Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/neuron-7.6.3/share/lib/python/neuron/crxd/geometry3d/ctng.cpp
Examining data/neuron-7.6.3/share/lib/python/neuron/crxd/geometry3d/graphicsPrimitives.cpp
Examining data/neuron-7.6.3/share/lib/python/neuron/crxd/geometry3d/llgramarea.c
Examining data/neuron-7.6.3/share/lib/python/neuron/crxd/geometry3d/marching_cubes2.c
Examining data/neuron-7.6.3/share/lib/python/neuron/crxd/geometry3d/surfaces.cpp
Examining data/neuron-7.6.3/share/lib/python/neuron/rxd/geometry3d/ctng.cpp
Examining data/neuron-7.6.3/share/lib/python/neuron/rxd/geometry3d/graphicsPrimitives.cpp
Examining data/neuron-7.6.3/share/lib/python/neuron/rxd/geometry3d/llgramarea.c
Examining data/neuron-7.6.3/share/lib/python/neuron/rxd/geometry3d/marching_cubes2.c
Examining data/neuron-7.6.3/share/lib/python/neuron/rxd/geometry3d/surfaces.cpp
Examining data/neuron-7.6.3/src/Random123/aes.h
Examining data/neuron-7.6.3/src/Random123/array.h
Examining data/neuron-7.6.3/src/Random123/ars.h
Examining data/neuron-7.6.3/src/Random123/features/clangfeatures.h
Examining data/neuron-7.6.3/src/Random123/features/compilerfeatures.h
Examining data/neuron-7.6.3/src/Random123/features/crayfeatures.h
Examining data/neuron-7.6.3/src/Random123/features/fujitsufeatures.h
Examining data/neuron-7.6.3/src/Random123/features/gccfeatures.h
Examining data/neuron-7.6.3/src/Random123/features/iccfeatures.h
Examining data/neuron-7.6.3/src/Random123/features/llvmfeatures.h
Examining data/neuron-7.6.3/src/Random123/features/msvcfeatures.h
Examining data/neuron-7.6.3/src/Random123/features/nvccfeatures.h
Examining data/neuron-7.6.3/src/Random123/features/open64features.h
Examining data/neuron-7.6.3/src/Random123/features/openclfeatures.h
Examining data/neuron-7.6.3/src/Random123/features/pgccfeatures.h
Examining data/neuron-7.6.3/src/Random123/features/sse.h
Examining data/neuron-7.6.3/src/Random123/features/sunprofeatures.h
Examining data/neuron-7.6.3/src/Random123/features/xlcfeatures.h
Examining data/neuron-7.6.3/src/Random123/philox.h
Examining data/neuron-7.6.3/src/Random123/threefry.h
Examining data/neuron-7.6.3/src/gnu/ACG.cpp
Examining data/neuron-7.6.3/src/gnu/ACG.h
Examining data/neuron-7.6.3/src/gnu/Binomial.cpp
Examining data/neuron-7.6.3/src/gnu/Binomial.h
Examining data/neuron-7.6.3/src/gnu/Complex.cpp
Examining data/neuron-7.6.3/src/gnu/Complex.h
Examining data/neuron-7.6.3/src/gnu/DiscUnif.cpp
Examining data/neuron-7.6.3/src/gnu/DiscUnif.h
Examining data/neuron-7.6.3/src/gnu/Erlang.cpp
Examining data/neuron-7.6.3/src/gnu/Erlang.h
Examining data/neuron-7.6.3/src/gnu/Geom.cpp
Examining data/neuron-7.6.3/src/gnu/Geom.h
Examining data/neuron-7.6.3/src/gnu/HypGeom.cpp
Examining data/neuron-7.6.3/src/gnu/HypGeom.h
Examining data/neuron-7.6.3/src/gnu/LogNorm.cpp
Examining data/neuron-7.6.3/src/gnu/LogNorm.h
Examining data/neuron-7.6.3/src/gnu/MLCG.cpp
Examining data/neuron-7.6.3/src/gnu/MLCG.h
Examining data/neuron-7.6.3/src/gnu/NegExp.cpp
Examining data/neuron-7.6.3/src/gnu/NegExp.h
Examining data/neuron-7.6.3/src/gnu/Normal.cpp
Examining data/neuron-7.6.3/src/gnu/Normal.h
Examining data/neuron-7.6.3/src/gnu/Poisson.cpp
Examining data/neuron-7.6.3/src/gnu/Poisson.h
Examining data/neuron-7.6.3/src/gnu/RNG.cpp
Examining data/neuron-7.6.3/src/gnu/RNG.h
Examining data/neuron-7.6.3/src/gnu/Random.cpp
Examining data/neuron-7.6.3/src/gnu/Random.h
Examining data/neuron-7.6.3/src/gnu/RndInt.cpp
Examining data/neuron-7.6.3/src/gnu/RndInt.h
Examining data/neuron-7.6.3/src/gnu/SmplHist.cpp
Examining data/neuron-7.6.3/src/gnu/SmplHist.h
Examining data/neuron-7.6.3/src/gnu/SmplStat.cpp
Examining data/neuron-7.6.3/src/gnu/SmplStat.h
Examining data/neuron-7.6.3/src/gnu/Uniform.cpp
Examining data/neuron-7.6.3/src/gnu/Uniform.h
Examining data/neuron-7.6.3/src/gnu/Weibull.cpp
Examining data/neuron-7.6.3/src/gnu/Weibull.h
Examining data/neuron-7.6.3/src/gnu/builtin.cpp
Examining data/neuron-7.6.3/src/gnu/d_avec.cpp
Examining data/neuron-7.6.3/src/gnu/d_avec.h
Examining data/neuron-7.6.3/src/gnu/d_defs.h
Examining data/neuron-7.6.3/src/gnu/d_vec.cpp
Examining data/neuron-7.6.3/src/gnu/d_vec.h
Examining data/neuron-7.6.3/src/gnu/neuron_gnu_builtin.h
Examining data/neuron-7.6.3/src/gnu/neuron_gnu_std.h
Examining data/neuron-7.6.3/src/ivoc/apwindow.cpp
Examining data/neuron-7.6.3/src/ivoc/apwindow.h
Examining data/neuron-7.6.3/src/ivoc/axis.cpp
Examining data/neuron-7.6.3/src/ivoc/axis.h
Examining data/neuron-7.6.3/src/ivoc/bimap.hpp
Examining data/neuron-7.6.3/src/ivoc/bndedval.cpp
Examining data/neuron-7.6.3/src/ivoc/bndedval.h
Examining data/neuron-7.6.3/src/ivoc/cbwidget.cpp
Examining data/neuron-7.6.3/src/ivoc/cbwidget.h
Examining data/neuron-7.6.3/src/ivoc/checkpnt.cpp
Examining data/neuron-7.6.3/src/ivoc/checkpnt.h
Examining data/neuron-7.6.3/src/ivoc/classreg.cpp
Examining data/neuron-7.6.3/src/ivoc/datapath.cpp
Examining data/neuron-7.6.3/src/ivoc/datapath.h
Examining data/neuron-7.6.3/src/ivoc/dbrowser.h
Examining data/neuron-7.6.3/src/ivoc/epsprint.cpp
Examining data/neuron-7.6.3/src/ivoc/epsprint.h
Examining data/neuron-7.6.3/src/ivoc/field.cpp
Examining data/neuron-7.6.3/src/ivoc/field.h
Examining data/neuron-7.6.3/src/ivoc/fourier.cpp
Examining data/neuron-7.6.3/src/ivoc/fourier.h
Examining data/neuron-7.6.3/src/ivoc/gifimage.cpp
Examining data/neuron-7.6.3/src/ivoc/graph.cpp
Examining data/neuron-7.6.3/src/ivoc/graph.h
Examining data/neuron-7.6.3/src/ivoc/graphvec.cpp
Examining data/neuron-7.6.3/src/ivoc/grglyph.cpp
Examining data/neuron-7.6.3/src/ivoc/grglyph.h
Examining data/neuron-7.6.3/src/ivoc/grmanip.cpp
Examining data/neuron-7.6.3/src/ivoc/hocmark.cpp
Examining data/neuron-7.6.3/src/ivoc/hocmark.h
Examining data/neuron-7.6.3/src/ivoc/htlist.cpp
Examining data/neuron-7.6.3/src/ivoc/htlist.h
Examining data/neuron-7.6.3/src/ivoc/idraw.cpp
Examining data/neuron-7.6.3/src/ivoc/idraw.h
Examining data/neuron-7.6.3/src/ivoc/ivoc.cpp
Examining data/neuron-7.6.3/src/ivoc/ivoc.h
Examining data/neuron-7.6.3/src/ivoc/ivocconf.h
Examining data/neuron-7.6.3/src/ivoc/ivocmac.cpp
Examining data/neuron-7.6.3/src/ivoc/ivocmain.cpp
Examining data/neuron-7.6.3/src/ivoc/ivocman1.cpp
Examining data/neuron-7.6.3/src/ivoc/ivocrand.cpp
Examining data/neuron-7.6.3/src/ivoc/ivocvect.cpp
Examining data/neuron-7.6.3/src/ivoc/ivocvect.h
Examining data/neuron-7.6.3/src/ivoc/ivocwin.cpp
Examining data/neuron-7.6.3/src/ivoc/macmain.cpp
Examining data/neuron-7.6.3/src/ivoc/matrix.cpp
Examining data/neuron-7.6.3/src/ivoc/mlinedit.cpp
Examining data/neuron-7.6.3/src/ivoc/mymath.cpp
Examining data/neuron-7.6.3/src/ivoc/mymath.h
Examining data/neuron-7.6.3/src/ivoc/nrngsl.h
Examining data/neuron-7.6.3/src/ivoc/nrngsl_hc_radix2.c
Examining data/neuron-7.6.3/src/ivoc/nrngsl_real_radix2.c
Examining data/neuron-7.6.3/src/ivoc/nrnmain.cpp
Examining data/neuron-7.6.3/src/ivoc/nrnmutdec.h
Examining data/neuron-7.6.3/src/ivoc/nrnsymdiritem.h
Examining data/neuron-7.6.3/src/ivoc/objcmd.cpp
Examining data/neuron-7.6.3/src/ivoc/objcmd.h
Examining data/neuron-7.6.3/src/ivoc/oc2iv.cpp
Examining data/neuron-7.6.3/src/ivoc/oc2iv.h
Examining data/neuron-7.6.3/src/ivoc/ocbox.cpp
Parsing failed to find end of parameter list; semicolon terminated it in (buf, "ocbox_.map(\"%s\", %g, %g, %g, %g)\n}",
cp1,
#else
sprintf(buf, "ocbox_.map(\"%s\", %g, %g, %g, %g)\n}",
window()->name(),
#endif
window()->save_left(), window()->save_bottom(),
#if
Examining data/neuron-7.6.3/src/ivoc/ocbox.h
Examining data/neuron-7.6.3/src/ivoc/ocbrowsr.cpp
Examining data/neuron-7.6.3/src/ivoc/ocbrowsr.h
Examining data/neuron-7.6.3/src/ivoc/occlass.h
Examining data/neuron-7.6.3/src/ivoc/ocdeck.cpp
Examining data/neuron-7.6.3/src/ivoc/ocdeck.h
Examining data/neuron-7.6.3/src/ivoc/ocfile.cpp
Examining data/neuron-7.6.3/src/ivoc/ocfile.h
Examining data/neuron-7.6.3/src/ivoc/ocglyph.h
Examining data/neuron-7.6.3/src/ivoc/ochelp.cpp
Examining data/neuron-7.6.3/src/ivoc/ocinput.h
Examining data/neuron-7.6.3/src/ivoc/ocjump.cpp
Examining data/neuron-7.6.3/src/ivoc/ocjump.h
Examining data/neuron-7.6.3/src/ivoc/oclist.cpp
Examining data/neuron-7.6.3/src/ivoc/oclist.h
Examining data/neuron-7.6.3/src/ivoc/ocmatrix.h
Examining data/neuron-7.6.3/src/ivoc/ocnoiv1.cpp
Examining data/neuron-7.6.3/src/ivoc/ocnotify.h
Examining data/neuron-7.6.3/src/ivoc/ocobserv.cpp
Examining data/neuron-7.6.3/src/ivoc/ocobserv.h
Examining data/neuron-7.6.3/src/ivoc/ocpicker.cpp
Examining data/neuron-7.6.3/src/ivoc/ocpicker.h
Examining data/neuron-7.6.3/src/ivoc/ocpointer.cpp
Examining data/neuron-7.6.3/src/ivoc/ocpointer.h
Examining data/neuron-7.6.3/src/ivoc/ocptrvector.cpp
Examining data/neuron-7.6.3/src/ivoc/ocptrvector.h
Examining data/neuron-7.6.3/src/ivoc/octimer.cpp
Examining data/neuron-7.6.3/src/ivoc/pwman.cpp
Examining data/neuron-7.6.3/src/ivoc/random1.h
Examining data/neuron-7.6.3/src/ivoc/rect.cpp
Examining data/neuron-7.6.3/src/ivoc/rect.h
Examining data/neuron-7.6.3/src/ivoc/rubband.cpp
Examining data/neuron-7.6.3/src/ivoc/rubband.h
Examining data/neuron-7.6.3/src/ivoc/scene.cpp
Examining data/neuron-7.6.3/src/ivoc/scenepic.cpp
Examining data/neuron-7.6.3/src/ivoc/scenepic.h
Examining data/neuron-7.6.3/src/ivoc/scenevie.h
Examining data/neuron-7.6.3/src/ivoc/strfun.cpp
Examining data/neuron-7.6.3/src/ivoc/symchoos.cpp
Examining data/neuron-7.6.3/src/ivoc/symchoos.h
Examining data/neuron-7.6.3/src/ivoc/symdir.cpp
Examining data/neuron-7.6.3/src/ivoc/symdir.h
Examining data/neuron-7.6.3/src/ivoc/utility.cpp
Examining data/neuron-7.6.3/src/ivoc/utility.h
Examining data/neuron-7.6.3/src/ivoc/xdep.cpp
Examining data/neuron-7.6.3/src/ivoc/xmenu.cpp
Examining data/neuron-7.6.3/src/ivoc/xmenu.h
Examining data/neuron-7.6.3/src/ivoc/xyview.cpp
Examining data/neuron-7.6.3/src/ivoc/ocmatrix.cpp
Examining data/neuron-7.6.3/src/ivos/InterViews/_defines.h
Examining data/neuron-7.6.3/src/ivos/InterViews/_enter.h
Examining data/neuron-7.6.3/src/ivos/InterViews/_leave.h
Examining data/neuron-7.6.3/src/ivos/InterViews/_names.h
Examining data/neuron-7.6.3/src/ivos/InterViews/_undefs.h
Examining data/neuron-7.6.3/src/ivos/InterViews/coord.h
Examining data/neuron-7.6.3/src/ivos/InterViews/enter-scope.h
Examining data/neuron-7.6.3/src/ivos/InterViews/geometry.h
Examining data/neuron-7.6.3/src/ivos/InterViews/iv.h
Examining data/neuron-7.6.3/src/ivos/InterViews/observe.h
Examining data/neuron-7.6.3/src/ivos/InterViews/regexp.h
Examining data/neuron-7.6.3/src/ivos/InterViews/resource.h
Examining data/neuron-7.6.3/src/ivos/OS/_defines.h
Examining data/neuron-7.6.3/src/ivos/OS/_undefs.h
Examining data/neuron-7.6.3/src/ivos/OS/directory.h
Examining data/neuron-7.6.3/src/ivos/OS/enter-scope.h
Examining data/neuron-7.6.3/src/ivos/OS/file.h
Examining data/neuron-7.6.3/src/ivos/OS/host.h
Examining data/neuron-7.6.3/src/ivos/OS/leave-scope.h
Examining data/neuron-7.6.3/src/ivos/OS/list.h
Examining data/neuron-7.6.3/src/ivos/OS/math.h
Examining data/neuron-7.6.3/src/ivos/OS/memory.h
Examining data/neuron-7.6.3/src/ivos/OS/os.h
Examining data/neuron-7.6.3/src/ivos/OS/string.h
Examining data/neuron-7.6.3/src/ivos/OS/table.h
Examining data/neuron-7.6.3/src/ivos/OS/table2.h
Examining data/neuron-7.6.3/src/ivos/OS/types.h
Examining data/neuron-7.6.3/src/ivos/OS/ustring.h
Examining data/neuron-7.6.3/src/ivos/file.cpp
Examining data/neuron-7.6.3/src/ivos/ivstrm.h
Examining data/neuron-7.6.3/src/ivos/listimpl.cpp
Examining data/neuron-7.6.3/src/ivos/math.cpp
Examining data/neuron-7.6.3/src/ivos/memory.cpp
Examining data/neuron-7.6.3/src/ivos/observe.cpp
Examining data/neuron-7.6.3/src/ivos/regexp.cpp
Examining data/neuron-7.6.3/src/ivos/resource.cpp
Examining data/neuron-7.6.3/src/ivos/string.cpp
Examining data/neuron-7.6.3/src/ivos/ustring.cpp
Examining data/neuron-7.6.3/src/memacs/ansi.c
Examining data/neuron-7.6.3/src/memacs/basic.c
Examining data/neuron-7.6.3/src/memacs/bind.c
Examining data/neuron-7.6.3/src/memacs/buffer.c
Examining data/neuron-7.6.3/src/memacs/display.c
Examining data/neuron-7.6.3/src/memacs/ebind.h
Examining data/neuron-7.6.3/src/memacs/edef.h
Examining data/neuron-7.6.3/src/memacs/efunc.h
Examining data/neuron-7.6.3/src/memacs/epath.h
Examining data/neuron-7.6.3/src/memacs/estruct.h
Examining data/neuron-7.6.3/src/memacs/file.c
Examining data/neuron-7.6.3/src/memacs/fileio.c
Examining data/neuron-7.6.3/src/memacs/ibm.c
Examining data/neuron-7.6.3/src/memacs/intfunc.h
Examining data/neuron-7.6.3/src/memacs/line.c
Examining data/neuron-7.6.3/src/memacs/lock.c
Examining data/neuron-7.6.3/src/memacs/main.c
Examining data/neuron-7.6.3/src/memacs/main1.c
Examining data/neuron-7.6.3/src/memacs/random.c
Examining data/neuron-7.6.3/src/memacs/redef.h
Examining data/neuron-7.6.3/src/memacs/region.c
Examining data/neuron-7.6.3/src/memacs/search.c
Examining data/neuron-7.6.3/src/memacs/spawn.c
Examining data/neuron-7.6.3/src/memacs/tcap.c
Examining data/neuron-7.6.3/src/memacs/termio.c
Examining data/neuron-7.6.3/src/memacs/window.c
Examining data/neuron-7.6.3/src/memacs/word.c
Examining data/neuron-7.6.3/src/mesch/arnoldi.c
Examining data/neuron-7.6.3/src/mesch/bdfactor.c
Examining data/neuron-7.6.3/src/mesch/bkpfacto.c
Examining data/neuron-7.6.3/src/mesch/chfactor.c
Examining data/neuron-7.6.3/src/mesch/conjgrad.c
Examining data/neuron-7.6.3/src/mesch/copy.c
Examining data/neuron-7.6.3/src/mesch/dmacheps.c
Examining data/neuron-7.6.3/src/mesch/err.c
Examining data/neuron-7.6.3/src/mesch/err.h
Examining data/neuron-7.6.3/src/mesch/extras.c
Examining data/neuron-7.6.3/src/mesch/fft.c
Examining data/neuron-7.6.3/src/mesch/givens.c
Examining data/neuron-7.6.3/src/mesch/hessen.c
Examining data/neuron-7.6.3/src/mesch/hsehldr.c
