main.c:32:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char ip[4] = {0}; data/libuv1-1.40.0/docs/code/uvcat/main.c:13:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[1024]; data/libuv1-1.40.0/docs/code/uvtee/main.c:40:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(req->buf.base, buf.base, size); data/libuv1-1.40.0/docs/code/uvwget/main.c:41:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[50]; data/libuv1-1.40.0/docs/code/uvwget/main.c:42:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(filename, "%d.download", num); data/libuv1-1.40.0/docs/code/uvwget/main.c:45:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file = fopen(filename, "w"); data/libuv1-1.40.0/include/uv.h:1098:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char phys_addr[6]; data/libuv1-1.40.0/include/uv.h:1119:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sysname[256]; data/libuv1-1.40.0/include/uv.h:1120:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char release[256]; data/libuv1-1.40.0/include/uv.h:1121:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char version[256]; data/libuv1-1.40.0/include/uv.h:1122:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char machine[256]; data/libuv1-1.40.0/include/uv/os390.h:31:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char rfis_rftok[8]; \ data/libuv1-1.40.0/include/uv/unix.h:160:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pad[sizeof(pthread_barrier_t) - sizeof(struct _uv_barrier*)]; data/libuv1-1.40.0/include/uv/unix.h:353:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char host[NI_MAXHOST]; \ data/libuv1-1.40.0/include/uv/unix.h:354:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char service[NI_MAXSERV]; \ data/libuv1-1.40.0/include/uv/win.h:301:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char d_name[1]; data/libuv1-1.40.0/include/uv/win.h:408:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char accept_buffer[sizeof(struct sockaddr_storage) * 2 + 32]; \ data/libuv1-1.40.0/include/uv/win.h:506:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char last_key[8]; \ data/libuv1-1.40.0/include/uv/win.h:594:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char host[NI_MAXHOST]; \ data/libuv1-1.40.0/include/uv/win.h:595:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char service[NI_MAXSERV]; \ data/libuv1-1.40.0/src/fs-poll.c:48:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[1]; /* variable length */ data/libuv1-1.40.0/src/fs-poll.c:90:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ctx->path, path, len + 1); data/libuv1-1.40.0/src/fs-poll.c:156:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, ctx->path, required_len); data/libuv1-1.40.0/src/inet.c:55:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[UV__INET_ADDRSTRLEN]; data/libuv1-1.40.0/src/inet.c:75:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[UV__INET6_ADDRSTRLEN], *tp; data/libuv1-1.40.0/src/inet.c:138:11: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. tp += sprintf(tp, "%x", words[i]); data/libuv1-1.40.0/src/inet.c:159:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[UV__INET6_ADDRSTRLEN], *s, *p; data/libuv1-1.40.0/src/inet.c:167:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(s, src, len); data/libuv1-1.40.0/src/inet.c:182:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char tmp[sizeof(struct in_addr)], *tp; data/libuv1-1.40.0/src/inet.c:213:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, tmp, sizeof(struct in_addr)); data/libuv1-1.40.0/src/inet.c:221:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char tmp[sizeof(struct in6_addr)], *tp, *endp, *colonp; data/libuv1-1.40.0/src/inet.c:300:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, tmp, sizeof tmp); data/libuv1-1.40.0/src/threadpool.c:196:16: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). nthreads = atoi(val); data/libuv1-1.40.0/src/threadpool.c:238:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&once, &child_once, sizeof(child_once)); data/libuv1-1.40.0/src/unix/aix-common.c:62:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char args[UV__PATH_MAX]; data/libuv1-1.40.0/src/unix/aix-common.c:76:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, original_exepath, *size); data/libuv1-1.40.0/src/unix/aix.c:406:42: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char* uv__rawname(const char* cp, char (*dst)[FILENAME_MAX+1]) { data/libuv1-1.40.0/src/unix/aix.c:443:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char rawbuf[FILENAME_MAX+1]; data/libuv1-1.40.0/src/unix/aix.c:493:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[256]; data/libuv1-1.40.0/src/unix/aix.c:521:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmd[2048]; data/libuv1-1.40.0/src/unix/aix.c:532:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(cmd, "/aha/fs/modDir.monFactory"); data/libuv1-1.40.0/src/unix/aix.c:534:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(cmd, "/aha/fs/modFile.monFactory"); data/libuv1-1.40.0/src/unix/aix.c:555:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mon_file_write_string[RDWR_BUF_SIZE]; data/libuv1-1.40.0/src/unix/aix.c:556:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mon_file[PATH_MAX]; data/libuv1-1.40.0/src/unix/aix.c:563:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(mon_file, "/aha/fs/modDir.monFactory"); data/libuv1-1.40.0/src/unix/aix.c:565:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(mon_file, "/aha/fs/modFile.monFactory"); data/libuv1-1.40.0/src/unix/aix.c:576:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(mon_file, ".mon"); data/libuv1-1.40.0/src/unix/aix.c:581:9: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). *fd = open(mon_file, O_CREAT|O_RDWR); data/libuv1-1.40.0/src/unix/aix.c:598:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(mon_file_write_string, "CHANGED=YES;WAIT_TYPE=WAIT_IN_SELECT;INFO_LVL=2"); data/libuv1-1.40.0/src/unix/aix.c:600:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(mon_file_write_string, "CHANGED=YES;WAIT_TYPE=WAIT_IN_SELECT;INFO_LVL=1"); data/libuv1-1.40.0/src/unix/aix.c:641:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[PATH_MAX]; /* To be used when handling directories */ data/libuv1-1.40.0/src/unix/aix.c:704:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char result_data[RDWR_BUF_SIZE]; data/libuv1-1.40.0/src/unix/aix.c:708:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fname[PATH_MAX]; data/libuv1-1.40.0/src/unix/aix.c:773:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cwd[PATH_MAX]; data/libuv1-1.40.0/src/unix/aix.c:774:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char absolute_path[PATH_MAX]; data/libuv1-1.40.0/src/unix/aix.c:775:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char readlink_cwd[PATH_MAX]; data/libuv1-1.40.0/src/unix/aix.c:873:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char exepath[UV__PATH_MAX]; data/libuv1-1.40.0/src/unix/aix.c:915:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(s, argv[i], size); data/libuv1-1.40.0/src/unix/aix.c:978:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, process_argv[0], len); data/libuv1-1.40.0/src/unix/aix.c:994:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pp[64]; data/libuv1-1.40.0/src/unix/aix.c:1001:8: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open(pp, O_RDONLY); data/libuv1-1.40.0/src/unix/android-ifaddrs.c:79:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char l_buffer[NLMSG_ALIGN(sizeof(struct nlmsghdr)) + NLMSG_ALIGN(sizeof(struct rtgenmsg))]; data/libuv1-1.40.0/src/unix/android-ifaddrs.c:291:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&((struct sockaddr_in*)p_dest)->sin_addr, p_data, p_size); data/libuv1-1.40.0/src/unix/android-ifaddrs.c:294:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&((struct sockaddr_in6*)p_dest)->sin6_addr, p_data, p_size); data/libuv1-1.40.0/src/unix/android-ifaddrs.c:297:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(((struct sockaddr_ll*)p_dest)->sll_addr, p_data, p_size); data/libuv1-1.40.0/src/unix/android-ifaddrs.c:301:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p_dest->sa_data, p_data, p_size); data/libuv1-1.40.0/src/unix/android-ifaddrs.c:377:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(l_index, &l_info->ifi_index, sizeof(int)); data/libuv1-1.40.0/src/unix/android-ifaddrs.c:412:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(l_data, l_rtaData, l_rtaDataSize); data/libuv1-1.40.0/src/unix/android-ifaddrs.c:432:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&l_index, l_indexPtr, sizeof(int)); data/libuv1-1.40.0/src/unix/android-ifaddrs.c:573:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char l_mask[16] = {0}; data/libuv1-1.40.0/src/unix/async.c:123:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/libuv1-1.40.0/src/unix/bsd-proctitle.c:90:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, process_title, len); data/libuv1-1.40.0/src/unix/core.c:709:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char scratch[1 + UV__PATH_MAX]; data/libuv1-1.40.0/src/unix/core.c:1007:8: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open(path, flags | O_CLOEXEC); data/libuv1-1.40.0/src/unix/core.c:1016:8: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open(path, flags); data/libuv1-1.40.0/src/unix/core.c:1087:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, pwd.homedir, len + 1); data/libuv1-1.40.0/src/unix/core.c:1138:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, buf, len + 1); data/libuv1-1.40.0/src/unix/core.c:1208:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pwd->username, pw.pw_name, name_size); data/libuv1-1.40.0/src/unix/core.c:1212:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pwd->homedir, pw.pw_dir, homedir_size); data/libuv1-1.40.0/src/unix/core.c:1216:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pwd->shell, pw.pw_shell, shell_size); data/libuv1-1.40.0/src/unix/core.c:1330:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, var, len + 1); data/libuv1-1.40.0/src/unix/core.c:1366:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[UV_MAXHOSTNAMESIZE]; data/libuv1-1.40.0/src/unix/core.c:1383:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, buf, len + 1); data/libuv1-1.40.0/src/unix/core.c:1541:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char abspath[UV__PATH_MAX]; data/libuv1-1.40.0/src/unix/core.c:1543:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char