Examining data/neuron-7.6.3/src/mesch/init.c
Examining data/neuron-7.6.3/src/mesch/iter.h
Examining data/neuron-7.6.3/src/mesch/iter0.c
Examining data/neuron-7.6.3/src/mesch/iternsym.c
Examining data/neuron-7.6.3/src/mesch/itersym.c
Examining data/neuron-7.6.3/src/mesch/ivecop.c
Examining data/neuron-7.6.3/src/mesch/lanczos.c
Examining data/neuron-7.6.3/src/mesch/lufactor.c
Examining data/neuron-7.6.3/src/mesch/machine.c
Examining data/neuron-7.6.3/src/mesch/machine.h
Examining data/neuron-7.6.3/src/mesch/matlab.c
Examining data/neuron-7.6.3/src/mesch/matlab.h
Examining data/neuron-7.6.3/src/mesch/matop.c
Examining data/neuron-7.6.3/src/mesch/matrix.h
Examining data/neuron-7.6.3/src/mesch/matrix2.h
Examining data/neuron-7.6.3/src/mesch/matrixio.c
Examining data/neuron-7.6.3/src/mesch/meminfo.c
Examining data/neuron-7.6.3/src/mesch/meminfo.h
Examining data/neuron-7.6.3/src/mesch/memory.c
Examining data/neuron-7.6.3/src/mesch/memstat.c
Examining data/neuron-7.6.3/src/mesch/mfunc.c
Examining data/neuron-7.6.3/src/mesch/norm.c
Examining data/neuron-7.6.3/src/mesch/oldnames.h
Examining data/neuron-7.6.3/src/mesch/otherio.c
Examining data/neuron-7.6.3/src/mesch/pxop.c
Examining data/neuron-7.6.3/src/mesch/qrfactor.c
Examining data/neuron-7.6.3/src/mesch/schur.c
Examining data/neuron-7.6.3/src/mesch/solve.c
Examining data/neuron-7.6.3/src/mesch/sparse.c
Examining data/neuron-7.6.3/src/mesch/sparse.h
Examining data/neuron-7.6.3/src/mesch/sparse2.h
Examining data/neuron-7.6.3/src/mesch/sparseio.c
Examining data/neuron-7.6.3/src/mesch/spbkp.c
Examining data/neuron-7.6.3/src/mesch/spchfctr.c
Examining data/neuron-7.6.3/src/mesch/splufctr.c
Examining data/neuron-7.6.3/src/mesch/sprow.c
Examining data/neuron-7.6.3/src/mesch/spswap.c
Examining data/neuron-7.6.3/src/mesch/submat.c
Examining data/neuron-7.6.3/src/mesch/svd.c
Examining data/neuron-7.6.3/src/mesch/symmeig.c
Examining data/neuron-7.6.3/src/mesch/update.c
Examining data/neuron-7.6.3/src/mesch/vecop.c
Examining data/neuron-7.6.3/src/mesch/version.c
Examining data/neuron-7.6.3/src/mesch/zcopy.c
Examining data/neuron-7.6.3/src/mesch/zfunc.c
Examining data/neuron-7.6.3/src/mesch/zgivens.c
Examining data/neuron-7.6.3/src/mesch/zhessen.c
Examining data/neuron-7.6.3/src/mesch/zhsehldr.c
Examining data/neuron-7.6.3/src/mesch/zlufctr.c
Examining data/neuron-7.6.3/src/mesch/zmachine.c
Examining data/neuron-7.6.3/src/mesch/zmatio.c
Parsing failed to find end of parameter list; semicolon terminated it in (fp," ( %lf , %lf )",
#elif REAL == FLOAT
if ((io_code=fscanf(fp," ( %f , %f )",
#endif
&mat->me[i][j].re,&mat->me[i][j].im)) < 2 )
error(io_code==EOF ? E_EOF : E_FORMAT,"bzm_finput")
Parsing failed to find end of parameter list; semicolon terminated it in (fp," (%lf,%lf)",
#elif REAL == FLOAT
if ((io_code=fscanf(fp," (%f,%f)",
#endif
&vec->ve[i].re,&vec->ve[i].im)) < 2 )
error(io_code==EOF ? 7 : 6,"bzv_finput");
re
Examining data/neuron-7.6.3/src/mesch/zmatlab.c
Examining data/neuron-7.6.3/src/mesch/zmatop.c
Examining data/neuron-7.6.3/src/mesch/zmatrix.h
Examining data/neuron-7.6.3/src/mesch/zmatrix2.h
Examining data/neuron-7.6.3/src/mesch/zmemory.c
Examining data/neuron-7.6.3/src/mesch/znorm.c
Examining data/neuron-7.6.3/src/mesch/zqrfctr.c
Examining data/neuron-7.6.3/src/mesch/zschur.c
Examining data/neuron-7.6.3/src/mesch/zsolve.c
Examining data/neuron-7.6.3/src/mesch/zvecop.c
Examining data/neuron-7.6.3/src/modlunit/carbonmunit.h
Examining data/neuron-7.6.3/src/modlunit/consist.c
Examining data/neuron-7.6.3/src/modlunit/declare.c
Examining data/neuron-7.6.3/src/modlunit/extargs.h
Examining data/neuron-7.6.3/src/modlunit/extdef.h
Examining data/neuron-7.6.3/src/modlunit/init.c
Examining data/neuron-7.6.3/src/modlunit/io.c
Examining data/neuron-7.6.3/src/modlunit/kinunit.c
Examining data/neuron-7.6.3/src/modlunit/lex.c
Examining data/neuron-7.6.3/src/modlunit/list.c
Examining data/neuron-7.6.3/src/modlunit/macmunit.h
Examining data/neuron-7.6.3/src/modlunit/model.c
Examining data/neuron-7.6.3/src/modlunit/model.h
Examining data/neuron-7.6.3/src/modlunit/modlunit.h
Examining data/neuron-7.6.3/src/modlunit/nrnunit.c
Examining data/neuron-7.6.3/src/modlunit/parse1.c
Examining data/neuron-7.6.3/src/modlunit/parse1.h
Examining data/neuron-7.6.3/src/modlunit/passn.c
Examining data/neuron-7.6.3/src/modlunit/symbol.c
Examining data/neuron-7.6.3/src/modlunit/symbol.h
Examining data/neuron-7.6.3/src/modlunit/units.c
Examining data/neuron-7.6.3/src/modlunit/units.h
Examining data/neuron-7.6.3/src/modlunit/units1.c
Examining data/neuron-7.6.3/src/modlunit/version.c
Examining data/neuron-7.6.3/src/mswin/bbsconf.h
Examining data/neuron-7.6.3/src/mswin/extra/bbstest.cpp
Examining data/neuron-7.6.3/src/mswin/extra/d2uenv.c
Examining data/neuron-7.6.3/src/mswin/extra/d2upath.c
Examining data/neuron-7.6.3/src/mswin/extra/dllhead.cpp
Examining data/neuron-7.6.3/src/mswin/extra/hel2mos.cpp
Examining data/neuron-7.6.3/src/mswin/extra/mos2nrn.cpp
Examining data/neuron-7.6.3/src/mswin/extra/ms1.cpp
Examining data/neuron-7.6.3/src/mswin/extra/neuron.cpp
Examining data/neuron-7.6.3/src/mswin/extra/nrnbinstr.cpp
Examining data/neuron-7.6.3/src/mswin/extra/rundemo.cpp
Examining data/neuron-7.6.3/src/mswin/extra/splitnrn.c
Examining data/neuron-7.6.3/src/mswin/extra/winmain.c
Examining data/neuron-7.6.3/src/mswin/mwprefix.h
Examining data/neuron-7.6.3/src/mswin/njconf.h
Examining data/neuron-7.6.3/src/mswin/nrnconf.h
Examining data/neuron-7.6.3/src/mswin/nrnneosm.h
Examining data/neuron-7.6.3/src/mswin/rdln/chardefs.h
Examining data/neuron-7.6.3/src/mswin/rdln/emacs_ke.c
Examining data/neuron-7.6.3/src/mswin/rdln/funmap.c
Examining data/neuron-7.6.3/src/mswin/rdln/history.c
Examining data/neuron-7.6.3/src/mswin/rdln/history.h
Examining data/neuron-7.6.3/src/mswin/rdln/keymaps.c
Examining data/neuron-7.6.3/src/mswin/rdln/keymaps.h
Examining data/neuron-7.6.3/src/mswin/rdln/readline.c
Examining data/neuron-7.6.3/src/mswin/rdln/readline.h
Examining data/neuron-7.6.3/src/mswin/rdln/sysdep.h
Examining data/neuron-7.6.3/src/mswin/windll/coff.h
Examining data/neuron-7.6.3/src/mswin/windll/dll.cpp
Parsing failed to find end of parameter list; semicolon terminated it in (
//#define PRDEBUGFILE "c:/temp.tmp"
#if defined(PRDEBUGFILE)
#undef PRDEBUG
#define PRDEBUG fprintf(prdebug_,
static FILE* prdebug_;
#endif
typedef void (*CDTOR)();
struct Symtab {
Symtab *next
Parsing failed to find end of parameter list; semicolon terminated it in (prdebug_,
static FILE* prdebug_;
#endif
typedef void (*CDTOR)();
struct Symtab {
Symtab *next, *prev;
static Symtab *symtabs;
char **name;
void **value;
int num;
int max;
Symtab();
Examining data/neuron-7.6.3/src/mswin/windll/dll.h
Examining data/neuron-7.6.3/src/mswin/windll/limits.h
Examining data/neuron-7.6.3/src/mswin/windll/nrnmath.h
Examining data/neuron-7.6.3/src/mswin/windll/nrnmech.h
Examining data/neuron-7.6.3/src/mswin/windll/ocmatdll.h
Examining data/neuron-7.6.3/src/mswin/wnrnbbs/ddeclnt.c
Examining data/neuron-7.6.3/src/mswin/wnrnbbs/ddeclnt.h
Examining data/neuron-7.6.3/src/mswin/wnrnbbs/ddesrvr.c
Examining data/neuron-7.6.3/src/mswin/wnrnbbs/ddesrvr.h
Examining data/neuron-7.6.3/src/mswin/wnrnbbs/nrnbbs.cpp
Examining data/neuron-7.6.3/src/mswin/wnrnbbs/nrnbbs.h
Examining data/neuron-7.6.3/src/neuronmusic/neuronmusic.cpp
Examining data/neuron-7.6.3/src/neuronmusic/nrnmusic.h
Examining data/neuron-7.6.3/src/ni_pci_6229/nrn_aiex2.cpp
Examining data/neuron-7.6.3/src/ni_pci_6229/nrn_aoex4.cpp
Examining data/neuron-7.6.3/src/ni_pci_6229/nrndaq.h
Examining data/neuron-7.6.3/src/ni_pci_6229/nrnni.cpp
Examining data/neuron-7.6.3/src/nmodl/carbonnmodl.h
Examining data/neuron-7.6.3/src/nmodl/consist.c
Examining data/neuron-7.6.3/src/nmodl/cout.c
Examining data/neuron-7.6.3/src/nmodl/deriv.c
Examining data/neuron-7.6.3/src/nmodl/difeqdef.h
Examining data/neuron-7.6.3/src/nmodl/diffeq.c
Parsing failed to find end of parameter list; semicolon terminated it in (lbuf[0],
#define b2 sprintf(lbuf[1],
#define b3 sprintf(lbuf[2],
#define b4 sprintf(lbuf[3],
static void replace(), initbuf(), free4();
static int zero();
static char *expr(), *de(), *a(), *b();
sta
Parsing failed to find end of parameter list; semicolon terminated it in (lbuf[1],
#define b3 sprintf(lbuf[2],
#define b4 sprintf(lbuf[3],
static void replace(), initbuf(), free4();
static int zero();
static char *expr(), *de(), *a(), *b();
static List* list4();
#line 10
Parsing failed to find end of parameter list; semicolon terminated it in (lbuf[2],
#define b4 sprintf(lbuf[3],
static void replace(), initbuf(), free4();
static int zero();
static char *expr(), *de(), *a(), *b();
static List* list4();
#line 100 "diffeq.c" /* yacc.c:339
Parsing failed to find end of parameter list; semicolon terminated it in (lbuf[3],
static void replace(), initbuf(), free4();
static int zero();
static char *expr(), *de(), *a(), *b();
static List* list4();
#line 100 "diffeq.c" /* yacc.c:339 */
# ifndef YY_NULLPTR
# i
Examining data/neuron-7.6.3/src/nmodl/diffeq.h
Examining data/neuron-7.6.3/src/nmodl/discrete.c
Examining data/neuron-7.6.3/src/nmodl/extdef.h
Examining data/neuron-7.6.3/src/nmodl/extdef2.h
Examining data/neuron-7.6.3/src/nmodl/extdef5.h
Examining data/neuron-7.6.3/src/nmodl/init.c
Examining data/neuron-7.6.3/src/nmodl/io.c
Examining data/neuron-7.6.3/src/nmodl/kinetic.c
Examining data/neuron-7.6.3/src/nmodl/lex.c
Examining data/neuron-7.6.3/src/nmodl/list.c
Examining data/neuron-7.6.3/src/nmodl/macnmodl.h
Examining data/neuron-7.6.3/src/nmodl/modl.c
Examining data/neuron-7.6.3/src/nmodl/modl.h
Examining data/neuron-7.6.3/src/nmodl/netrec_discon.c
Examining data/neuron-7.6.3/src/nmodl/nmodlfunc.h
Examining data/neuron-7.6.3/src/nmodl/noccout.c
Examining data/neuron-7.6.3/src/nmodl/nocpout.c
Examining data/neuron-7.6.3/src/nmodl/parsact.c
Examining data/neuron-7.6.3/src/nmodl/parse1.c
Examining data/neuron-7.6.3/src/nmodl/parse1.h
Examining data/neuron-7.6.3/src/nmodl/partial.c
Examining data/neuron-7.6.3/src/nmodl/sens.c
Examining data/neuron-7.6.3/src/nmodl/simultan.c
Examining data/neuron-7.6.3/src/nmodl/solve.c
Examining data/neuron-7.6.3/src/nmodl/symbol.c
Examining data/neuron-7.6.3/src/nmodl/symbol.h
Examining data/neuron-7.6.3/src/nmodl/units.c
Examining data/neuron-7.6.3/src/nmodl/version.c
Examining data/neuron-7.6.3/src/nrncvode/bbtqueue.cpp
Examining data/neuron-7.6.3/src/nrncvode/bbtqueue.h
Examining data/neuron-7.6.3/src/nrncvode/cvodeobj.cpp
Examining data/neuron-7.6.3/src/nrncvode/cvodeobj.h
Examining data/neuron-7.6.3/src/nrncvode/cvodestb.cpp
Examining data/neuron-7.6.3/src/nrncvode/cvtrset.cpp
Examining data/neuron-7.6.3/src/nrncvode/hocevent.cpp
Examining data/neuron-7.6.3/src/nrncvode/netcon.h
Examining data/neuron-7.6.3/src/nrncvode/netcvode.cpp
Examining data/neuron-7.6.3/src/nrncvode/netcvode.h
Examining data/neuron-7.6.3/src/nrncvode/nrndaspk.cpp
Examining data/neuron-7.6.3/src/nrncvode/nrndaspk.h
Examining data/neuron-7.6.3/src/nrncvode/occvode.cpp
Examining data/neuron-7.6.3/src/nrncvode/pool.h
Examining data/neuron-7.6.3/src/nrncvode/rbtqueue.cpp
Examining data/neuron-7.6.3/src/nrncvode/rbtqueue.h
Examining data/neuron-7.6.3/src/nrncvode/spaux.c
Examining data/neuron-7.6.3/src/nrncvode/spdaveb.c
Examining data/neuron-7.6.3/src/nrncvode/sptbinq.cpp
Examining data/neuron-7.6.3/src/nrncvode/sptbinq.h
Examining data/neuron-7.6.3/src/nrncvode/sptqueue.cpp
Examining data/neuron-7.6.3/src/nrncvode/sptqueue.h
Examining data/neuron-7.6.3/src/nrncvode/sptree.c
Examining data/neuron-7.6.3/src/nrncvode/sptree.h
Examining data/neuron-7.6.3/src/nrncvode/tqueue.cpp
Examining data/neuron-7.6.3/src/nrncvode/tqueue.h
Examining data/neuron-7.6.3/src/nrncvode/vrecitem.h
Examining data/neuron-7.6.3/src/nrniv/arraypool.h
Examining data/neuron-7.6.3/src/nrniv/bbs.cpp
Examining data/neuron-7.6.3/src/nrniv/bbsavestate.cpp
Examining data/neuron-7.6.3/src/nrniv/bbsavestate.h
Examining data/neuron-7.6.3/src/nrniv/bbsdirect.cpp
Examining data/neuron-7.6.3/src/nrniv/bbslocal.cpp
Examining data/neuron-7.6.3/src/nrniv/bbslsrv.cpp
Examining data/neuron-7.6.3/src/nrniv/bbslsrv2.cpp
Examining data/neuron-7.6.3/src/nrniv/bbsrcli.cpp
Examining data/neuron-7.6.3/src/nrniv/bbssrv.cpp
Examining data/neuron-7.6.3/src/nrniv/bgpdma.cpp
Examining data/neuron-7.6.3/src/nrniv/bgpdmasetup.cpp
Examining data/neuron-7.6.3/src/nrniv/bgpmeminfo.c
Examining data/neuron-7.6.3/src/nrniv/cachevec.cpp
Examining data/neuron-7.6.3/src/nrniv/classreg.cpp
Examining data/neuron-7.6.3/src/nrniv/cvodeobj.cpp
Examining data/neuron-7.6.3/src/nrniv/cvodestb.cpp
Examining data/neuron-7.6.3/src/nrniv/cvtrset.cpp
Examining data/neuron-7.6.3/src/nrniv/cxprop.cpp
Examining data/neuron-7.6.3/src/nrniv/datapath.cpp
Examining data/neuron-7.6.3/src/nrniv/finithnd.cpp
Examining data/neuron-7.6.3/src/nrniv/geometry3d.cpp
Examining data/neuron-7.6.3/src/nrniv/glinerec.cpp
Examining data/neuron-7.6.3/src/nrniv/have2want.cpp
Examining data/neuron-7.6.3/src/nrniv/hocmech.cpp
Examining data/neuron-7.6.3/src/nrniv/impedanc.cpp
Examining data/neuron-7.6.3/src/nrniv/kschan.cpp
Examining data/neuron-7.6.3/src/nrniv/kschan.h
Examining data/neuron-7.6.3/src/nrniv/kssingle.cpp
Examining data/neuron-7.6.3/src/nrniv/kssingle.h
Examining data/neuron-7.6.3/src/nrniv/linmod.cpp
Examining data/neuron-7.6.3/src/nrniv/linmod.h
Examining data/neuron-7.6.3/src/nrniv/linmod1.cpp
Examining data/neuron-7.6.3/src/nrniv/matrixmap.cpp
Examining data/neuron-7.6.3/src/nrniv/matrixmap.h
Examining data/neuron-7.6.3/src/nrniv/multisplit.cpp
Examining data/neuron-7.6.3/src/nrniv/multisplitcontrol.h
Examining data/neuron-7.6.3/src/nrniv/ndatclas.cpp
Examining data/neuron-7.6.3/src/nrniv/ndatclas.h
Examining data/neuron-7.6.3/src/nrniv/netcvode.cpp
Examining data/neuron-7.6.3/src/nrniv/netpar.cpp
Examining data/neuron-7.6.3/src/nrniv/nonlinz.cpp
Examining data/neuron-7.6.3/src/nrniv/nonlinz.h
Examining data/neuron-7.6.3/src/nrniv/nrnbbcore_write.cpp
Examining data/neuron-7.6.3/src/nrniv/nrnbbcore_write.h
Examining data/neuron-7.6.3/src/nrniv/nrnclass.h
Examining data/neuron-7.6.3/src/nrniv/nrndae.cpp
Examining data/neuron-7.6.3/src/nrniv/nrndae.h
Examining data/neuron-7.6.3/src/nrniv/nrndaspk.cpp
Examining data/neuron-7.6.3/src/nrniv/nrnhash.h
Examining data/neuron-7.6.3/src/nrniv/nrnhash_alt.h
Examining data/neuron-7.6.3/src/nrniv/nrnmenu.cpp
Examining data/neuron-7.6.3/src/nrniv/nrnmenu.h
Examining data/neuron-7.6.3/src/nrniv/nrnmusic.cpp
Examining data/neuron-7.6.3/src/nrniv/nrnoc2iv.h
Examining data/neuron-7.6.3/src/nrniv/nrnpy.cpp
Examining data/neuron-7.6.3/src/nrniv/nrnrtime.cpp
Examining data/neuron-7.6.3/src/nrniv/nrnsection_mapping.h
Examining data/neuron-7.6.3/src/nrniv/nrnste.cpp
Examining data/neuron-7.6.3/src/nrniv/nrnste.h
Examining data/neuron-7.6.3/src/nrniv/nvector_nrnparallel_ld.c
Examining data/neuron-7.6.3/src/nrniv/nvector_nrnparallel_ld.h
Examining data/neuron-7.6.3/src/nrniv/nvector_nrnserial_ld.c
Examining data/neuron-7.6.3/src/nrniv/nvector_nrnserial_ld.h
Examining data/neuron-7.6.3/src/nrniv/nvector_nrnthread.c
Examining data/neuron-7.6.3/src/nrniv/nvector_nrnthread.h
Examining data/neuron-7.6.3/src/nrniv/nvector_nrnthread_ld.c
Examining data/neuron-7.6.3/src/nrniv/nvector_nrnthread_ld.h
Examining data/neuron-7.6.3/src/nrniv/nvkludge.cpp
Examining data/neuron-7.6.3/src/nrniv/ocbbs.cpp
Examining data/neuron-7.6.3/src/nrniv/occvode.cpp
Examining data/neuron-7.6.3/src/nrniv/ocjump.cpp
Examining data/neuron-7.6.3/src/nrniv/partrans.cpp
Examining data/neuron-7.6.3/src/nrniv/ppshape.cpp
Examining data/neuron-7.6.3/src/nrniv/ppshape.h
Examining data/neuron-7.6.3/src/nrniv/prcellstate.cpp
Examining data/neuron-7.6.3/src/nrniv/pysecname2sec.cpp
Examining data/neuron-7.6.3/src/nrniv/rot3band.h
Examining data/neuron-7.6.3/src/nrniv/rotate3d.cpp
Examining data/neuron-7.6.3/src/nrniv/rotate3d.h
Examining data/neuron-7.6.3/src/nrniv/savstate.cpp
Examining data/neuron-7.6.3/src/nrniv/secbrows.cpp
Examining data/neuron-7.6.3/src/nrniv/secbrows.h
Examining data/neuron-7.6.3/src/nrniv/shape.cpp
Examining data/neuron-7.6.3/src/nrniv/shape.h
Examining data/neuron-7.6.3/src/nrniv/shapeplt.cpp
Examining data/neuron-7.6.3/src/nrniv/shapeplt.h
Examining data/neuron-7.6.3/src/nrniv/singlech.cpp
Examining data/neuron-7.6.3/src/nrniv/singlech.h
Examining data/neuron-7.6.3/src/nrniv/spaceplt.cpp
Examining data/neuron-7.6.3/src/nrniv/splitcell.cpp
Examining data/neuron-7.6.3/src/nrniv/structpool.h
Examining data/neuron-7.6.3/src/nrniv/symdir.cpp
Examining data/neuron-7.6.3/src/nrniv/tqueue.cpp
Examining data/neuron-7.6.3/src/nrniv/vrecord.cpp
Examining data/neuron-7.6.3/src/nrnjava/njvm.cpp
Examining data/neuron-7.6.3/src/nrnjava/njvm.h
Examining data/neuron-7.6.3/src/nrnjava/nrnjava.cpp
Examining data/neuron-7.6.3/src/nrnjava/nrnjni.cpp
Examining data/neuron-7.6.3/src/nrnmpi/bbsmpipack.c
Examining data/neuron-7.6.3/src/nrnmpi/mpispike.c
Examining data/neuron-7.6.3/src/nrnmpi/mpispike.h
Examining data/neuron-7.6.3/src/nrnmpi/nrnmpi.c
Examining data/neuron-7.6.3/src/nrnmpi/nrnmpi_dynam.c
Examining data/neuron-7.6.3/src/nrnmpi/nrnmpi_dynam_stubs.c
Examining data/neuron-7.6.3/src/nrnmpi/nrnmpi_impl.h
Examining data/neuron-7.6.3/src/nrnmpi/nrnmpidec.h
Examining data/neuron-7.6.3/src/nrnmpi/nrnrt.c
Examining data/neuron-7.6.3/src/nrnoc/apcount.c
Examining data/neuron-7.6.3/src/nrnoc/cabcode.c
Examining data/neuron-7.6.3/src/nrnoc/cabvars.h
Examining data/neuron-7.6.3/src/nrnoc/capac.c
Examining data/neuron-7.6.3/src/nrnoc/clamp.c
Examining data/neuron-7.6.3/src/nrnoc/code.c
Examining data/neuron-7.6.3/src/nrnoc/cprop.c
Examining data/neuron-7.6.3/src/nrnoc/eion.c
Examining data/neuron-7.6.3/src/nrnoc/exp2syn.c
Examining data/neuron-7.6.3/src/nrnoc/expsyn.c
Examining data/neuron-7.6.3/src/nrnoc/extcelln.c
Examining data/neuron-7.6.3/src/nrnoc/fadvance.c
Examining data/neuron-7.6.3/src/nrnoc/feature.c
Examining data/neuron-7.6.3/src/nrnoc/fstim.c
Examining data/neuron-7.6.3/src/nrnoc/hh.c
Examining data/neuron-7.6.3/src/nrnoc/hoc_init.c
Examining data/neuron-7.6.3/src/nrnoc/hoc_oop.c
Examining data/neuron-7.6.3/src/nrnoc/hocprax.c
Examining data/neuron-7.6.3/src/nrnoc/hocusr.c
Examining data/neuron-7.6.3/src/nrnoc/hocusr.h
Examining data/neuron-7.6.3/src/nrnoc/init.c
Examining data/neuron-7.6.3/src/nrnoc/intfire1.c
Examining data/neuron-7.6.3/src/nrnoc/intfire2.c
Examining data/neuron-7.6.3/src/nrnoc/intfire4.c
Examining data/neuron-7.6.3/src/nrnoc/ldifus.c
Examining data/neuron-7.6.3/src/nrnoc/md1redef.h
Examining data/neuron-7.6.3/src/nrnoc/md2redef.h
Examining data/neuron-7.6.3/src/nrnoc/membdef.h
Examining data/neuron-7.6.3/src/nrnoc/membfunc.h
Examining data/neuron-7.6.3/src/nrnoc/method3.c
Examining data/neuron-7.6.3/src/nrnoc/multicore.c
Examining data/neuron-7.6.3/src/nrnoc/multicore.h
Examining data/neuron-7.6.3/src/nrnoc/multisplit.h
Examining data/neuron-7.6.3/src/nrnoc/netstim.c
Examining data/neuron-7.6.3/src/nrnoc/neuron.h
Examining data/neuron-7.6.3/src/nrnoc/nmodlmutex.h
Examining data/neuron-7.6.3/src/nrnoc/nonvintblock.h
Examining data/neuron-7.6.3/src/nrnoc/nrn_ansi.h
Examining data/neuron-7.6.3/src/nrnoc/nrncvode.h
Examining data/neuron-7.6.3/src/nrnoc/nrndae_c.h
Examining data/neuron-7.6.3/src/nrnoc/nrniv_mf.h
Examining data/neuron-7.6.3/src/nrnoc/nrnnemo.c
Examining data/neuron-7.6.3/src/nrnoc/nrnnoiv.c
Examining data/neuron-7.6.3/src/nrnoc/nrnoc_ml.h
Examining data/neuron-7.6.3/src/nrnoc/nrnredef.h
Examining data/neuron-7.6.3/src/nrnoc/nrntimeout.c
Examining data/neuron-7.6.3/src/nrnoc/nrnversion.c
Examining data/neuron-7.6.3/src/nrnoc/nrnversion.h
Examining data/neuron-7.6.3/src/nrnoc/oclmp.c
Examining data/neuron-7.6.3/src/nrnoc/ocmain.c
Examining data/neuron-7.6.3/src/nrnoc/ocnoiv.c
Examining data/neuron-7.6.3/src/nrnoc/options.h
Examining data/neuron-7.6.3/src/nrnoc/osxdlfcn.c
Examining data/neuron-7.6.3/src/nrnoc/osxdlfcn.h
Examining data/neuron-7.6.3/src/nrnoc/passive.c
Examining data/neuron-7.6.3/src/nrnoc/passive0.c
Examining data/neuron-7.6.3/src/nrnoc/pattern.c
Examining data/neuron-7.6.3/src/nrnoc/point.c
Examining data/neuron-7.6.3/src/nrnoc/ppmark.c
Examining data/neuron-7.6.3/src/nrnoc/psection.c
Examining data/neuron-7.6.3/src/nrnoc/seclist.c
Examining data/neuron-7.6.3/src/nrnoc/secref.c
Examining data/neuron-7.6.3/src/nrnoc/section.h
Examining data/neuron-7.6.3/src/nrnoc/solve.c
Examining data/neuron-7.6.3/src/nrnoc/stim.c
Examining data/neuron-7.6.3/src/nrnoc/svclmp.c
Examining data/neuron-7.6.3/src/nrnoc/syn.c
Examining data/neuron-7.6.3/src/nrnoc/synapse.c
Examining data/neuron-7.6.3/src/nrnoc/treeset.c
Examining data/neuron-7.6.3/src/nrnoc/vclmp.c
Examining data/neuron-7.6.3/src/nrnoc/xmech.c
Examining data/neuron-7.6.3/src/nrnpython/grids.c
Examining data/neuron-7.6.3/src/nrnpython/grids.h
Examining data/neuron-7.6.3/src/nrnpython/hoccontext.h
Examining data/neuron-7.6.3/src/nrnpython/inithoc.cpp
Examining data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp
Examining data/neuron-7.6.3/src/nrnpython/nrnpy_hoc_2.h
Examining data/neuron-7.6.3/src/nrnpython/nrnpy_hoc_3.h
Examining data/neuron-7.6.3/src/nrnpython/nrnpy_nrn.cpp
Examining data/neuron-7.6.3/src/nrnpython/nrnpy_nrn_2.h
Examining data/neuron-7.6.3/src/nrnpython/nrnpy_nrn_3.h
Examining data/neuron-7.6.3/src/nrnpython/nrnpy_p2h.cpp
Examining data/neuron-7.6.3/src/nrnpython/nrnpy_reg.h
Examining data/neuron-7.6.3/src/nrnpython/nrnpy_utils.h
Examining data/neuron-7.6.3/src/nrnpython/nrnpython.cpp
Examining data/neuron-7.6.3/src/nrnpython/nrnpython.h
Examining data/neuron-7.6.3/src/nrnpython/nrnwrap_Python.h
Examining data/neuron-7.6.3/src/nrnpython/rxd.c
Examining data/neuron-7.6.3/src/nrnpython/rxd.h
Examining data/neuron-7.6.3/src/nrnpython/rxd_extracellular.c
Examining data/neuron-7.6.3/src/nrnpython/rxd_vol.c
Examining data/neuron-7.6.3/src/nrnpython/rxdmath.c
Examining data/neuron-7.6.3/src/oc/audit.c
Examining data/neuron-7.6.3/src/oc/axis.c
Examining data/neuron-7.6.3/src/oc/bksub.c
Examining data/neuron-7.6.3/src/oc/classreg.h
Examining data/neuron-7.6.3/src/oc/code.c
Examining data/neuron-7.6.3/src/oc/code.h
Examining data/neuron-7.6.3/src/oc/code2.c
Examining data/neuron-7.6.3/src/oc/cygwinprt.c
Examining data/neuron-7.6.3/src/oc/debug.c
Examining data/neuron-7.6.3/src/oc/equation.h
Examining data/neuron-7.6.3/src/oc/fileio.c
Examining data/neuron-7.6.3/src/oc/fmenu.c
Examining data/neuron-7.6.3/src/oc/ftime.c
Examining data/neuron-7.6.3/src/oc/functabl.c
Examining data/neuron-7.6.3/src/oc/getelm.c
Examining data/neuron-7.6.3/src/oc/getsym.c
Examining data/neuron-7.6.3/src/oc/hoc.c
Examining data/neuron-7.6.3/src/oc/hoc.h
Examining data/neuron-7.6.3/src/oc/hoc_init.c
Examining data/neuron-7.6.3/src/oc/hoc_membf.h
Examining data/neuron-7.6.3/src/oc/hoc_oop.c
Examining data/neuron-7.6.3/src/oc/hocassrt.h
Examining data/neuron-7.6.3/src/oc/hocdec.h
Examining data/neuron-7.6.3/src/oc/hocedit.c
Examining data/neuron-7.6.3/src/oc/hocgetsym.h
Examining data/neuron-7.6.3/src/oc/hoclist.h
Examining data/neuron-7.6.3/src/oc/hocmodl.h
Examining data/neuron-7.6.3/src/oc/hocparse.h
Examining data/neuron-7.6.3/src/oc/hocstr.h
Examining data/neuron-7.6.3/src/oc/hocusr.c
Examining data/neuron-7.6.3/src/oc/isaac64.c
Examining data/neuron-7.6.3/src/oc/isaac64.h
Examining data/neuron-7.6.3/src/oc/isoc99.c
Examining data/neuron-7.6.3/src/oc/lineq.c
Examining data/neuron-7.6.3/src/oc/list.c
Examining data/neuron-7.6.3/src/oc/macprt.c
Examining data/neuron-7.6.3/src/oc/math.c
Examining data/neuron-7.6.3/src/oc/mcran4.c
Examining data/neuron-7.6.3/src/oc/mcran4.h
Examining data/neuron-7.6.3/src/oc/modlreg.c
Examining data/neuron-7.6.3/src/oc/mswinprt.c
Examining data/neuron-7.6.3/src/oc/nocable.c
Examining data/neuron-7.6.3/src/oc/nonlin.c
Examining data/neuron-7.6.3/src/oc/nrn_vsscanf.c
Examining data/neuron-7.6.3/src/oc/nrnapi.h
Examining data/neuron-7.6.3/src/oc/nrnfilewrap.c
Examining data/neuron-7.6.3/src/oc/nrnfilewrap.h
Examining data/neuron-7.6.3/src/oc/nrnisaac.c
Examining data/neuron-7.6.3/src/oc/nrnisaac.h
Examining data/neuron-7.6.3/src/oc/nrnjava.h
Examining data/neuron-7.6.3/src/oc/nrnmpi.h
Examining data/neuron-7.6.3/src/oc/nrnmpi_dynam.c
Examining data/neuron-7.6.3/src/oc/nrnpthread.h
Examining data/neuron-7.6.3/src/oc/nrnran123.c
Examining data/neuron-7.6.3/src/oc/nrnran123.h
Examining data/neuron-7.6.3/src/oc/nrnrt.h
Examining data/neuron-7.6.3/src/oc/oc_ansi.h
Examining data/neuron-7.6.3/src/oc/ocerf.c
Examining data/neuron-7.6.3/src/oc/ocfunc.h
Examining data/neuron-7.6.3/src/oc/ockludge.c
Examining data/neuron-7.6.3/src/oc/ocmain.c
Examining data/neuron-7.6.3/src/oc/ocmisc.h
Examining data/neuron-7.6.3/src/oc/ocnoiv.c
Examining data/neuron-7.6.3/src/oc/parallel.c
Examining data/neuron-7.6.3/src/oc/parse.c
Examining data/neuron-7.6.3/src/oc/parse.h
Examining data/neuron-7.6.3/src/oc/plot.c
Examining data/neuron-7.6.3/src/oc/plt.c
Examining data/neuron-7.6.3/src/oc/prmat.c
Examining data/neuron-7.6.3/src/oc/profile.h
Examining data/neuron-7.6.3/src/oc/redef.h
Examining data/neuron-7.6.3/src/oc/regexp.c
Examining data/neuron-7.6.3/src/oc/scoplib_ansi.h
Examining data/neuron-7.6.3/src/oc/scoprand.c
Examining data/neuron-7.6.3/src/oc/settext.c
Examining data/neuron-7.6.3/src/oc/spinit.c
Examining data/neuron-7.6.3/src/oc/spinit1.c
Examining data/neuron-7.6.3/src/oc/spinit2.c
Examining data/neuron-7.6.3/src/oc/subrows.c
Examining data/neuron-7.6.3/src/oc/symbol.c
Examining data/neuron-7.6.3/src/oc/system.c
Examining data/neuron-7.6.3/src/oc/termio.c
Examining data/neuron-7.6.3/src/oc/version.c
Examining data/neuron-7.6.3/src/oc/x.c
Examining data/neuron-7.6.3/src/oc/xred.c
Examining data/neuron-7.6.3/src/parallel/bbs.cpp
Examining data/neuron-7.6.3/src/parallel/bbs.h
Examining data/neuron-7.6.3/src/parallel/bbsclimpi.cpp
Examining data/neuron-7.6.3/src/parallel/bbsdirect.cpp
Examining data/neuron-7.6.3/src/parallel/bbsdirect.h
Examining data/neuron-7.6.3/src/parallel/bbsdirectmpi.cpp
Examining data/neuron-7.6.3/src/parallel/bbsimpl.h
Examining data/neuron-7.6.3/src/parallel/bbslocal.cpp
Examining data/neuron-7.6.3/src/parallel/bbslocal.h
Examining data/neuron-7.6.3/src/parallel/bbslsrv.cpp
Examining data/neuron-7.6.3/src/parallel/bbslsrv.h
Examining data/neuron-7.6.3/src/parallel/bbslsrv2.cpp
Examining data/neuron-7.6.3/src/parallel/bbslsrv2.h
Examining data/neuron-7.6.3/src/parallel/bbsrcli.cpp
Examining data/neuron-7.6.3/src/parallel/bbsrcli.h
Examining data/neuron-7.6.3/src/parallel/bbssrv.cpp
Examining data/neuron-7.6.3/src/parallel/bbssrv.h
Examining data/neuron-7.6.3/src/parallel/bbssrv2mpi.cpp
Examining data/neuron-7.6.3/src/parallel/bbssrv2mpi.h
Examining data/neuron-7.6.3/src/parallel/bbssrvmpi.cpp
Examining data/neuron-7.6.3/src/parallel/ocbbs.cpp
Examining data/neuron-7.6.3/src/parallel/subworld.cpp
Examining data/neuron-7.6.3/src/readline/chardefs.h
Examining data/neuron-7.6.3/src/readline/emacs_keymap.h
Examining data/neuron-7.6.3/src/readline/funmap.c
Examining data/neuron-7.6.3/src/readline/history.c
Examining data/neuron-7.6.3/src/readline/history.h
Examining data/neuron-7.6.3/src/readline/keymaps.c
Examining data/neuron-7.6.3/src/readline/keymaps.h
Examining data/neuron-7.6.3/src/readline/readline.c
Examining data/neuron-7.6.3/src/readline/readline.h
Examining data/neuron-7.6.3/src/readline/vi_keymap.h