trypath[UV__PATH_MAX]; data/libuv1-1.40.0/src/unix/core.c:1570:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, abspath, *buflen); data/libuv1-1.40.0/src/unix/core.c:1600:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, abspath, *buflen); data/libuv1-1.40.0/src/unix/darwin-proctitle.c:38:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char namebuf[64]; /* MAXTHREADNAMESIZE */ data/libuv1-1.40.0/src/unix/darwin.c:79:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char abspath[PATH_MAX * 2 + 1]; data/libuv1-1.40.0/src/unix/darwin.c:80:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char exepath[PATH_MAX + 1]; data/libuv1-1.40.0/src/unix/darwin.c:102:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, abspath, *size); data/libuv1-1.40.0/src/unix/darwin.c:322:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char model[512]; data/libuv1-1.40.0/src/unix/freebsd.c:60:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char abspath[PATH_MAX * 2 + 1]; data/libuv1-1.40.0/src/unix/freebsd.c:83:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, abspath, *size); data/libuv1-1.40.0/src/unix/freebsd.c:180:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char model[512]; data/libuv1-1.40.0/src/unix/fs.c:139:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((void*) req->path, path, path_len); \ data/libuv1-1.40.0/src/unix/fs.c:140:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((void*) req->new_path, new_path, new_path_len); \ data/libuv1-1.40.0/src/unix/fs.c:340:7: [2] (tmpfile) mkstemp: Potential for temporary file vulnerability in some circumstances. Some older Unix-like systems create temp files with permission to write by all by default, so be sure to set the umask to override this. Also, some older Unix systems might fail to use O_EXCL when opening the file, so make sure that O_EXCL is used by the library (CWE-377). r = mkstemp(path); data/libuv1-1.40.0/src/unix/fs.c:364:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). return open(req->path, req->flags | O_CLOEXEC, req->mode); data/libuv1-1.40.0/src/unix/fs.c:371:7: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). r = open(req->path, req->flags, req->mode); data/libuv1-1.40.0/src/unix/fs.c:799:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[8192]; data/libuv1-1.40.0/src/unix/fs.c:1904:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(req->bufs, bufs, nbufs * sizeof(*bufs)); data/libuv1-1.40.0/src/unix/fs.c:2074:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(req->bufs, bufs, nbufs * sizeof(*bufs)); data/libuv1-1.40.0/src/unix/fsevents.c:91:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[1]; data/libuv1-1.40.0/src/unix/fsevents.c:314:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(event->path, path, len + 1); data/libuv1-1.40.0/src/unix/getaddrinfo.c:147:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char hostname_ascii[256]; data/libuv1-1.40.0/src/unix/getaddrinfo.c:196:18: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. req->hints = memcpy(buf + len, hints, sizeof(*hints)); data/libuv1-1.40.0/src/unix/getaddrinfo.c:201:20: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. req->service = memcpy(buf + len, service, service_len); data/libuv1-1.40.0/src/unix/getaddrinfo.c:206:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. req->hostname = memcpy(buf + len, hostname, hostname_len); data/libuv1-1.40.0/src/unix/getaddrinfo.c:230:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ifname_buf[UV_IF_NAMESIZE]; data/libuv1-1.40.0/src/unix/getaddrinfo.c:246:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, ifname_buf, len); data/libuv1-1.40.0/src/unix/getnameinfo.c:90:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&req->storage, data/libuv1-1.40.0/src/unix/getnameinfo.c:94:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&req->storage, data/libuv1-1.40.0/src/unix/haiku.c:37:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char abspath[B_PATH_NAME_LENGTH]; data/libuv1-1.40.0/src/unix/ibmi.c:68:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char current_date_and_time[8]; data/libuv1-1.40.0/src/unix/ibmi.c:69:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char system_name[8]; data/libuv1-1.40.0/src/unix/ibmi.c:70:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char elapsed_time[6]; data/libuv1-1.40.0/src/unix/ibmi.c:89:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char reserved2[3]; data/libuv1-1.40.0/src/unix/ibmi.c:106:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char header[208]; data/libuv1-1.40.0/src/unix/ibmi.c:107:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char loca_adapter_address[12]; data/libuv1-1.40.0/src/unix/ibmi.c:114:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char msgid[7]; data/libuv1-1.40.0/src/unix/ibmi.c:118:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char e2a[256] = { data/libuv1-1.40.0/src/unix/ibmi.c:137:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char a2e[256] = { data/libuv1-1.40.0/src/unix/ibmi.c:184:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char format[8], reset_status[10]; data/libuv1-1.40.0/src/unix/ibmi.c:314:56: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static int get_ibmi_physical_address(const char* line, char (*phys_addr)[6]) { data/libuv1-1.40.0/src/unix/ibmi.c:318:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char format[8], line_name[10]; data/libuv1-1.40.0/src/unix/ibmi.c:319:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char mac_addr[sizeof(rcvr.loca_adapter_address)]; data/libuv1-1.40.0/src/unix/ibmi.c:470:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char exepath[UV__PATH_MAX]; data/libuv1-1.40.0/src/unix/kqueue.c:451:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pathbuf[MAXPATHLEN]; data/libuv1-1.40.0/src/unix/kqueue.c:510:8: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open(handle->path, O_RDONLY); data/libuv1-1.40.0/src/unix/linux-core.c:550:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/libuv1-1.40.0/src/unix/linux-core.c:558:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open("/proc/self/stat", O_RDONLY); data/libuv1-1.40.0/src/unix/linux-core.c:633:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/libuv1-1.40.0/src/unix/linux-core.c:723:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/libuv1-1.40.0/src/unix/linux-core.c:781:33: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). ci[speed_idx++].speed = atoi(buf + sizeof(speed_marker) - 1); data/libuv1-1.40.0/src/unix/linux-core.c:824:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/libuv1-1.40.0/src/unix/linux-core.c:886:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/libuv1-1.40.0/src/unix/linux-core.c:1057:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[4096]; /* Large enough to hold all of /proc/meminfo. */ data/libuv1-1.40.0/src/unix/linux-core.c:1109:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[256]; data/libuv1-1.40.0/src/unix/linux-core.c:1110:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[32]; /* Large enough to hold an encoded uint64_t. */ data/libuv1-1.40.0/src/unix/linux-core.c:1134:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[128]; /* Large enough to hold all of /proc/loadavg. */ data/libuv1-1.40.0/src/unix/linux-inotify.c:179:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[4096]; data/libuv1-1.40.0/src/unix/linux-inotify.c:289:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. w->path = memcpy(w + 1, path, len); data/libuv1-1.40.0/src/unix/netbsd.c:71:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char int_buf[PATH_MAX]; data/libuv1-1.40.0/src/unix/netbsd.c:186:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char model[512]; data/libuv1-1.40.0/src/unix/openbsd.c:102:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, argsbuf[0], *size); data/libuv1-1.40.0/src/unix/openbsd.c:183:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char model[512]; data/libuv1-1.40.0/src/unix/os390-syscalls.c:67:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(copy, dirent, sizeof(*copy)); data/libuv1-1.40.0/src/unix/os390-syscalls.c:186:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&once, &child_once, sizeof(child_once)); data/libuv1-1.40.0/src/unix/os390-syscalls.c:444:8: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open("/dev/urandom", O_RDONLY); data/libuv1-1.40.0/src/unix/os390-syscalls.c:491:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char realpathstr[PATH_MAX + 1]; data/libuv1-1.40.0/src/unix/os390-syscalls.c:507:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, tmpbuf, rlen); data/libuv1-1.40.0/src/unix/os390-syscalls.c:543:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, realpathstr, vlen); data/libuv1-1.40.0/src/unix/os390-syscalls.c:544:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf + vlen, delimiter, plen); data/libuv1-1.40.0/src/unix/os390.c:157:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char asid[2]; data/libuv1-1.40.0/src/unix/os390.c:158:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char loginname[8]; data/libuv1-1.40.0/src/unix/os390.c:165:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char gthb[4]; data/libuv1-1.40.0/src/unix/os390.c:169:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char accessthid[3]; data/libuv1-1.40.0/src/unix/os390.c:178:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[2048]; data/libuv1-1.40.0/src/unix/os390.c:182:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char gthe[4]; data/libuv1-1.40.0/src/unix/os390.c:184:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[1024]; data/libuv1-1.40.0/src/unix/os390.c:256:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char args[PATH_MAX]; data/libuv1-1.40.0/src/unix/os390.c:357:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cpu_info->model, info.siv1v2si11v1.si11v1cpcmodel, CPCMODEL_LENGTH); data/libuv1-1.40.0/src/unix/os390.c:531:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(address, addresses_v6, count_v6 * sizeof(uv_interface_address_t)); data/libuv1-1.40.0/src/unix/os390.c:658:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(reg_struct.__rfis_utok, &handle, sizeof(handle)); data/libuv1-1.40.0/src/unix/os390.c:692:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(reg_struct.