Examining data/neuron-7.6.3/src/scopmath/abort.c
Examining data/neuron-7.6.3/src/scopmath/adams.c
Examining data/neuron-7.6.3/src/scopmath/adeuler.c
Examining data/neuron-7.6.3/src/scopmath/adrunge.c
Examining data/neuron-7.6.3/src/scopmath/advance.c
Examining data/neuron-7.6.3/src/scopmath/boundary.c
Examining data/neuron-7.6.3/src/scopmath/crank.c
Examining data/neuron-7.6.3/src/scopmath/crout.c
Examining data/neuron-7.6.3/src/scopmath/crout_thread.c
Examining data/neuron-7.6.3/src/scopmath/csoda.c
Examining data/neuron-7.6.3/src/scopmath/csodabnc.c
Examining data/neuron-7.6.3/src/scopmath/deflate.c
Examining data/neuron-7.6.3/src/scopmath/dimplic.c
Examining data/neuron-7.6.3/src/scopmath/errcodes.h
Examining data/neuron-7.6.3/src/scopmath/euler.c
Examining data/neuron-7.6.3/src/scopmath/expfit.c
Examining data/neuron-7.6.3/src/scopmath/exprand.c
Examining data/neuron-7.6.3/src/scopmath/f2c.h
Examining data/neuron-7.6.3/src/scopmath/f2cmisc.c
Examining data/neuron-7.6.3/src/scopmath/factoria.c
Examining data/neuron-7.6.3/src/scopmath/force.c
Examining data/neuron-7.6.3/src/scopmath/gauss.c
Examining data/neuron-7.6.3/src/scopmath/gear.c
Examining data/neuron-7.6.3/src/scopmath/getmem.c
Examining data/neuron-7.6.3/src/scopmath/harmonic.c
Examining data/neuron-7.6.3/src/scopmath/heun.c
Examining data/neuron-7.6.3/src/scopmath/hyperbol.c
Examining data/neuron-7.6.3/src/scopmath/invert.c
Examining data/neuron-7.6.3/src/scopmath/lag.c
Examining data/neuron-7.6.3/src/scopmath/legendre.c
Examining data/neuron-7.6.3/src/scopmath/newton.c
Examining data/neuron-7.6.3/src/scopmath/newton_struct.h
Examining data/neuron-7.6.3/src/scopmath/newton_thread.c
Examining data/neuron-7.6.3/src/scopmath/normrand.c
Examining data/neuron-7.6.3/src/scopmath/perpulse.c
Examining data/neuron-7.6.3/src/scopmath/perstep.c
Examining data/neuron-7.6.3/src/scopmath/poisrand.c
Examining data/neuron-7.6.3/src/scopmath/poisson.c
Examining data/neuron-7.6.3/src/scopmath/praxis.c
Examining data/neuron-7.6.3/src/scopmath/pulse.c
Examining data/neuron-7.6.3/src/scopmath/quad.c
Examining data/neuron-7.6.3/src/scopmath/ramp.c
Examining data/neuron-7.6.3/src/scopmath/revhyper.c
Examining data/neuron-7.6.3/src/scopmath/revsawto.c
Examining data/neuron-7.6.3/src/scopmath/revsigmo.c
Examining data/neuron-7.6.3/src/scopmath/romberg.c
Examining data/neuron-7.6.3/src/scopmath/runge.c
Examining data/neuron-7.6.3/src/scopmath/sawtooth.c
Examining data/neuron-7.6.3/src/scopmath/schedule.c
Examining data/neuron-7.6.3/src/scopmath/scopenv.h
Examining data/neuron-7.6.3/src/scopmath/scoperf.c
Examining data/neuron-7.6.3/src/scopmath/scoplib.h
Examining data/neuron-7.6.3/src/scopmath/seidel.c
Examining data/neuron-7.6.3/src/scopmath/sigmoid.c
Examining data/neuron-7.6.3/src/scopmath/simeq.c
Examining data/neuron-7.6.3/src/scopmath/simplex.c
Examining data/neuron-7.6.3/src/scopmath/sparse.c
Examining data/neuron-7.6.3/src/scopmath/sparse_thread.c
Examining data/neuron-7.6.3/src/scopmath/spline.c
Examining data/neuron-7.6.3/src/scopmath/squarewa.c
Examining data/neuron-7.6.3/src/scopmath/ssimplic.c
Examining data/neuron-7.6.3/src/scopmath/ssimplic_thread.c
Examining data/neuron-7.6.3/src/scopmath/step.c
Examining data/neuron-7.6.3/src/scopmath/threshol.c
Examining data/neuron-7.6.3/src/scopmath/tridiag.c
Examining data/neuron-7.6.3/src/scopmath/vsparse.c
Examining data/neuron-7.6.3/src/sparse/bksub.c
Examining data/neuron-7.6.3/src/sparse/getelm.c
Examining data/neuron-7.6.3/src/sparse/lineq.c
Examining data/neuron-7.6.3/src/sparse/lineq.h
Examining data/neuron-7.6.3/src/sparse/prmat.c
Examining data/neuron-7.6.3/src/sparse/subrows.c
Examining data/neuron-7.6.3/src/sparse13/cspalloc.c
Examining data/neuron-7.6.3/src/sparse13/cspbuild.c
Examining data/neuron-7.6.3/src/sparse13/cspfactor.c
Examining data/neuron-7.6.3/src/sparse13/cspmatrix.h
Examining data/neuron-7.6.3/src/sparse13/cspoutput.c
Examining data/neuron-7.6.3/src/sparse13/cspredef.h
Examining data/neuron-7.6.3/src/sparse13/cspsolve.c
Examining data/neuron-7.6.3/src/sparse13/csputils.c
Examining data/neuron-7.6.3/src/sparse13/spalloc.c
Examining data/neuron-7.6.3/src/sparse13/spbuild.c
Examining data/neuron-7.6.3/src/sparse13/spconfig.h
Examining data/neuron-7.6.3/src/sparse13/spdefs.h
Examining data/neuron-7.6.3/src/sparse13/spfactor.c
Examining data/neuron-7.6.3/src/sparse13/spmatrix.h
Examining data/neuron-7.6.3/src/sparse13/spoutput.c
Examining data/neuron-7.6.3/src/sparse13/spsolve.c
Examining data/neuron-7.6.3/src/sparse13/sputils.c
Examining data/neuron-7.6.3/src/sundials/cvodes/cvband.c
Examining data/neuron-7.6.3/src/sundials/cvodes/cvband.h
Examining data/neuron-7.6.3/src/sundials/cvodes/cvband_impl.h
Examining data/neuron-7.6.3/src/sundials/cvodes/cvbandpre.c
Examining data/neuron-7.6.3/src/sundials/cvodes/cvbandpre.h
Examining data/neuron-7.6.3/src/sundials/cvodes/cvbandpre_impl.h
Examining data/neuron-7.6.3/src/sundials/cvodes/cvbbdpre.c
Examining data/neuron-7.6.3/src/sundials/cvodes/cvbbdpre.h
Examining data/neuron-7.6.3/src/sundials/cvodes/cvbbdpre_impl.h
Examining data/neuron-7.6.3/src/sundials/cvodes/cvdense.c
Examining data/neuron-7.6.3/src/sundials/cvodes/cvdense.h
Examining data/neuron-7.6.3/src/sundials/cvodes/cvdense_impl.h
Examining data/neuron-7.6.3/src/sundials/cvodes/cvdiag.c
Examining data/neuron-7.6.3/src/sundials/cvodes/cvdiag.h
Examining data/neuron-7.6.3/src/sundials/cvodes/cvdiag_impl.h
Examining data/neuron-7.6.3/src/sundials/cvodes/cvodea.c
Examining data/neuron-7.6.3/src/sundials/cvodes/cvodea.h
Examining data/neuron-7.6.3/src/sundials/cvodes/cvodea_impl.h
Examining data/neuron-7.6.3/src/sundials/cvodes/cvodes.c
Examining data/neuron-7.6.3/src/sundials/cvodes/cvodes.h
Examining data/neuron-7.6.3/src/sundials/cvodes/cvodes_impl.h
Examining data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c
Examining data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c
Examining data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.h
Examining data/neuron-7.6.3/src/sundials/cvodes/cvspgmr_impl.h
Examining data/neuron-7.6.3/src/sundials/ida/ida.c
Examining data/neuron-7.6.3/src/sundials/ida/ida.h
Examining data/neuron-7.6.3/src/sundials/ida/ida_impl.h
Examining data/neuron-7.6.3/src/sundials/ida/idaband.c
Examining data/neuron-7.6.3/src/sundials/ida/idaband.h
Examining data/neuron-7.6.3/src/sundials/ida/idaband_impl.h
Examining data/neuron-7.6.3/src/sundials/ida/idabbdpre.c
Examining data/neuron-7.6.3/src/sundials/ida/idabbdpre.h
Examining data/neuron-7.6.3/src/sundials/ida/idabbdpre_impl.h
Examining data/neuron-7.6.3/src/sundials/ida/idadense.c
Examining data/neuron-7.6.3/src/sundials/ida/idadense.h
Examining data/neuron-7.6.3/src/sundials/ida/idadense_impl.h
Examining data/neuron-7.6.3/src/sundials/ida/idaic.c
Examining data/neuron-7.6.3/src/sundials/ida/idaio.c
Examining data/neuron-7.6.3/src/sundials/ida/idaspgmr.c
Examining data/neuron-7.6.3/src/sundials/ida/idaspgmr.h
Examining data/neuron-7.6.3/src/sundials/ida/idaspgmr_impl.h
Examining data/neuron-7.6.3/src/sundials/shared/band.c
Examining data/neuron-7.6.3/src/sundials/shared/band.h
Examining data/neuron-7.6.3/src/sundials/shared/dense.c
Examining data/neuron-7.6.3/src/sundials/shared/dense.h
Examining data/neuron-7.6.3/src/sundials/shared/iterative.c
Examining data/neuron-7.6.3/src/sundials/shared/iterative.h
Examining data/neuron-7.6.3/src/sundials/shared/nvector.c
Examining data/neuron-7.6.3/src/sundials/shared/nvector.h
Examining data/neuron-7.6.3/src/sundials/shared/nvector_parallel.c
Examining data/neuron-7.6.3/src/sundials/shared/nvector_parallel.h
Examining data/neuron-7.6.3/src/sundials/shared/nvector_serial.c
Examining data/neuron-7.6.3/src/sundials/shared/nvector_serial.h
Examining data/neuron-7.6.3/src/sundials/shared/smalldense.c
Examining data/neuron-7.6.3/src/sundials/shared/smalldense.h
Examining data/neuron-7.6.3/src/sundials/shared/spgmr.c
Examining data/neuron-7.6.3/src/sundials/shared/spgmr.h
Examining data/neuron-7.6.3/src/sundials/shared/sundialsmath.c
Examining data/neuron-7.6.3/src/sundials/shared/sundialsmath.h
Examining data/neuron-7.6.3/src/sundials/shared/sundialstypes.h
Examining data/neuron-7.6.3/src/uxnrnbbs/mos2nrn.cpp
Examining data/neuron-7.6.3/src/uxnrnbbs/nrnbbs.h
Examining data/neuron-7.6.3/ivhines/iv_def.h
Examining data/neuron-7.6.3/ivhines/src/bin/iclass/classbuffer.cpp
Examining data/neuron-7.6.3/ivhines/src/bin/iclass/classbuffer.h
Examining data/neuron-7.6.3/ivhines/src/bin/iclass/classeditor.cpp
Examining data/neuron-7.6.3/ivhines/src/bin/iclass/classeditor.h
Examining data/neuron-7.6.3/ivhines/src/bin/iclass/classinfo.cpp
Examining data/neuron-7.6.3/ivhines/src/bin/iclass/classinfo.h
Examining data/neuron-7.6.3/ivhines/src/bin/iclass/dialogs.cpp
Examining data/neuron-7.6.3/ivhines/src/bin/iclass/dialogs.h
Examining data/neuron-7.6.3/ivhines/src/bin/iclass/direct.cpp
Examining data/neuron-7.6.3/ivhines/src/bin/iclass/direct.h
Examining data/neuron-7.6.3/ivhines/src/bin/iclass/globals.cpp
Examining data/neuron-7.6.3/ivhines/src/bin/iclass/globals.h
Examining data/neuron-7.6.3/ivhines/src/bin/iclass/iclass.cpp
Examining data/neuron-7.6.3/ivhines/src/bin/iclass/iclass.h
Examining data/neuron-7.6.3/ivhines/src/bin/iclass/main.cpp
Examining data/neuron-7.6.3/ivhines/src/bin/idemo/main.cpp
Examining data/neuron-7.6.3/ivhines/src/bin/idraw/idarrow.cpp
Examining data/neuron-7.6.3/ivhines/src/bin/idraw/idarrow.h
Examining data/neuron-7.6.3/ivhines/src/bin/idraw/idarrowhead.cpp
Examining data/neuron-7.6.3/ivhines/src/bin/idraw/idarrowhead.h
Examining data/neuron-7.6.3/ivhines/src/bin/idraw/idarrows.cpp
Examining data/neuron-7.6.3/ivhines/src/bin/idraw/idarrows.h
Examining data/neuron-7.6.3/ivhines/src/bin/idraw/idcatalog.cpp
Examining data/neuron-7.6.3/ivhines/src/bin/idraw/idcatalog.h
Examining data/neuron-7.6.3/ivhines/src/bin/idraw/idclasses.h
Examining data/neuron-7.6.3/ivhines/src/bin/idraw/idcmds.cpp
Examining data/neuron-7.6.3/ivhines/src/bin/idraw/idcmds.h
Examining data/neuron-7.6.3/ivhines/src/bin/idraw/idcomp.cpp
Examining data/neuron-7.6.3/ivhines/src/bin/idraw/idcomp.h
Examining data/neuron-7.6.3/ivhines/src/bin/idraw/idcreator.cpp
Examining data/neuron-7.6.3/ivhines/src/bin/idraw/idcreator.h
Examining data/neuron-7.6.3/ivhines/src/bin/idraw/iddialogs.cpp
Examining data/neuron-7.6.3/ivhines/src/bin/idraw/iddialogs.h
Examining data/neuron-7.6.3/ivhines/src/bin/idraw/ided.cpp
Examining data/neuron-7.6.3/ivhines/src/bin/idraw/ided.h
Examining data/neuron-7.6.3/ivhines/src/bin/idraw/idkybd.cpp
Examining data/neuron-7.6.3/ivhines/src/bin/idraw/idkybd.h
Examining data/neuron-7.6.3/ivhines/src/bin/idraw/idvars.cpp
Examining data/neuron-7.6.3/ivhines/src/bin/idraw/idvars.h
Examining data/neuron-7.6.3/ivhines/src/bin/idraw/idversion.h
Examining data/neuron-7.6.3/ivhines/src/bin/idraw/main.cpp
Examining data/neuron-7.6.3/ivhines/src/include/Dispatch/_defines.h
Examining data/neuron-7.6.3/ivhines/src/include/Dispatch/_undefs.h
Examining data/neuron-7.6.3/ivhines/src/include/Dispatch/dispatcher.h
Examining data/neuron-7.6.3/ivhines/src/include/Dispatch/dp.h
Examining data/neuron-7.6.3/ivhines/src/include/Dispatch/enter-scope.h
Examining data/neuron-7.6.3/ivhines/src/include/Dispatch/iocallback.h
Examining data/neuron-7.6.3/ivhines/src/include/Dispatch/iohandler.h
Examining data/neuron-7.6.3/ivhines/src/include/Dispatch/iostreamb.h
Examining data/neuron-7.6.3/ivhines/src/include/Dispatch/leave-scope.h
Examining data/neuron-7.6.3/ivhines/src/include/Dispatch/rpcbuf.h
Examining data/neuron-7.6.3/ivhines/src/include/Dispatch/rpchdr.h
Examining data/neuron-7.6.3/ivhines/src/include/Dispatch/rpcpeer.h
Examining data/neuron-7.6.3/ivhines/src/include/Dispatch/rpcreader.h
Examining data/neuron-7.6.3/ivhines/src/include/Dispatch/rpcregistry.h
Examining data/neuron-7.6.3/ivhines/src/include/Dispatch/rpcservice.h
Examining data/neuron-7.6.3/ivhines/src/include/Dispatch/rpcstream.h
Examining data/neuron-7.6.3/ivhines/src/include/Dispatch/rpcwriter.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/adjuster.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/alignment.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/banner.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/border.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/box.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/button.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/compeditor.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/control.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/deck.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/defs.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/dialog.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/filebrowser.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/filechooser.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/frame.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/glue.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/ihandler.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/interactor.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/iwindow.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/matcheditor.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/menu.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/message.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/minmax.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/paint.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/painter.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/panner.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/perspective.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/rubband.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/rubcurve.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/rubgroup.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/rubline.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/rubrect.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/rubverts.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/scene.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/scrollbar.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/scroller.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/sensor.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/shape.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/strbrowser.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/strchooser.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/streditor.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/subject.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/textbuffer.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/textdisplay.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/texteditor.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/textstyle.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/tray.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/viewport.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/world.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/_enter.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/_leave.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-2_6/_names.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-Mac/bitmap.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-Mac/brush.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-Mac/canvas.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-Mac/color.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-Mac/cursor.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-Mac/event.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-Mac/font.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-Mac/mprinter.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-Mac/raster.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-Mac/session.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-Mac/window.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-Win/MWapp.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-Win/MWlib.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-Win/MWpoint.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-Win/MWrect.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-Win/bitmap.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-Win/brush.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-Win/canvas.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-Win/color.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-Win/cursor.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-Win/event.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-Win/font.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-Win/mprinter.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-Win/raster.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-Win/session.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-Win/window.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-X11/Xdefs.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-X11/Xext.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-X11/Xlib.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-X11/Xundefs.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-X11/Xutil.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-X11/xbitmap.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-X11/xbrush.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-X11/xcanvas.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-X11/xcolor.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-X11/xcursor.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-X11/xdisplay.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-X11/xdrag.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-X11/xevent.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-X11/xfont.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-X11/xpainter.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-X11/xpattern.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-X11/xraster.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-X11/xselection.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-X11/xwindow.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-look/bevel.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-look/browser.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-look/button.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-look/choice.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-look/dialogs.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-look/fbrowser.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-look/fchooser.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-look/field.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-look/kit.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-look/menu.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-look/mf_dialogs.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-look/mf_kit.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-look/mono_kit.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-look/mw_kit.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-look/ol_dialogs.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-look/ol_kit.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-look/slider.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-look/smf_kit.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-look/stepper.h
Examining data/neuron-7.6.3/ivhines/src/include/IV-look/telltale.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/_defines.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/_enter.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/_leave.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/_names.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/_undefs.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/action.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/adjust.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/aggr.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/align.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/alloctbl.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/arraycomp.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/background.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/bitmap.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/border.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/box.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/brush.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/canvas.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/character.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/color.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/composition.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/compositor.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/comption.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/coord.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/cursor.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/debug.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/deck.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/dialog.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/display.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/drag.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/enter-scope.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/event.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/font.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/geometry.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/glcontext.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/glue.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/glyph.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/group.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/handler.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/hit.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/image.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/input.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/iv.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/iv3text.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/iv3textbuffer.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/label.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/layout.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/leave-scope.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/lrmarker.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/monoglyph.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/observe.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/page.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/patch.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/pattern.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/place.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/polyglyph.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/printer.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/psfont.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/raster.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/regexp.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/reqerr.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/resource.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/rule.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/scrbox.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/selection.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/session.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/shadow.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/simplecomp.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/stencil.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/style.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/superpose.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/target.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/telltale.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/texcomp.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/tformsetter.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/tiff.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/tile.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/transformer.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/winbmp.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/window.h
Examining data/neuron-7.6.3/ivhines/src/include/InterViews/xymarker.h
Examining data/neuron-7.6.3/ivhines/src/include/OS/_defines.h
Examining data/neuron-7.6.3/ivhines/src/include/OS/_undefs.h
Examining data/neuron-7.6.3/ivhines/src/include/OS/directory.h
Examining data/neuron-7.6.3/ivhines/src/include/OS/dirent.h
Examining data/neuron-7.6.3/ivhines/src/include/OS/enter-scope.h
Examining data/neuron-7.6.3/ivhines/src/include/OS/file.h
Examining data/neuron-7.6.3/ivhines/src/include/OS/host.h
Examining data/neuron-7.6.3/ivhines/src/include/OS/leave-scope.h
Examining data/neuron-7.6.3/ivhines/src/include/OS/list.h
Examining data/neuron-7.6.3/ivhines/src/include/OS/math.h
Examining data/neuron-7.6.3/ivhines/src/include/OS/memory.h
Examining data/neuron-7.6.3/ivhines/src/include/OS/os.h
Examining data/neuron-7.6.3/ivhines/src/include/OS/string.h
Examining data/neuron-7.6.3/ivhines/src/include/OS/table.h
Examining data/neuron-7.6.3/ivhines/src/include/OS/table2.h
Examining data/neuron-7.6.3/ivhines/src/include/OS/types.h
Examining data/neuron-7.6.3/ivhines/src/include/OS/ustring.h
Examining data/neuron-7.6.3/ivhines/src/include/TIFF/format.h
Examining data/neuron-7.6.3/ivhines/src/include/TIFF/tiff.h