__rfis_rftok, handle->rfis_rftok, data/libuv1-1.40.0/src/unix/pipe.c:273:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, sa.sun_path, addrlen); data/libuv1-1.40.0/src/unix/process.c:307:18: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). use_fd = open("/dev/null", fd == 0 ? O_RDONLY : O_RDWR); data/libuv1-1.40.0/src/unix/proctitle.c:81:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(s, argv[i], size); data/libuv1-1.40.0/src/unix/proctitle.c:119:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pt->str, title, len); data/libuv1-1.40.0/src/unix/proctitle.c:146:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, process_title.str, process_title.len + 1); data/libuv1-1.40.0/src/unix/qnx.c:59:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[PATH_MAX]; data/libuv1-1.40.0/src/unix/random-sysctl-linux.c:46:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char uuid[16]; data/libuv1-1.40.0/src/unix/random-sysctl-linux.c:94:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p, uuid, n); data/libuv1-1.40.0/src/unix/signal.c:421:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[sizeof(uv__signal_msg_t) * 32]; data/libuv1-1.40.0/src/unix/stream.c:152:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/libuv1-1.40.0/src/unix/stream.c:846:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data[64]; data/libuv1-1.40.0/src/unix/stream.c:1120:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cmsg_space[CMSG_SPACE(UV__CMSG_FD_SIZE)]; data/libuv1-1.40.0/src/unix/stream.c:1456:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(req->bufs, bufs, nbufs * sizeof(bufs[0])); data/libuv1-1.40.0/src/unix/sunos.c:384:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[128]; data/libuv1-1.40.0/src/unix/sunos.c:600:8: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open("/proc/self/psinfo", O_RDONLY); data/libuv1-1.40.0/src/unix/sunos.c:764:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sin->sin6_addr.s6_addr, data/libuv1-1.40.0/src/unix/tcp.c:340:37: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). single_accept = (val != NULL && atoi(val) != 0); /* Off by default. */ data/libuv1-1.40.0/src/unix/thread.c:502:7: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). atoi(version + 2) < 21; data/libuv1-1.40.0/src/unix/tty.c:76:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dummy[256]; data/libuv1-1.40.0/src/unix/tty.c:130:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[256]; data/libuv1-1.40.0/src/unix/udp.c:679:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&req->addr, addr, addrlen); data/libuv1-1.40.0/src/unix/udp.c:693:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(req->bufs, bufs, nbufs * sizeof(bufs[0])); data/libuv1-1.40.0/src/unix/udp.c:931:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&mreq.gsr_group, multicast_addr, sizeof(*multicast_addr)); data/libuv1-1.40.0/src/unix/udp.c:932:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&mreq.gsr_source, source_addr, sizeof(*source_addr)); data/libuv1-1.40.0/src/uv-common.c:60:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. return memcpy(m, s, len); data/libuv1-1.40.0/src/uv-common.c:72:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. return memcpy(m, s, len); data/libuv1-1.40.0/src/uv-common.c:166:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[32]; data/libuv1-1.40.0/src/uv-common.c:233:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char address_part[40]; data/libuv1-1.40.0/src/uv-common.c:250:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(address_part, ip, address_part_size); data/libuv1-1.40.0/src/uv-common.c:257:27: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). addr->sin6_scope_id = atoi(zone_index); data/libuv1-1.40.0/src/uv-common.c:606:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, handle->path, required_len); data/libuv1-1.40.0/src/win/dl.c:34:8: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar(CP_UTF8, data/libuv1-1.40.0/src/win/fs-event.c:181:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). name_size = MultiByteToWideChar(CP_UTF8, 0, path, -1, NULL, 0) * data/libuv1-1.40.0/src/win/fs-event.c:188:8: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar(CP_UTF8, data/libuv1-1.40.0/src/win/fs.c:161:17: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). pathw_len = MultiByteToWideChar(CP_UTF8, data/libuv1-1.40.0/src/win/fs.c:180:21: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). new_pathw_len = MultiByteToWideChar(CP_UTF8, data/libuv1-1.40.0/src/win/fs.c:209:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD r = MultiByteToWideChar(CP_UTF8, data/libuv1-1.40.0/src/win/fs.c:223:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). DWORD r = MultiByteToWideChar(CP_UTF8, data/libuv1-1.40.0/src/win/fs.c:238:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pos, path, path_len); data/libuv1-1.40.0/src/win/fs.c:317:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[MAXIMUM_REPARSE_DATA_BUFFER_SIZE]; data/libuv1-1.40.0/src/win/fs.c:822:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(req->fs.info.bufs[index].base, data/libuv1-1.40.0/src/win/fs.c:1017:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char*)view + view_offset + done_write, data/libuv1-1.40.0/src/win/fs.c:1376:24: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. __declspec(align(8)) char buffer[8192]; data/libuv1-1.40.0/src/win/fs.c:1378:33: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. __attribute__ ((aligned (8))) char buffer[8192]; data/libuv1-1.40.0/src/win/fs.c:2789:14: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). XX(OPEN, open) data/libuv1-1.40.0/src/win/fs.c:2811:17: [2] (tmpfile) mkstemp: Potential for temporary file vulnerability in some circumstances. Some older Unix-like systems create temp files with permission to write by all by default, so be sure to set the umask to override this. Also, some older Unix systems might fail to use O_EXCL when opening the file, so make sure that O_EXCL is used by the library (CWE-377). XX(MKSTEMP, mkstemp) data/libuv1-1.40.0/src/win/fs.c:2928:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(req->fs.info.bufs, bufs, nbufs * sizeof(*bufs)); data/libuv1-1.40.0/src/win/fs.c:2961:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(req->fs.info.bufs, bufs, nbufs * sizeof(*bufs)); data/libuv1-1.40.0/src/win/getaddrinfo.c:178:11: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cur_ptr, addrinfow_ptr->ai_addr, addrinfo_ptr->ai_addrlen); data/libuv1-1.40.0/src/win/getaddrinfo.c:263:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char hostname_ascii[256]; data/libuv1-1.40.0/src/win/getaddrinfo.c:289:29: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). nodesize = ALIGNED_SIZE(MultiByteToWideChar(CP_UTF8, 0, hostname_ascii, data/libuv1-1.40.0/src/win/getaddrinfo.c:299:32: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). servicesize = ALIGNED_SIZE(MultiByteToWideChar(CP_UTF8, data/libuv1-1.40.0/src/win/getaddrinfo.c:329:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (MultiByteToWideChar(CP_UTF8, data/libuv1-1.40.0/src/win/getaddrinfo.c:347:9: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (MultiByteToWideChar(CP_UTF8, data/libuv1-1.40.0/src/win/getaddrinfo.c:401:3: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t wname[NDIS_IF_MAX_STRING_SIZE + 1]; /* Add one for the NUL. */ data/libuv1-1.40.0/src/win/getnameinfo.c:126:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&req->storage, data/libuv1-1.40.0/src/win/getnameinfo.c:130:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&req->storage, data/libuv1-1.40.0/src/win/pipe.c:555:14: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). nameSize = MultiByteToWideChar(CP_UTF8, 0, name, -1, NULL, 0) * sizeof(WCHAR); data/libuv1-1.40.0/src/win/pipe.c:561:8: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar(CP_UTF8, data/libuv1-1.40.0/src/win/pipe.c:655:14: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). nameSize = MultiByteToWideChar(CP_UTF8, 0, name, -1, NULL, 0) * sizeof(WCHAR); data/libuv1-1.40.0/src/win/pipe.c:661:8: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (!MultiByteToWideChar(CP_UTF8, data/libuv1-1.40.0/src/win/pipe.c:1298:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&heap_buffer[heap_buffer_offset], data/libuv1-1.40.0/src/win/pipe.c:2247:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, pipe_prefix, pipe_prefix_len); data/libuv1-1.40.0/src/win/process-stdio.c:100:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pipe_name[64]; data/libuv1-1.40.0/src/win/process.c:112:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). ws_len = MultiByteToWideChar(CP_UTF8, data/libuv1-1.40.0/src/win/process.c:127:7: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). r = MultiByteToWideChar(CP_UTF8, data/libuv1-1.40.0/src/win/process.c:540:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). arg_len = MultiByteToWideChar(CP_UTF8, data/libuv1-1.40.0/src/win/process.c:581:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). arg_len = MultiByteToWideChar(CP_UTF8, data/libuv1-1.40.0/src/win/process.c:700:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_UTF8, data/libuv1-1.40.0/src/win/process.c:725:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). len = MultiByteToWideChar(CP_UTF8, data/libuv1-1.40.0/src/win/tty.c:898:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&handle->tty.rd.last_key[prefix_len], vt100, vt100_len); data/libuv1-1.40.0/src/win/udp.c:785:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&mreq.gsr_group, multicast_addr, sizeof(*multicast_addr)); data/libuv1-1.40.0/src/win/udp.c:786:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&mreq.gsr_source, source_addr, sizeof(*source_addr)); data/libuv1-1.40.0/src/win/util.c:236:15: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). utf16_len = MultiByteToWideChar(CP_UTF8, data/libuv1-1.40.0/src/win/util.c:250:7: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). if (MultiByteToWideChar(CP_UTF8, data/libuv1-1.40.0/src/win/util.c:402:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). length = MultiByteToWideChar(CP_UTF8, 0, title, -1, NULL, 0); data/libuv1-1.40.0/src/win/util.c:414:12: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). length = MultiByteToWideChar(CP_UTF8, 0, title, -1, title_w, length); data/libuv1-1.40.0/src/win/util.c:483:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, process_title, len); data/libuv1-1.40.0/src/win/util.c:1189:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, pwd.homedir, len + 1); data/libuv1-1.40.0/src/win/util.c:1342:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). bufsize = MultiByteToWideChar(CP_UTF8, 0, utf8, utf8len, NULL, 0); data/libuv1-1.40.0/src/win/util.c:1356:13: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). bufsize = MultiByteToWideChar(CP_UTF8, 0, utf8, utf8len, *utf16, bufsize); data/libuv1-1.40.0/src/win/util.c:1371:3: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t