Examining data/neuron-7.6.3/ivhines/src/include/TIFF/tiffio.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Commands/align.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Commands/brushcmd.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Commands/catcmds.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Commands/colorcmd.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Commands/command.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Commands/data.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Commands/datas.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Commands/edit.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Commands/font.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Commands/import.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Commands/macro.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Commands/nop.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Commands/patcmd.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Commands/struct.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Commands/transforms.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Commands/viewcmds.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Components/cglue.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Components/component.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Components/compview.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Components/connector.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Components/csolver.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Components/ellipse.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Components/externview.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Components/grcomp.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Components/grview.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Components/gvupdater.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Components/line.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Components/link.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Components/pad.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Components/pin.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Components/polygon.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Components/psformat.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Components/psview.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Components/rastercomp.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Components/rect.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Components/slot.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Components/spline.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Components/stencilcomp.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Components/text.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Components/vertices.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Graphic/damage.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Graphic/ellipses.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Graphic/geomobjs.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Graphic/graphic.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Graphic/grblock.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Graphic/lines.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Graphic/picture.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Graphic/polygons.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Graphic/pspaint.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Graphic/rasterrect.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Graphic/splines.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Graphic/ulabel.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Graphic/ustencil.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Graphic/util.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Graphic/verts.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Tools/connect.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Tools/grcomptool.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Tools/magnify.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Tools/move.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Tools/reshape.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Tools/rotate.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Tools/scale.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Tools/select.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Tools/stretch.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/Tools/tool.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/_defines.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/_undefs.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/catalog.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/classes.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/clipboard.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/creator.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/ctrlinfo.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/dialogs.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/editor.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/editorinfo.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/enter-scope.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/globals.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/grid.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/iterator.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/keymap.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/kybd.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/leave-scope.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/manip.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/manips.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/path.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/selection.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/statevar.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/statevars.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/stateview.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/stateviews.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/transfn.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/transfns.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/uarray.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/uctrl.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/uctrls.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/uformat.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/uhash.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/ulist.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/umap.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/unidraw.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/upage.h
Examining data/neuron-7.6.3/ivhines/src/include/Unidraw/viewer.h
Examining data/neuron-7.6.3/ivhines/src/include/ivcarbon.h
Examining data/neuron-7.6.3/ivhines/src/include/ivmcw.h
Examining data/neuron-7.6.3/ivhines/src/include/ivstream.h
Examining data/neuron-7.6.3/ivhines/src/include/ivstrm.h
Examining data/neuron-7.6.3/ivhines/src/include/ivversion.h
Examining data/neuron-7.6.3/ivhines/src/include/macivdef.h
Examining data/neuron-7.6.3/ivhines/src/lib/Dispatch/dispatcher.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Dispatch/iohandler.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Dispatch/iostreamb.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Dispatch/netinet_in.h
Examining data/neuron-7.6.3/ivhines/src/lib/Dispatch/rpcbuf.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Dispatch/rpchdr.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Dispatch/rpcpeer.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Dispatch/rpcreader.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Dispatch/rpcregistry.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Dispatch/rpcservice.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Dispatch/rpcstream.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Dispatch/rpcwriter.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/adjuster2_6.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/banner.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/border2_6.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/box2_6.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/button2_6.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/compeditor.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/control.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/deck2_6.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/dialog2_6.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filechooser.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/frame.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/glue2_6.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/interactor.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/matcheditor.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/menu2_6.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/message.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/painter.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/panner2_6.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/perspective.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/rubband.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/rubcurve.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/rubgroup.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/rubline.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/rubrect.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/rubverts.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/scene.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/scrollbar2_6.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/scroller2_6.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/sensor.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/shape.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/strbrowser.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/strchooser.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/streditor.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/subject.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/textbuffer.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/textdisplay.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/texteditor.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/tform2_6.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/tray.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/viewport.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/world.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/xbitmap2_6.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/xevent2_6.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/xinter.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/xpainter.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-2_6/xpattern.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-Mac/bitmap.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-Mac/brush.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-Mac/canvas.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-Mac/carbevent.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-Mac/color.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-Mac/cursor.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-Mac/display.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-Mac/event.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-Mac/font.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-Mac/mprinter.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-Mac/raster.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-Mac/window.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-Win/bitmap.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-Win/brush.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-Win/canvas.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-Win/canvas16.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-Win/canvas32.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-Win/color.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-Win/cursor.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-Win/display.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-Win/event.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-Win/font.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-Win/ivclean.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-Win/mprinter.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-Win/mwapp.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-Win/mwlib.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-Win/raster.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-Win/session.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-Win/window.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-X11/glcontext.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-X11/session.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-X11/wtable.h
Examining data/neuron-7.6.3/ivhines/src/lib/IV-X11/xbitmap.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-X11/xbrush.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-X11/xcanvas.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-X11/xcolor.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-X11/xcursor.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-X11/xdrag.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-X11/xevent.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-X11/xfont.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-X11/xraster.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-X11/xreqerr.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-X11/xselection.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/IV-X11/xwindow.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/action.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/adjust.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/aggr.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/align.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/alloctbl.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/arrcomp.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/background.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/bevel.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/border.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/box.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/browser.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/button.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/character.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/compositor.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/comption.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/debug.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/deck.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/dialogs.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/fbrowser.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/fchooser.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/field.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/geometry.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/glyph.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/group.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/handler.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/hit.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/image.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/input.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/iv3text.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/iv3textbuffer.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/kit.cpp