username[UNLEN + 1]; data/libuv1-1.40.0/src/win/util.c:1519:3: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t fastvar[512]; data/libuv1-1.40.0/src/win/util.c:1667:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[UV_MAXHOSTNAMESIZE]; data/libuv1-1.40.0/src/win/util.c:1686:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer, buf, len + 1); data/libuv1-1.40.0/src/win/winsock.c:558:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest4, addr, sizeof(*dest4)); data/libuv1-1.40.0/src/win/winsock.c:564:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dest6, addr, sizeof(*dest6)); data/libuv1-1.40.0/test/benchmark-multi-accept.c:36:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. typedef unsigned char handle_storage_t[sizeof(union stream_handle)]; data/libuv1-1.40.0/test/benchmark-multi-accept.c:63:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char scratch[16]; data/libuv1-1.40.0/test/benchmark-multi-accept.c:316:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char slab[32]; data/libuv1-1.40.0/test/benchmark-ping-udp.c:53:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char slab[64 * 1024]; data/libuv1-1.40.0/test/benchmark-pound.c:87:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char slab[65536]; data/libuv1-1.40.0/test/benchmark-pump.c:69:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char write_buffer[WRITE_BUFFER_SIZE]; data/libuv1-1.40.0/test/benchmark-spawn.c:34:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char exepath[1024]; data/libuv1-1.40.0/test/benchmark-spawn.c:40:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char output[OUTPUT_SIZE]; data/libuv1-1.40.0/test/benchmark-udp-pummel.c:65:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char slab[65536]; data/libuv1-1.40.0/test/blackhole-server.c:66:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char slab[65536]; data/libuv1-1.40.0/test/dns-server.c:114:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dnsrsp, DNSRsp, sizeof(DNSRsp)); data/libuv1-1.40.0/test/dns-server.c:115:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dnsrsp + sizeof(DNSRsp), qrecord, sizeof(qrecord)); data/libuv1-1.40.0/test/dns-server.c:116:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dnsrsp + sizeof(DNSRsp) + sizeof(qrecord), arecord, sizeof(arecord)); data/libuv1-1.40.0/test/dns-server.c:132:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char hdrbuf[DNSREC_LEN]; data/libuv1-1.40.0/test/dns-server.c:162:11: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&hdrbuf[DNSREC_LEN - hdrbuf_remaining], data/libuv1-1.40.0/test/dns-server.c:169:11: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&hdrbuf[DNSREC_LEN - hdrbuf_remaining], data/libuv1-1.40.0/test/echo-server.c:141:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char slab[16 * 64 * 1024]; data/libuv1-1.40.0/test/run-tests.c:141:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/libuv1-1.40.0/test/run-tests.c:230:20: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). uv_uid_t uid = atoi(argv[2]); data/libuv1-1.40.0/test/run-tests.c:231:20: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). uv_gid_t gid = atoi(argv[3]); data/libuv1-1.40.0/test/runner-unix.c:62:8: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). fd = atoi(arg); data/libuv1-1.40.0/test/runner-unix.c:87:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fdstr[8]; data/libuv1-1.40.0/test/runner-unix.c:98:40: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). if (is_helper == 0 && arg != NULL && atoi(arg) != 0) { data/libuv1-1.40.0/test/runner-unix.c:111:17: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). stdout_file = tmpfile(); data/libuv1-1.40.0/test/runner-unix.c:358:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/libuv1-1.40.0/test/runner-win.c:221:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/libuv1-1.40.0/test/runner.c:30:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char executable_path[sizeof(executable_path)]; data/libuv1-1.40.0/test/runner.c:41:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[1024]; data/libuv1-1.40.0/test/runner.c:133:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char reason[1024]; data/libuv1-1.40.0/test/runner.c:167:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char errmsg[1024] = ""; data/libuv1-1.40.0/test/runner.c:263:26: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). timeout_multiplier = atoi(var); data/libuv1-1.40.0/test/runner.h:87:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern char executable_path[4096]; data/libuv1-1.40.0/test/test-close-fd.c:32:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char slab[1]; data/libuv1-1.40.0/test/test-cwd-and-chdir.c:29:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer_orig[PATHMAX]; data/libuv1-1.40.0/test/test-cwd-and-chdir.c:30:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer_new[PATHMAX]; data/libuv1-1.40.0/test/test-eintr-handling.c:40:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[32]; data/libuv1-1.40.0/test/test-env-vars.c:31:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[BUF_SIZE]; data/libuv1-1.40.0/test/test-error.c:40:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[32]; data/libuv1-1.40.0/test/test-fork.c:44:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char socket_cb_read_buf[1024]; data/libuv1-1.40.0/test/test-fork.c:163:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sync_buf[1]; data/libuv1-1.40.0/test/test-fork.c:235:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sync_buf[1]; data/libuv1-1.40.0/test/test-fork.c:285:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sync_buf[1]; data/libuv1-1.40.0/test/test-fs-event.c:63:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char fs_event_filename[PATH_MAX]; data/libuv1-1.40.0/test/test-fs-event.c:65:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char fs_event_filename[1024]; data/libuv1-1.40.0/test/test-fs-event.c:1008:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/libuv1-1.40.0/test/test-fs-open-flags.c:48:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[32]; data/libuv1-1.40.0/test/test-fs-open-flags.c:56:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char absent_file[FILE_NAME_SIZE]; data/libuv1-1.40.0/test/test-fs-open-flags.c:57:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char empty_file[FILE_NAME_SIZE]; data/libuv1-1.40.0/test/test-fs-open-flags.c:58:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char dummy_file[FILE_NAME_SIZE]; data/libuv1-1.40.0/test/test-fs-open-flags.c:80:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(absent_file, "test_file_%d", sid++); data/libuv1-1.40.0/test/test-fs-open-flags.c:88:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(empty_file, "test_file_%d", sid++); data/libuv1-1.40.0/test/test-fs-open-flags.c:102:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(dummy_file, "test_file_%d", sid++); data/libuv1-1.40.0/test/test-fs-poll.c:59:16: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). ASSERT((fp = fopen(FIXTURE, "w+"))); data/libuv1-1.40.0/test/test-fs-poll.c:173:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/libuv1-1.40.0/test/test-fs.c:42:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). # define open _open data/libuv1-1.40.0/test/test-fs.c:122:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[32]; data/libuv1-1.40.0/test/test-fs.c:123:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf2[32]; data/libuv1-1.40.0/test/test-fs.c:219:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char test_file_abs_buf[PATHMAX]; data/libuv1-1.40.0/test/test-fs.c:236:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(test_file_abs_buf, "\\test_file"); data/libuv1-1.40.0/test/test-fs.c:239:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(test_file_abs_buf, "/test_file"); data/libuv1-1.40.0/test/test-fs.c:740:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[TOO_LONG_NAME_LENGTH + 1]; data/libuv1-1.40.0/test/test-fs.c:1169:7: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). f = open("test_file", O_WRONLY | O_CREAT, S_IWUSR | S_IRUSR); data/libuv1-1.40.0/test/test-fs.c:2013:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char test_file_abs_buf[PATHMAX]; data/libuv1-1.40.0/test/test-fs.c:2025:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(test_file_abs_buf, "\\test_file"); data/libuv1-1.40.0/test/test-fs.c:2028:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(test_file_abs_buf, "/test_file"); data/libuv1-1.40.0/test/test-fs.c:2199:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char test_dir_abs_buf[PATHMAX]; data/libuv1-1.40.0/test/test-fs.c:2215:3: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(test_dir_abs_buf, "\\\\?\\"); data/libuv1-1.40.0/test/test-fs.c:2218:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(test_dir_abs_buf, "\\test_dir\\"); data/libuv1-1.40.0/test/test-fs.c:2223:3: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(test_dir_abs_buf, "/test_dir"); data/libuv1-1.40.0/test/test-fs.c:2458:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char localappdata[MAX_PATH]; data/libuv1-1.40.0/test/test-fs.c:2459:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char windowsapps_path[MAX_PATH]; data/libuv1-1.40.0/test/test-fs.c:2460:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char file_path[MAX_PATH]; data/libuv1-1.40.0/test/test-fs.c:3037:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char scratch[768]; data/libuv1-1.40.0/test/test-fs.c:3478:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[2]; data/libuv1-1.40.0/test/test-fs.c:4235:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char icacls_command[1024]; data/libuv1-1.40.0/test/test-get-currentexe.c:39:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[PATHMAX]; data/libuv1-1.40.0/test/test-get-currentexe.c:40:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[PATHMAX]; data/libuv1-1.40.0/test/test-gethostname.c:27:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[UV_MAXHOSTNAMESIZE]; data/libuv1-1.40.0/test/test-getsockname.c:83:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char check_ip[17]; data/libuv1-1.40.0/test/test-handle-fileno.c:41:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). return open("/dev/tty", O_RDONLY, 0); data/libuv1-1.40.0/test/test-homedir.c:30:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char homedir[PATHMAX]; data/libuv1-1.40.0/test/test-idna.c:28:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char b[32]; data/libuv1-1.40.0/test/test-idna.c:104:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char