Parsing failed to find end of parameter list; semicolon terminated it in (
#else
fprintf(stderr,
#endif
"%s: unable to %s \"%.*s\", using \"%s\"\n",
s->name(), op, name.length(), name.string(), value
);
}
WidgetKitImpl* WidgetKitImpl::updated() {
if (style_c
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/label.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/layout.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/lrmarker.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/menu.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/mf_dialogs.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/mf_kit.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/mono_kit.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/monoglyph.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/observe.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/ol_dialogs.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/ol_kit.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/page.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/patch.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/place.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/polyglyph.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/printer.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/psfont.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/regexp.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/resource.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/rule.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/scrbox.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/shadow.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/simpcomp.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/slider.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/smf_kit.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/stencil.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/stepper.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/style.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/superpose.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/target.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/telltale.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/texcomp.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/tformsetter.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/tiff.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/tile.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/transformer.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/winbmp.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/InterViews/xymarker.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/OS/dirent.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/OS/file.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/OS/host.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/OS/listimpl.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/OS/math.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/OS/memory.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/OS/string.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/OS/ustring.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/g3states.h
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/machdep.h
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/mkg3states.c
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/mkspans.c
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/prototypes.h
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/t4.h
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_aux.c
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_ccittrle.c
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_close.c
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_cmprs.c
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_compat.c
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_dir.c
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_dirinfo.c
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_dirread.c
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_dirwrite.c
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_dumpmode.c
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_error.c
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_fax3.c
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_fax3.h
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_fax4.c
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_flush.c
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_getimage.c
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_jpeg.c
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_lzw.c
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_machdep.c
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_next.c
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_open.c
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_packbits.c
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_print.c
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_read.c
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_strip.c
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_swab.c
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_thunder.c
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_tile.c
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_version.c
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_warning.c
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_write.c
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/tiffcompat.h
Examining data/neuron-7.6.3/ivhines/src/lib/TIFF/tiffioP.h
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/align.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/brushcmd.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/catcmds.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/cglue.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/clipboard.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/colorcmd.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/command.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/component.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/compview.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/connect.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/connector.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/creator.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/csolver.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/ctrlinfo.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/damage.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/data.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/datas.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/dialogs.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/edit.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/editor.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/editorinfo.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/ellipse.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/ellipses.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/externview.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/font.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/geomobjs.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/globals.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/graphic.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/grblock.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/grcomp.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/grcomptool.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/grid.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/grview.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/gvupdater.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/import.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/iterator.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/keymap.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/kybd.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/line.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/lines.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/link.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/macro.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/magnify.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/manip.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/manips.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/move.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/nop.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/pad.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/patcmd.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/path.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/picture.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/pin.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/polygon.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/polygons.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/pspaint.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/psview.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/rastercomp.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/rasterrect.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/rect.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/reshape.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/rotate.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/scale.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/select.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/selection.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/slot.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/spline.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/splines.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/statevar.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/statevars.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/stateview.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/stateviews.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/stencilcomp.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/stretch.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/struct.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/text.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/tool.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/transfn.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/transfns.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/transforms.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/uarray.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/uctrl.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/uctrls.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/uhash.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/ulabel.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/ulist.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/umap.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/unidraw.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/upage.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/ustencil.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/vertices.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/verts.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/viewcmds.cpp
Examining data/neuron-7.6.3/ivhines/src/lib/Unidraw/viewer.cpp
FINAL RESULTS:
data/neuron-7.6.3/src/gnu/d_vec.cpp:122:50: [5] (buffer) gets:
Does not check for buffer overflows (CWE-120, CWE-20). Use fgets() instead.
tends to grow in moderate sized chunks but never gets released until the
data/neuron-7.6.3/src/mswin/extra/bbstest.cpp:40:2: [5] (buffer) gets:
Does not check for buffer overflows (CWE-120, CWE-20). Use fgets() instead.
gets(buf);
data/neuron-7.6.3/src/mswin/mwprefix.h:28:9: [5] (buffer) gets:
Does not check for buffer overflows (CWE-120, CWE-20). Use fgets() instead.
#define gets mygets
data/neuron-7.6.3/src/mswin/nrnconf.h:24:9: [5] (buffer) gets:
Does not check for buffer overflows (CWE-120, CWE-20). Use fgets() instead.
#define gets mygets
data/neuron-7.6.3/src/mswin/rdln/history.c:1653:11: [5] (buffer) gets:
Does not check for buffer overflows (CWE-120, CWE-20). Use fgets() instead.
t = gets (line);
data/neuron-7.6.3/src/oc/hoc.c:1831:8: [5] (buffer) gets:
Does not check for buffer overflows (CWE-120, CWE-20). Use fgets() instead.
if (gets(cbuf) == (char*)0) {
data/neuron-7.6.3/src/oc/xred.c:72:7: [5] (buffer) gets:
Does not check for buffer overflows (CWE-120, CWE-20). Use fgets() instead.
if (gets(istr) != NULL) {
data/neuron-7.6.3/src/oc/xred.c:143:7: [5] (buffer) gets:
Does not check for buffer overflows (CWE-120, CWE-20). Use fgets() instead.
if (gets(istr) != NULL) {
data/neuron-7.6.3/src/readline/history.c:1649:11: [5] (buffer) gets:
Does not check for buffer overflows (CWE-120, CWE-20). Use fgets() instead.
t = gets (line);
data/neuron-7.6.3/src/scopmath/abort.c:111:5: [5] (buffer) gets:
Does not check for buffer overflows (CWE-120, CWE-20). Use fgets() instead.
gets(tmpstr);
data/neuron-7.6.3/src/scopmath/force.c:235:28: [5] (buffer) gets:
Does not check for buffer overflows (CWE-120, CWE-20). Use fgets() instead.
extern char *fgets(), *gets();
data/neuron-7.6.3/src/scopmath/force.c:340:29: [5] (buffer) gets:
Does not check for buffer overflows (CWE-120, CWE-20). Use fgets() instead.