d[256] = {0}; \ data/libuv1-1.40.0/test/test-idna.c:112:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char d1[256] = {0}; \ data/libuv1-1.40.0/test/test-idna.c:113:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char d2[256] = {0}; \ data/libuv1-1.40.0/test/test-ip4-addr.c:31:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst[16]; data/libuv1-1.40.0/test/test-ip6-addr.c:39:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char string_address[INET6_ADDRSTRLEN]; data/libuv1-1.40.0/test/test-ip6-addr.c:46:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char scoped_addr[128]; data/libuv1-1.40.0/test/test-ip6-addr.c:48:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char interface_id[UV_IF_NAMESIZE]; data/libuv1-1.40.0/test/test-ipc-heavy-traffic-deadlock-bug.c:41:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffers[BUFFER_SIZE][BUFFERS_PER_WRITE]; data/libuv1-1.40.0/test/test-ipc-send-recv.c:80:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char slab[8]; data/libuv1-1.40.0/test/test-ipc.c:63:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[LARGE_SIZE]; data/libuv1-1.40.0/test/test-ipc.c:296:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char exepath[1024]; data/libuv1-1.40.0/test/test-osx-select.c:34:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char slab[1024]; data/libuv1-1.40.0/test/test-osx-select.c:57:8: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open("/dev/tty", O_RDONLY); data/libuv1-1.40.0/test/test-osx-select.c:110:8: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open("/dev/tty", O_RDONLY); data/libuv1-1.40.0/test/test-ping-pong.c:52:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char read_buffer[BUFSIZE]; data/libuv1-1.40.0/test/test-pipe-close-stdout-read-stdin.c:34:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[1024]; data/libuv1-1.40.0/test/test-pipe-getsockname.c:55:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/libuv1-1.40.0/test/test-pipe-getsockname.c:94:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/libuv1-1.40.0/test/test-pipe-getsockname.c:166:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/libuv1-1.40.0/test/test-pipe-getsockname.c:180:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sun.sun_path, abstract_pipe, sizeof abstract_pipe); data/libuv1-1.40.0/test/test-pipe-getsockname.c:215:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf1[1024], buf2[1024]; data/libuv1-1.40.0/test/test-pipe-sendmsg.c:66:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char base[1]; data/libuv1-1.40.0/test/test-pipe-sendmsg.c:113:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char scratch[64]; data/libuv1-1.40.0/test/test-pipe-set-non-blocking.c:41:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[4096]; data/libuv1-1.40.0/test/test-pipe-set-non-blocking.c:65:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data[4096]; data/libuv1-1.40.0/test/test-platform-output.c:33:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[512]; data/libuv1-1.40.0/test/test-poll-oob.c:69:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[5]; data/libuv1-1.40.0/test/test-poll.c:224:16: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[74]; data/libuv1-1.40.0/test/test-poll.c:245:16: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[931]; data/libuv1-1.40.0/test/test-poll.c:306:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[103]; data/libuv1-1.40.0/test/test-poll.c:330:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[1234]; data/libuv1-1.40.0/test/test-poll.c:641:8: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open("test/fixtures/empty_file", O_RDONLY); data/libuv1-1.40.0/test/test-poll.c:643:8: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open(".", O_RDONLY); data/libuv1-1.40.0/test/test-process-title-threadsafe.c:43:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[512]; data/libuv1-1.40.0/test/test-process-title.c:28:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[512]; data/libuv1-1.40.0/test/test-process-title.c:45:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[512]; data/libuv1-1.40.0/test/test-process-title.c:90:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char exepath[1024]; data/libuv1-1.40.0/test/test-process-title.c:91:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char jumbo[512]; data/libuv1-1.40.0/test/test-process-title.c:130:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256] = "fail"; data/libuv1-1.40.0/test/test-random.c:27:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char scratch[256]; data/libuv1-1.40.0/test/test-random.c:32:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char zero[sizeof(scratch)]; data/libuv1-1.40.0/test/test-random.c:79:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char zero[256]; data/libuv1-1.40.0/test/test-random.c:80:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/libuv1-1.40.0/test/test-ref.c:33:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[32767]; data/libuv1-1.40.0/test/test-ref.c:405:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char exepath[256]; data/libuv1-1.40.0/test/test-spawn.c:48:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char exepath[1024]; data/libuv1-1.40.0/test/test-spawn.c:58:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char output[OUTPUT_SIZE]; data/libuv1-1.40.0/test/test-spawn.c:1098:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[64]; data/libuv1-1.40.0/test/test-spawn.c:1356:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char newpath[2048]; data/libuv1-1.40.0/test/test-spawn.c:1379:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char uidstr[10]; data/libuv1-1.40.0/test/test-spawn.c:1380:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char gidstr[10]; data/libuv1-1.40.0/test/test-spawn.c:1683:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char file[64]; data/libuv1-1.40.0/test/test-spawn.c:1684:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[1024]; data/libuv1-1.40.0/test/test-spawn.c:1708:3: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(path, "PATH="); data/libuv1-1.40.0/test/test-spawn.c:1727:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[1024 + sizeof(dyld_path_var)]; data/libuv1-1.40.0/test/test-spawn.c:1790:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char ubuf[OUTPUT_SIZE - 1]; data/libuv1-1.40.0/test/test-spawn.c:1893:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/libuv1-1.40.0/test/test-spawn.c:1918:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/libuv1-1.40.0/test/test-stdio-over-pipes.c:29:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char exepath[1024]; data/libuv1-1.40.0/test/test-stdio-over-pipes.c:41:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char output[OUTPUT_SIZE]; data/libuv1-1.40.0/test/test-strscpy.c:30:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char d[4]; data/libuv1-1.40.0/test/test-tcp-close-accept.c:82:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char slab[1]; data/libuv1-1.40.0/test/test-tcp-close-reset.c:77:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char slab[1024]; data/libuv1-1.40.0/test/test-tcp-oob.c:42:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char storage[1024]; data/libuv1-1.40.0/test/test-tcp-oob.c:60:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char lbuf[12]; data/libuv1-1.40.0/test/test-tcp-open.c:91:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char slab[65536]; data/libuv1-1.40.0/test/test-tcp-read-stop-start.c:59:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char slab[65536]; data/libuv1-1.40.0/test/test-tcp-shutdown-after-write.c:55:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char slab[64]; data/libuv1-1.40.0/test/test-tcp-try-write.c:71:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char base[1024]; data/libuv1-1.40.0/test/test-tcp-write-queue-order.c:65:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char base[1024]; data/libuv1-1.40.0/test/test-tcp-write-to-half-open-connection.c:71:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char slab[1024]; data/libuv1-1.40.0/test/test-threadpool-cancel.c:42:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1]; data/libuv1-1.40.0/test/test-threadpool-cancel.c:65:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[64]; data/libuv1-1.40.0/test/test-tmpdir.c:30:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmpdir[PATHMAX]; data/libuv1-1.40.0/test/test-tmpdir.c:75:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmpdirx[PATHMAX]; data/libuv1-1.40.0/test/test-tty-escape-sequence-processing.c:281:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(start, text, length); data/libuv1-1.40.0/test/test-tty-escape-sequence-processing.c:381:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/libuv1-1.40.0/test/test-tty-escape-sequence-processing.c:432:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/libuv1-1.40.0/test/test-tty-escape-sequence-processing.c:483:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/libuv1-1.40.0/test/test-tty-escape-sequence-processing.c:544:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/libuv1-1.40.0/test/test-tty-escape-sequence-processing.c:605:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/libuv1-1.40.0/test/test-tty-escape-sequence-processing.c:656:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/libuv1-1.40.0/test/test-tty-escape-sequence-processing.c:707:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/libuv1-1.40.0/test/test-tty-escape-sequence-processing.c:753:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/libuv1-1.40.0/test/test-tty-escape-sequence-processing.c:808:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/libuv1-1.40.0/test/test-tty-escape-sequence-processing.c:844:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/libuv1-1.40.0/test/test-tty-escape-sequence-processing.c:918:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/libuv1-1.40.0/test/test-tty-escape-sequence-processing.c:991:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/libuv1-1.40.0/test/test-tty-escape-sequence-processing.c:1049:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/libuv1-1.40.0/test/test-tty-escape-sequence-processing.c:1244:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/libuv1-1.40.0/test/test-tty-escape-sequence-processing.c:1302:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/libuv1-1.40.0/test/test-tty-escape-sequence-processing.c:1347:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[1024]; data/libuv1-1.40.0/test/test-tty.c:74:14: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). ttyin_fd = open("/dev/tty", O_RDONLY, 0); data/libuv1-1.40.0/test/test-tty.c:81:15: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). ttyout_fd = open("/dev/tty", O_WRONLY, 0); data/libuv1-1.40.0/test/test-tty.c:226:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dummy[1]; data/libuv1-1.40.0/test/test-tty.c:272:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dummy[10000]; data/libuv1-1.40.0/test/test-tty.c:359:8: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open("test/fixtures/empty_file", O_RDONLY); data/libuv1-1.40.0/test/test-tty.c:369:8: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open("/dev/random", O_RDONLY); data/libuv1-1.40.0/test/test-tty.c:376:8: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open("/dev/zero", O_RDONLY); data/libuv1-1.40.0/test/test-tty.c:382:8: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open("/dev/tty", O_RDWR); data/libuv1-1.40.0/test/test-tty.c:393:8: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open("/dev/tty", O_RDONLY); data/libuv1-1.40.0/test/test-tty.c:404:8: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fd = open("/dev/tty", O_WRONLY); data/libuv1-1.40.0/test/test-udp-alloc-cb-fail.c:47:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char slab[65536]; data/libuv1-1.40.0/test/test-udp-connect.c:46:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char slab[65536]; data/libuv1-1.40.0/test/test-udp-dgram-too-big.c:60:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dgram[65536]; /* 64K MTU is unlikely, even on localhost */ data/libuv1-1.40.0/test/test-udp-ipv6.c:44:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char data[10]; data/libuv1-1.40.0/test/test-udp-ipv6.c:68:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char slab[65536]; data/libuv1-1.40.0/test/test-udp-ipv6.c:90:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst[256]; data/libuv1-1.40.0/test/test-udp-ipv6.c:151:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dst[256]; data/libuv1-1.40.0/test/test-udp-multicast-join.c:48:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char slab[65536]; data/libuv1-1.40.0/test/test-udp-multicast-join.c:121:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char source_addr[64]; data/libuv1-1.40.0/test/test-udp-multicast-join6.c:60:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char slab[65536]; data/libuv1-1.40.0/test/test-udp-multicast-join6.c:133:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char source_addr[64]; data/libuv1-1.40.0/test/test-udp-open.c:86:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char slab[65536]; data/libuv1-1.40.0/test/test-udp-open.c:319:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(addr.sun_path, TEST_PIPENAME, strlen(TEST_PIPENAME)); data/libuv1-1.40.0/test/test-udp-send-and-recv.c:47:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char slab[65536]; data/libuv1-1.40.0/test/test-udp-send-hang-loop.c:37:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char send_data[1024]; data/libuv1-1.40.0/test/test-udp-send-immediate.c:43:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char slab[65536]; data/libuv1-1.40.0/test/test-udp-send-unreachable.c:45:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char slab[65536]; data/libuv1-1.40.0/test/test-udp-try-send.c:43:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char slab[65536]; data/libuv1-1.40.0/test/test-udp-try-send.c:83:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buffer[64 * 1024]; data/libuv1-1.40.0/test/test-uname.c:35:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp[256]; data/libuv1-1.40.0/test/test-watcher-cross-stop.c:37:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char slab[1]; data/libuv1-1.40.0/test/test-watcher-cross-stop.c:75:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char big_string[1024]; data/libuv1-1.40.0/docs/code/cgi/main.c:21:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(path + (strlen(path) - strlen("cgi")), "tick"); data/libuv1-1.40.0/docs/code/cgi/main.c:21:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(path + (strlen(path) - strlen("cgi")), "tick"); data/libuv1-1.40.0/docs/code/dns/main.c:25:5: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(data, buf->base, nread); data/libuv1-1.40.0/docs/code/multi-echo-server/main.c:54:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(worker_path + (strlen(worker_path) - strlen("multi-echo-server")), "worker"); data/libuv1-1.40.0/docs/code/multi-echo-server/main.c:54:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(worker_path + (strlen(worker_path) - strlen("multi-echo-server")), "worker"); data/libuv1-1.40.0/docs/code/proc-streams/main.c:22:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(path + (strlen(path) - strlen("proc-streams")), "test"); data/libuv1-1.40.0/docs/code/proc-streams/main.c:22:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(path + (strlen(path) - strlen("proc-streams")), "test"); data/libuv1-1.40.0/docs/code/tty-gravity/main.c:21:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (unsigned long) (width-strlen(message))/2, data/libuv1-1.40.0/docs/code/tty/main.c:18:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buf.len = strlen(buf.base); data/libuv1-1.40.0/docs/code/tty/main.c:25:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buf.len = strlen(buf.base); data/libuv1-1.40.0/src/fs-poll.c:79:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(path); data/libuv1-1.40.0/src/fs-poll.c:150:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). required_len = strlen(ctx->path); data/libuv1-1.40.0/src/inet.c:135:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). tp += strlen(tp); data/libuv1-1.40.0/src/unix/aix-common.c:72:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cached_len = strlen(original_exepath); data/libuv1-1.40.0/src/unix/aix.c:500:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(tmp); data/libuv1-1.40.0/src/unix/aix.c:537:3: [1] (buffer) strncat: Easily used incorrectly (e.g., incorrectly computing the correct maximum size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf, or automatically resizing strings. strncat(cmd, filename, (p - filename)); data/libuv1-1.40.0/src/unix/aix.c:567:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((strlen(mon_file) + strlen(filename) + 5) > PATH_MAX) data/libuv1-1.40.0/src/unix/aix.c:567:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ((strlen(mon_file) + strlen(filename) + 5) > PATH_MAX) data/libuv1-1.40.0/src/unix/aix.c:602:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). rc = write(*fd, mon_file_write_string, strlen(mon_file_write_string)+1); data/libuv1-1.40.0/src/unix/aix.c:653:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strncmp(buf, "BUF_WRAP", strlen("BUF_WRAP")) == 0) { data/libuv1-1.40.0/src/unix/aix.c:901:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size += strlen(argv[i]) + 1; data/libuv1-1.40.0/src/unix/aix.c:914:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen(argv[i]) + 1; data/libuv1-1.40.0/src/unix/aix.c:972:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(process_argv[0]); data/libuv1-1.40.0/src/unix/aix.c:1007:7: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (read(fd, &psinfo, sizeof(psinfo)) == sizeof(psinfo)) { data/libuv1-1.40.0/src/unix/android-ifaddrs.c:407:17: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(l_name, l_rtaData, l_rtaDataSize); data/libuv1-1.40.0/src/unix/android-ifaddrs.c:560:17: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(l_name, l_rtaData, l_rtaDataSize); data/libuv1-1.40.0/src/unix/async.c:132:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). r = read(w->fd, buf, sizeof(buf)); data/libuv1-1.40.0/src/unix/bsd-proctitle.c:83:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(process_title) + 1; data/libuv1-1.40.0/src/unix/core.c:731:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *size = strlen(buffer); data/libuv1-1.40.0/src/unix/core.c:1079:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(pwd.homedir); data/libuv1-1.40.0/src/unix/core.c:1126:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(buf); data/libuv1-1.40.0/src/unix/core.c:1197:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). name_size = strlen(pw.pw_name) + 1; data/libuv1-1.40.0/src/unix/core.c:1198:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). homedir_size = strlen(pw.pw_dir) + 1; data/libuv1-1.40.0/src/unix/core.c:1199:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). shell_size = strlen(pw.pw_shell) + 1; data/libuv1-1.40.0/src/unix/core.c:1323:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(var); data/libuv1-1.40.0/src/unix/core.c:1376:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(buf); data/libuv1-1.40.0/src/unix/core.c:1564:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). abspath_size = strlen(abspath); data/libuv1-1.40.0/src/unix/core.c:1594:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). abspath_size = strlen(abspath); data/libuv1-1.40.0/src/unix/darwin-proctitle.c:41:3: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(namebuf, name, sizeof(namebuf) - 1); data/libuv1-1.40.0/src/unix/darwin.c:94:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). abspath_size = strlen(abspath); data/libuv1-1.40.0/src/unix/fs.c:133:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). path_len = strlen(path) + 1; \ data/libuv1-1.40.0/src/unix/fs.c:134:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). new_path_len = strlen(new_path) + 1; \ data/libuv1-1.40.0/src/unix/fs.c:303:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). path_length = strlen(path); data/libuv1-1.40.0/src/unix/fs.c:454:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). result = read(req->file, req->bufs[0].base, req->bufs[0].len); data/libuv1-1.40.0/src/unix/fs.c:841:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). nread = read(in_fd, buf, buflen); data/libuv1-1.40.0/src/unix/fsevents.c:256:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(path); data/libuv1-1.40.0/src/unix/fsevents.c:825:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). handle->realpath_len = strlen(handle->realpath); data/libuv1-1.40.0/src/unix/getaddrinfo.c:166:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hostname + strlen(hostname), data/libuv1-1.40.0/src/unix/getaddrinfo.c:175:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). hostname_len = hostname ? strlen(hostname) + 1 : 0; data/libuv1-1.40.0/src/unix/getaddrinfo.c:176:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). service_len = service ? strlen(service) + 1 : 0; data/libuv1-1.40.0/src/unix/ibmi.c:167:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). srclen = strlen(src); data/libuv1-1.40.0/src/unix/linux-core.c:565:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). n = read(fd, buf, sizeof(buf) - 1); data/libuv1-1.40.0/src/unix/linux-core.c:750:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). model = uv__strndup(model, strlen(model) - 1); /* Strip newline. */ data/libuv1-1.40.0/src/unix/linux-core.c:769:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). model = uv__strndup(model, strlen(model) - 1); /* Strip newline. */ data/libuv1-1.40.0/src/unix/linux-core.c:800:41: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). model = uv__strndup(inferred_model, strlen(inferred_model)); data/libuv1-1.40.0/src/unix/linux-core.c:991:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t namelen = strlen(ent->ifa_name); data/libuv1-1.40.0/src/unix/linux-core.c:1039:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). n = read(fd, buf, len - 1); data/libuv1-1.40.0/src/unix/linux-core.c:1067:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(what); data/libuv1-1.40.0/src/unix/linux-inotify.c:183:14: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). size = read(loop->inotify_fd, buf, sizeof(buf)); data/libuv1-1.40.0/src/unix/linux-inotify.c:283:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(path) + 1; data/libuv1-1.40.0/src/unix/netbsd.c:94:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *size = strlen(buffer); data/libuv1-1.40.0/src/unix/openbsd.c:98:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). exepath_size = strlen(argsbuf[0]); data/libuv1-1.40.0/src/unix/os390-syscalls.c:437:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(path); data/libuv1-1.40.0/src/unix/os390-syscalls.c:451:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (read(fd, &v, sizeof(v)) != sizeof(v)) data/libuv1-1.40.0/src/unix/os390-syscalls.c:535:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). plen = strlen(delimiter); data/libuv1-1.40.0/src/unix/os390-syscalls.c:536:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). vlen = strlen(realpathstr); data/libuv1-1.40.0/src/unix/pipe.c:265:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). addrlen = strlen(sa.sun_path); data/libuv1-1.40.0/src/unix/process.c:511:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). r = read(signal_pipe[0], &exec_errorno, sizeof(exec_errorno)); data/libuv1-1.40.0/src/unix/proctitle.c:57:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). pt.len = strlen(argv[0]); data/libuv1-1.40.0/src/unix/proctitle.c:63:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size += strlen(argv[i]) + 1; data/libuv1-1.40.0/src/unix/proctitle.c:79:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = strlen(argv[i]) + 1; data/libuv1-1.40.0/src/unix/proctitle.c:108:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(title); data/libuv1-1.40.0/src/unix/qnx.c:65:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *size = strlen(buffer); data/libuv1-1.40.0/src/unix/random-devurandom.c:55:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). n = read(fd, (char*) buf + pos, buflen - pos); data/libuv1-1.40.0/src/unix/signal.c:121:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). r = read(uv__signal_lock_pipefd[0], &data, sizeof data); data/libuv1-1.40.0/src/unix/signal.c:429:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). r = read(loop->signal_pipefd[0], buf + bytes, sizeof(buf) - bytes); data/libuv1-1.40.0/src/unix/stream.c:199:13: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). r = read(s->int_fd, buf, sizeof(buf)); data/libuv1-1.40.0/src/unix/stream.c:1155:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). nread = read(uv__stream_fd(stream), buf.base, buf.len); data/libuv1-1.40.0/src/unix/sunos.c:606:7: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (read(fd, &psinfo, sizeof(psinfo)) == sizeof(psinfo)) { data/libuv1-1.40.0/src/uv-common.c:56:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t len = strlen(s) + 1; data/libuv1-1.40.0/src/uv-common.c:65:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t len = strlen(s); data/libuv1-1.40.0/src/uv-common.c:600:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). required_len = strlen(handle->path); data/libuv1-1.40.0/src/win/fs-event.c:70:24: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t filenamelen = wcslen(filename); data/libuv1-1.40.0/src/win/fs-event.c:71:19: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t dirlen = wcslen(dir); data/libuv1-1.40.0/src/win/fs-event.c:79:3: [1] (buffer) wcsncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). wcsncpy(*relpath, filename + dirlen + 1, relpathlen); data/libuv1-1.40.0/src/win/fs-event.c:95:9: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = wcslen(filename); data/libuv1-1.40.0/src/win/fs-event.c:124:7: [1] (buffer) wcsncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). wcsncpy(*dir, filename, i + 1); data/libuv1-1.40.0/src/win/fs-event.c:132:5: [1] (buffer) wcsncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). wcsncpy(*file, filename + i + 1, len - i - 1); data/libuv1-1.40.0/src/win/fs-event.c:413:13: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). str_len = wcslen(str); data/libuv1-1.40.0/src/win/fs-event.c:482:22: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size = wcslen(handle->dirw) + data/libuv1-1.40.0/src/win/fs.c:175:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). path_len = 1 + strlen(path); data/libuv1-1.40.0/src/win/fs.c:418:13: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = wcslen(w_target); data/libuv1-1.40.0/src/win/fs.c:425:20: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). w_target_len = wcslen(w_target); data/libuv1-1.40.0/src/win/fs.c:482:19: [1] (access) umask: Ensure that umask is given most restrictive possible setting (e.g., 066 or 077) (CWE-732). current_umask = umask(0); data/libuv1-1.40.0/src/win/fs.c:483:3: [1] (access) umask: Ensure that umask is given most restrictive possible setting (e.g., 066 or 077) (CWE-732). umask(current_umask); data/libuv1-1.40.0/src/win/fs.c:1247:9: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = wcslen(req->file.pathw); data/libuv1-1.40.0/src/win/fs.c:1269:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(path); data/libuv1-1.40.0/src/win/fs.c:1592:9: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = wcslen(pathw); data/libuv1-1.40.0/src/win/fs.c:1843:16: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t len = wcslen(pathw); data/libuv1-1.40.0/src/win/fs.c:2381:16: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). target_len = wcslen(path); data/libuv1-1.40.0/src/win/fs.c:2416:3: [1] (buffer) wcsncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). wcsncpy((WCHAR*)&path_buf[path_buf_len], JUNCTION_PREFIX, data/libuv1-1.40.0/src/win/fs.c:2791:14: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). XX(READ, read) data/libuv1-1.40.0/src/win/getaddrinfo.c:284:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). node + strlen(node), data/libuv1-1.40.0/src/win/process.c:202:3: [1] (buffer) wcsncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). wcsncpy(result_pos, cwd, cwd_len); data/libuv1-1.40.0/src/win/process.c:212:3: [1] (buffer) wcsncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). wcsncpy(result_pos, dir, dir_len); data/libuv1-1.40.0/src/win/process.c:222:3: [1] (buffer) wcsncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). wcsncpy(result_pos, name, name_len); data/libuv1-1.40.0/src/win/process.c:233:5: [1] (buffer) wcsncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). wcsncpy(result_pos, ext, ext_len); data/libuv1-1.40.0/src/win/process.c:351:21: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t file_len = wcslen(file); data/libuv1-1.40.0/src/win/process.c:352:20: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t cwd_len = wcslen(cwd); data/libuv1-1.40.0/src/win/process.c:454:16: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t len = wcslen(source); data/libuv1-1.40.0/src/win/process.c:468:5: [1] (buffer) wcsncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). wcsncpy(target, source, len); data/libuv1-1.40.0/src/win/process.c:479:5: [1] (buffer) wcsncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). wcsncpy(target, source, len); data/libuv1-1.40.0/src/win/process.c:808:13: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = wcslen(*ptr_copy) + 1; data/libuv1-1.40.0/src/win/process.c:832:43: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (; env != NULL && *env != 0; env += wcslen(env) + 1) { data/libuv1-1.40.0/src/win/req-inl.h:159:40: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DELEGATE_STREAM_REQ(loop, req, read, data); data/libuv1-1.40.0/src/win/util.c:476:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(process_title) + 1; data/libuv1-1.40.0/src/win/util.c:1181:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(pwd.homedir); data/libuv1-1.40.0/src/win/util.c:1460:51: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (penv = env, i = 0; *penv != L'\0'; penv += wcslen(penv) + 1, i++); data/libuv1-1.40.0/src/win/util.c:1495:13: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). penv += wcslen(penv) + 1; data/libuv1-1.40.0/src/win/util.c:1679:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(buf); data/libuv1-1.40.0/test/run-tests.c:210:26: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ASSERT(sizeof(fd) == read(0, &fd, sizeof(fd))); data/libuv1-1.40.0/test/runner-unix.c:164:10: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). rc = read(pipefd[0], &n, 1); data/libuv1-1.40.0/test/runner-win.c:244:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). DWORD read; data/libuv1-1.40.0/test/runner-win.c:263:56: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (!ReadFile(p->stdio_out, buffer, buffer_len - 1, &read, &overlapped)) data/libuv1-1.40.0/test/runner-win.c:266:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). start = read; data/libuv1-1.40.0/test/runner.c:152:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). reason_length = strlen(reason); data/libuv1-1.40.0/test/runner.c:309:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(errmsg) > 0) data/libuv1-1.40.0/test/test-env-vars.c:98:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ASSERT(strlen(buf) == 0); data/libuv1-1.40.0/test/test-env-vars.c:126:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ASSERT(strlen(envitems[i].value) == 0); data/libuv1-1.40.0/test/test-fork.c:54:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). cnt = read(socket_cb_read_fd, socket_cb_read_buf, socket_cb_read_size); data/libuv1-1.40.0/test/test-fork.c:202:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ASSERT(1 == read(sync_pipe[0], sync_buf, 1)); /* wait for parent */ data/libuv1-1.40.0/test/test-fork.c:252:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ASSERT(1 == read(sync_pipe[0], sync_buf, 1)); /* wait for child */ data/libuv1-1.40.0/test/test-fork.c:305:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ASSERT(1 == read(sync_pipe[0], sync_buf, 1)); /* wait for child */ data/libuv1-1.40.0/test/test-fork.c:332:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). r = read(sync_pipe2[0], sync_buf, 1); data/libuv1-1.40.0/test/test-fs-event.c:759:3: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(path + sizeof("\\\\?\\") - 1, sys_drive, 1); data/libuv1-1.40.0/test/test-fs-event.c:1034:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ASSERT(len == strlen(watch_dir[i]) + 1); data/libuv1-1.40.0/test/test-fs-event.c:1037:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ASSERT(len == strlen(watch_dir[i])); data/libuv1-1.40.0/test/test-fs.c:529:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ASSERT(strlen(req->path) == 15); data/libuv1-1.40.0/test/test-fs.c:555:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ASSERT(strlen(req->path) == 16); data/libuv1-1.40.0/test/test-fs.c:1292:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ASSERT_EQ(0, strlen(mkstemp_req3.path)); data/libuv1-1.40.0/test/test-fs.c:2219:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). test_dir_abs_size += strlen("\\test_dir\\"); data/libuv1-1.40.0/test/test-fs.c:2224:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). test_dir_abs_size += strlen("/test_dir"); data/libuv1-1.40.0/test/test-fs.c:2251:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ASSERT(((uv_stat_t*)req.ptr)->st_size == strlen(test_dir + 4)); data/libuv1-1.40.0/test/test-fs.c:2255:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ASSERT(((uv_stat_t*)req.ptr)->st_size == strlen("test_dir_symlink")); data/libuv1-1.40.0/test/test-fs.c:2257:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ASSERT(((uv_stat_t*)req.ptr)->st_size == strlen(test_dir)); data/libuv1-1.40.0/test/test-fs.c:2283:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ASSERT(strlen(req.ptr) == test_dir_abs_size - 5); data/libuv1-1.40.0/test/test-fs.c:3373:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). filler_len = strlen(filler); data/libuv1-1.40.0/test/test-fs.c:3570:16: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). result = read(ctx->fd, data, nbytes); data/libuv1-1.40.0/test/test-get-currentexe.c:60:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ASSERT(size == strlen(buffer)); data/libuv1-1.40.0/test/test-get-currentexe.c:104:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ASSERT_EQ(size, strlen(buffer)); data/libuv1-1.40.0/test/test-get-passwd.c:39:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(pwd.username); data/libuv1-1.40.0/test/test-get-passwd.c:45:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(pwd.shell); data/libuv1-1.40.0/test/test-get-passwd.c:51:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(pwd.homedir); data/libuv1-1.40.0/test/test-gethostname.c:54:30: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ASSERT(size > 0 && size == strlen(buf)); data/libuv1-1.40.0/test/test-homedir.c:37:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ASSERT(strlen(homedir) == 0); data/libuv1-1.40.0/test/test-homedir.c:40:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ASSERT(strlen(homedir) == len); data/libuv1-1.40.0/test/test-idna.c:119:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). n = uv__idna_toascii(d1, d1 + strlen(d1), d2, d2 + sizeof(d2)); \ data/libuv1-1.40.0/test/test-osx-select.c:73:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (i = 0, len = strlen(str); i < len; i++) { data/libuv1-1.40.0/test/test-osx-select.c:127:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (i = 0, len = strlen(str); i < len; i++) { data/libuv1-1.40.0/test/test-pipe-close-stdout-read-stdin.c:69:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). r = read(fd[0], &buf, 1); data/libuv1-1.40.0/test/test-poll.c:61:10: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). size_t read, sent; data/libuv1-1.40.0/test/test-process-title-threadsafe.c:55:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(buffer); data/libuv1-1.40.0/test/test-spawn.c:1184:34: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). test_output[i] = calloc(2 * (wcslen(test_str[i]) + 2), sizeof(WCHAR)); data/libuv1-1.40.0/test/test-spawn.c:1188:19: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). total_size += wcslen(test_output[i]) + 1; data/libuv1-1.40.0/test/test-spawn.c:1194:5: [1] (buffer) wcscat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Risk is low because the source is a constant character. wcscat(command_line, L" "); data/libuv1-1.40.0/test/test-spawn.c:1298:27: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t name_len = wcslen(from_env[i]); data/libuv1-1.40.0/test/test-spawn.c:1311:57: [1] (buffer) wcslen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (str = env, prev = NULL; *str; prev = str, str += wcslen(str) + 1) { data/libuv1-1.40.0/test/test-spawn.c:1703:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (len = strlen(exepath); data/libuv1-1.40.0/test/test-spawn.c:1716:7: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(path, ":"); data/libuv1-1.40.0/test/test-spawn.c:1898:11: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). r = read(0, buf, sizeof buf); data/libuv1-1.40.0/test/test-stdio-over-pipes.c:250:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buf[i] = uv_buf_init((char*) buffers[i], strlen(buffers[i])); data/libuv1-1.40.0/test/test-tmpdir.c:39:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ASSERT(strlen(tmpdir) == 0); data/libuv1-1.40.0/test/test-tmpdir.c:42:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ASSERT(strlen(tmpdir) == len); data/libuv1-1.40.0/test/test-tty-duplicate-key.c:167:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). expect_nread = strlen(expect_str); data/libuv1-1.40.0/test/test-tty-duplicate-key.c:221:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). expect_nread = strlen(expect_str); data/libuv1-1.40.0/test/test-tty-duplicate-key.c:287:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). expect_nread = strlen(expect_str); data/libuv1-1.40.0/test/test-tty-escape-sequence-processing.c:165:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buf.len = strlen(buf.base); data/libuv1-1.40.0/test/test-tty-escape-sequence-processing.c:278:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t length = strlen(text); data/libuv1-1.40.0/test/test-tty-escape-sequence-processing.c:1089:54: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). make_expect_screen_set_attr(&expect, cursor_pos, strlen(HELLO), attr); data/libuv1-1.40.0/test/test-tty-escape-sequence-processing.c:1108:54: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). make_expect_screen_set_attr(&expect, cursor_pos, strlen(HELLO), attr); data/libuv1-1.40.0/test/test-tty-escape-sequence-processing.c:1129:54: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). make_expect_screen_set_attr(&expect, cursor_pos, strlen(HELLO), attr); data/libuv1-1.40.0/test/test-tty-escape-sequence-processing.c:1154:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). make_expect_screen_set_attr(&expect, cursor_pos, strlen(HELLO), attr); data/libuv1-1.40.0/test/test-tty-escape-sequence-processing.c:1155:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cursor_pos.X += strlen(HELLO); data/libuv1-1.40.0/test/test-tty-escape-sequence-processing.c:1157:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). make_expect_screen_set_attr(&expect, cursor_pos, strlen(HELLO), attr); data/libuv1-1.40.0/test/test-tty-escape-sequence-processing.c:1185:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). make_expect_screen_set_attr(&expect, cursor_pos, strlen(HELLO), attr); data/libuv1-1.40.0/test/test-tty-escape-sequence-processing.c:1213:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). make_expect_screen_set_attr(&expect, cursor_pos, strlen(HELLO), attr); data/libuv1-1.40.0/test/test-tty-escape-sequence-processing.c:1214:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cursor_pos.X += strlen(HELLO); data/libuv1-1.40.0/test/test-tty-escape-sequence-processing.c:1361:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cursor_pos.X += strlen(HELLO); data/libuv1-1.40.0/test/test-tty-escape-sequence-processing.c:1374:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cursor_pos.X += strlen(HELLO); data/libuv1-1.40.0/test/test-tty-escape-sequence-processing.c:1387:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cursor_pos.X += strlen(HELLO); data/libuv1-1.40.0/test/test-tty-escape-sequence-processing.c:1409:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cursor_pos.X += strlen(HELLO); data/libuv1-1.40.0/test/test-tty-escape-sequence-processing.c:1411:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cursor_pos.X += strlen(HELLO); data/libuv1-1.40.0/test/test-tty-escape-sequence-processing.c:1423:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cursor_pos.X += strlen(HELLO); data/libuv1-1.40.0/test/test-tty-escape-sequence-processing.c:1493:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cursor_pos.X += strlen(HELLO); data/libuv1-1.40.0/test/test-udp-open.c:318:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ASSERT(strlen(TEST_PIPENAME) < sizeof(addr.sun_path)); data/libuv1-1.40.0/test/test-udp-open.c:319:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). memcpy(addr.sun_path, TEST_PIPENAME, strlen(TEST_PIPENAME)); ANALYSIS SUMMARY: Hits = 799 Lines analyzed = 100679 in approximately 2.43 seconds (41428 lines/second) Physical Source Lines of Code (SLOC) = 68924 Hits@level = [0] 533 [1] 196 [2] 471 [3] 56 [4] 64 [5] 12 Hits@level+ = [0+] 1332 [1+] 799 [2+] 603 [3+] 132 [4+] 76 [5+] 12 Hits/KSLOC@level+ = [0+] 19.3256 [1+] 11.5925 [2+] 8.74877 [3+] 1.91515 [4+] 1.10266 [5+] 0.174105 Dot directories skipped = 2 (--followdotdir overrides) Minimum risk level = 1 Not every hit is necessarily a security vulnerability. There may be other security vulnerabilities; review your code! See 'Secure Programming HOWTO' (https://dwheeler.com/secure-programs) for more information.