extern char *strcpy(), *gets();
data/neuron-7.6.3/ivhines/src/bin/iclass/classbuffer.cpp:240:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filePath, dir.Normalize(path));
data/neuron-7.6.3/ivhines/src/bin/iclass/classbuffer.cpp:241:13: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(filePath, file);
data/neuron-7.6.3/ivhines/src/bin/iclass/classbuffer.cpp:262:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filePath, dir.Normalize(path));
data/neuron-7.6.3/ivhines/src/bin/iclass/classbuffer.cpp:263:13: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(filePath, file);
data/neuron-7.6.3/ivhines/src/bin/iclass/dialogs.cpp:368:17: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(path, _dirs->Path(sel));
data/neuron-7.6.3/ivhines/src/bin/iclass/dialogs.cpp:396:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(path, relpath);
data/neuron-7.6.3/ivhines/src/bin/iclass/direct.cpp:95:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, ValidDirectories(RealPath(name)));
data/neuron-7.6.3/ivhines/src/bin/iclass/direct.cpp:168:9: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(newpath, buf);
data/neuron-7.6.3/ivhines/src/bin/iclass/direct.cpp:171:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(newpath, buf);
data/neuron-7.6.3/ivhines/src/bin/iclass/direct.cpp:182:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, path);
data/neuron-7.6.3/ivhines/src/bin/iclass/direct.cpp:274:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(realpath, expandedTilde);
data/neuron-7.6.3/ivhines/src/bin/iclass/direct.cpp:276:17: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(realpath, end);
data/neuron-7.6.3/ivhines/src/bin/iclass/globals.cpp:40:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dup, s);
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/button2_6.cpp:314:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(text, str);
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/button2_6.cpp:325:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(text, a);
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:102:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dup, s);
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:130:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, ValidDirectories(RealPath(name)));
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:190:9: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(newpath, buf);
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:193:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(newpath, buf);
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:197:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(newpath, buf);
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:204:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, path);
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:298:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(realpath, expandedTilde);
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:300:17: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(realpath, end);
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:356:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, path);
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:360:12: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
return strcat(buf, file);
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:439:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, name);
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/matcheditor.cpp:85:17: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
if (sscanf(buf, "%s", pattern) == EOF) {
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/message.cpp:57:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(text, t);
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/message.cpp:74:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(text, a);
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/strbrowser.cpp:184:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(copy, s);
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/strbrowser.cpp:208:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(copy, s);
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/streditor.cpp:71:14: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
sample = strcpy(new char[strlen(samp) + 1], samp);
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/streditor.cpp:81:12: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
done = strcpy(new char[strlen(d) + 1], d);
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/color.cpp:93:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(COLORMAP_FILE, loc);
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/color.cpp:94:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(COLORMAP_FILE, leafname);
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/font.cpp:149:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy((char*) &name[1], face_name);
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:77:9: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
vfprintf(df, format, args);
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:444:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(prePath, (char*)&dirName[1]);
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:446:8: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(prePath, fullPath);
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:447:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fullPath, prePath);
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:539:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(s,(char*)&myFSS.name[1]);
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:559:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(s,(char*)&myFSS.name[1]);
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:715:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s\\%s\\%s", Session::installLocation(), APPDEF_DIRECTORY, APPDEF_DEFAULT);
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:719:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf2, "%s\\%s\\%s", Session::installLocation(), APPDEF_DIR_ALT, APPDEF_DEFAULT_ALT);
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:722:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf3, "Can't open InterViews resources file in either\n%s or\n%s",
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:758:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(subPath,"/%s/%s", APPDEF_DIRECTORY, leafName);
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:771:3: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf("Missing colon in property: %s", property);
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:780:2: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf("Bad property name: %s", property);
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:789:2: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf("Bad property value: %s", property);
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:848:2: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(buff, fmt, arg.string());
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:1521:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buff, "%s%s", head, tail);
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/window.cpp:245:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(title_, t);
data/neuron-7.6.3/ivhines/src/lib/IV-Win/color.cpp:472:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(COLORMAP_FILE, loc);
data/neuron-7.6.3/ivhines/src/lib/IV-Win/color.cpp:473:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(COLORMAP_FILE, leafname);
data/neuron-7.6.3/ivhines/src/lib/IV-Win/display.cpp:121:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "This is a low resolution screen and there \
data/neuron-7.6.3/ivhines/src/lib/IV-Win/font.cpp:120:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "Can't find font:\n%s\nUsing default font. This is the\
data/neuron-7.6.3/ivhines/src/lib/IV-Win/font.cpp:731:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(family_name_, name);
data/neuron-7.6.3/ivhines/src/lib/IV-Win/font.cpp:767:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buff,"*%s*%s*--%d*", family_name_, style, size);
data/neuron-7.6.3/ivhines/src/lib/IV-Win/font.cpp:782:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(nm, buff);
data/neuron-7.6.3/ivhines/src/lib/IV-Win/mwlib.cpp:57:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buff,"at line %u, file %s: `%s'", line, file, msg);
data/neuron-7.6.3/ivhines/src/lib/IV-Win/mwlib.cpp:119:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buff,"%s*%s: %s\n", path, adjusted, avalue.string());
data/neuron-7.6.3/ivhines/src/lib/IV-Win/mwlib.cpp:132:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buff,"%s*%s", path, cnm.string());
data/neuron-7.6.3/ivhines/src/lib/IV-Win/session.cpp:232:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s\\%s\\%s", Session::installLocation(), APPDEF_DIRECTORY, APPDEF_DEFAULT);
data/neuron-7.6.3/ivhines/src/lib/IV-Win/session.cpp:236:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf2, "%s\\%s\\%s", Session::installLocation(), APPDEF_DIR_ALT, APPDEF_DEFAULT_ALT);
data/neuron-7.6.3/ivhines/src/lib/IV-Win/session.cpp:246:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf3, "Can't open InterViews resources file in either\n%s or\n%s",
data/neuron-7.6.3/ivhines/src/lib/IV-Win/session.cpp:277:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(subPath,"/%s/%s", APPDEF_DIRECTORY, leafName);
data/neuron-7.6.3/ivhines/src/lib/IV-Win/session.cpp:289:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buff, "Missing colon in property: %s", property);
data/neuron-7.6.3/ivhines/src/lib/IV-Win/session.cpp:298:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buff, "Bad property name: %s", property);
data/neuron-7.6.3/ivhines/src/lib/IV-Win/session.cpp:307:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buff, "Bad property value: %s", property);
data/neuron-7.6.3/ivhines/src/lib/IV-Win/session.cpp:379:2: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(buff, fmt, arg.string());
data/neuron-7.6.3/ivhines/src/lib/IV-Win/session.cpp:413:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buff, "%s\\iv", nh);
data/neuron-7.6.3/ivhines/src/lib/IV-Win/session.cpp:432:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buff,"win.ini is missing `%s' in section `%s'", LOCATION_KEY,
data/neuron-7.6.3/ivhines/src/lib/IV-Win/session.cpp:885:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buff, "%s%s", head, tail);
data/neuron-7.6.3/ivhines/src/lib/IV-Win/window.cpp:190:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(title, t);
data/neuron-7.6.3/ivhines/src/lib/IV-Win/window.cpp:204:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(classname, nm);
data/neuron-7.6.3/ivhines/src/lib/IV-X11/session.cpp:549:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, fmt, arg.string());
data/neuron-7.6.3/ivhines/src/lib/IV-X11/session.cpp:655:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s%s", h.string(), t.string());
data/neuron-7.6.3/ivhines/src/lib/IV-X11/session.cpp:676:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s%s%s", h.string(), m.string(), t.string());
data/neuron-7.6.3/ivhines/src/lib/IV-X11/xfont.cpp:619:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(impl_->name, familyname);
data/neuron-7.6.3/ivhines/src/lib/IV-X11/xfont.cpp:650:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buffer, "*-*-%s-*-*-*-*-75-75-*-*-*-*", impl_->name);
data/neuron-7.6.3/ivhines/src/lib/IV-X11/xfont.cpp:670:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r->names_[i], fonts[i]);
data/neuron-7.6.3/ivhines/src/lib/InterViews/kit.cpp:791:2: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(
data/neuron-7.6.3/ivhines/src/lib/InterViews/kit.cpp:793:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr,
data/neuron-7.6.3/ivhines/src/lib/InterViews/psfont.cpp:76:17: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
} else if (sscanf(line, "EncodingScheme %s", p->encoding) == 1) {
data/neuron-7.6.3/ivhines/src/lib/InterViews/psfont.cpp:120:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(metrics_file, "%s/%s.afm", dir, name);
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:268:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s:", name.string());
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:284:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy((char*)&s[1], d->impl_->name_->string());
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:308:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s*", s->string());
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:419:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(tmp, "%s%s", d->name_->string(), name_->string());
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:421:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(tmp, "%s/%s", d->name_->string(), name_->string());
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:471:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(newpath, "./%s", s);
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:476:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(newpath, "%s/", s);
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:478:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(newpath, "%s", s);
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:676:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s%s", name_->string(), "*");
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:818:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(realpath, expanded);
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:820:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(realpath, end);
data/neuron-7.6.3/ivhines/src/lib/OS/dirent.cpp:55:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buff,"%s/*", name);
data/neuron-7.6.3/ivhines/src/lib/OS/dirent.cpp:109:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dirp->conversion.d_name, dirp->data.ff_name);
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_error.c:44:2: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
vfprintf(stderr, fmt, ap);
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_open.c:184:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(tif->tif_name, name);
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_warning.c:45:2: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
vfprintf(stderr, fmt, ap);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:82:16: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
extern int access(char*, int);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:599:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(delim, delim_ptr);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:890:12: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
return access((char*)path, F_OK) >= 0;
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:895:12: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
return access((char*)path, W_OK) >= 0;
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:903:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s%d", name, index);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:1255:9: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
if (sscanf(definition, "%s %d %d %d", name, &r, &g, &b) == 4) {
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:1258:16: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
} else if (sscanf(definition, "%s", name) == 1) {
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:1379:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ps, last_word);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:1385:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(pf, last_word);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:1911:20: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
int argc = sscanf(string, "%s %s", name, info);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catcmds.cpp:204:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, name);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catcmds.cpp:294:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "Select a %s to open:", domain);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catcmds.cpp:376:13: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(title, "Couldn't save! %s", reason);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catcmds.cpp:381:13: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(subtitle, "Save this %s as:", domain);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catcmds.cpp:430:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "Save this %s as:", domain);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catcmds.cpp:449:13: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "\"%s\" already exists.", name);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catcmds.cpp:588:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(cmd, "%s %s", print_cmd, file);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catcmds.cpp:589:12: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
return system(cmd);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/dialogs.cpp:347:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "lpr -P%s", printer_name);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/dialogs.cpp:534:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(spacing, _medit->Text());
data/neuron-7.6.3/ivhines/src/lib/Unidraw/globals.cpp:143:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dup, s);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/import.cpp:88:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (cmd, "uncompress < %s", filename);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/import.cpp:89:16: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
file = popen (cmd, "r");
data/neuron-7.6.3/ivhines/src/lib/Unidraw/import.cpp:159:17: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
if (sscanf(line, "%%%%Creator: %s", creator)) {
data/neuron-7.6.3/ivhines/src/lib/Unidraw/pspaint.cpp:92:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(_printfontandsize, _printfont);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/pspaint.cpp:94:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(_printfontandsize, _printsize);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/stateviews.cpp:220:17: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(buf, name);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/stateviews.cpp:222:17: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(buf, ++relname);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/stateviews.cpp:226:13: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(buf, name);
data/neuron-7.6.3/share/lib/python/neuron/crxd/geometry3d/ctng.cpp:739:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(__PYX_DEFAULT_STRING_ENCODING, default_encoding_c);
data/neuron-7.6.3/share/lib/python/neuron/crxd/geometry3d/graphicsPrimitives.cpp:735:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(__PYX_DEFAULT_STRING_ENCODING, default_encoding_c);
data/neuron-7.6.3/share/lib/python/neuron/crxd/geometry3d/surfaces.cpp:739:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(__PYX_DEFAULT_STRING_ENCODING, default_encoding_c);
data/neuron-7.6.3/share/lib/python/neuron/rxd/geometry3d/ctng.cpp:739:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(__PYX_DEFAULT_STRING_ENCODING, default_encoding_c);
data/neuron-7.6.3/share/lib/python/neuron/rxd/geometry3d/graphicsPrimitives.cpp:735:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(__PYX_DEFAULT_STRING_ENCODING, default_encoding_c);
data/neuron-7.6.3/share/lib/python/neuron/rxd/geometry3d/surfaces.cpp:739:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(__PYX_DEFAULT_STRING_ENCODING, default_encoding_c);
data/neuron-7.6.3/src/ivoc/axis.cpp:207:6: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(str, pform, x);
data/neuron-7.6.3/src/ivoc/axis.cpp:251:6: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(str, pform, y);
data/neuron-7.6.3/src/ivoc/checkpnt.cpp:474:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define DEBUG if(0) fprintf
data/neuron-7.6.3/src/ivoc/checkpnt.cpp:476:15: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define DEBUG fprintf
data/neuron-7.6.3/src/ivoc/checkpnt.cpp:1415:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(s, buf);
data/neuron-7.6.3/src/ivoc/datapath.cpp:266:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(path, "%s%s.", cs.string(), strlist_.item(i));
data/neuron-7.6.3/src/ivoc/datapath.cpp:269:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(path, "%s%s", cs.string(), buf);
data/neuron-7.6.3/src/ivoc/datapath.cpp:330:1: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s%s", sym->name, hoc_araystr(sym, i, od));
data/neuron-7.6.3/src/ivoc/datapath.cpp:340:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s", sym->name);
data/neuron-7.6.3/src/ivoc/datapath.cpp:355:1: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s%s", sym->name, hoc_araystr(sym, i, od));
data/neuron-7.6.3/src/ivoc/datapath.cpp:367:1: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s%s", sym->name, hoc_araystr(sym, i, od));
data/neuron-7.6.3/src/ivoc/datapath.cpp:385:1: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s%s", sym->name, hoc_araystr(sym, i, od));
data/neuron-7.6.3/src/ivoc/datapath.cpp:400:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s[%d]", sym->name, obj->index);
data/neuron-7.6.3/src/ivoc/datapath.cpp:429:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s[%d]", sym_vec->name, obj->index);
data/neuron-7.6.3/src/ivoc/datapath.cpp:539:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s%s", psym->name, hoc_araystr(psym, i, 0));
data/neuron-7.6.3/src/ivoc/datapath.cpp:541:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s%s(%g)", psym->name, hoc_araystr(psym, i, 0), x);
data/neuron-7.6.3/src/ivoc/gifimage.cpp:83:26: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define SetISTR(a,f,c,d) fprintf(stderr, f, c, d)
data/neuron-7.6.3/src/ivoc/gifimage.cpp:320:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy((char *) cmt1, (char *) pinfo->comment);
data/neuron-7.6.3/src/ivoc/gifimage.cpp:321:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat((char *) cmt1, (char *) "\n");
data/neuron-7.6.3/src/ivoc/gifimage.cpp:322:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat((char *) cmt1, (char *) cmt);
data/neuron-7.6.3/src/ivoc/gifimage.cpp:698:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(pinfo->fullInfo,
data/neuron-7.6.3/src/ivoc/gifimage.cpp:704:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(pinfo->shrtInfo, "%dx%d GIF%s.",Width,Height,(gif89) ? "89" : "87");
data/neuron-7.6.3/src/ivoc/graph.cpp:2039:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s(%g, %g, %d)", cross_action_->name(),
data/neuron-7.6.3/src/ivoc/graph.cpp:2075:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "hoc_ac_ = %s\n", family_label_->text());
data/neuron-7.6.3/src/ivoc/graph.cpp:2338:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "save_window_.family(\"%s\")", family_label_->text());
data/neuron-7.6.3/src/ivoc/graph.cpp:2343:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%sappend(save_window_)", var_name_->string());
data/neuron-7.6.3/src/ivoc/graph.cpp:2345:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s = save_window_", var_name_->string());
data/neuron-7.6.3/src/ivoc/graph.cpp:2348:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "save_window_.save_name(\"%s\")",
data/neuron-7.6.3/src/ivoc/graph.cpp:2353:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "save_window_.xexpr(\"%s\", %d)",
data/neuron-7.6.3/src/ivoc/graph.cpp:2409:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s", sc_->selected()->string());
data/neuron-7.6.3/src/ivoc/graph.cpp:2432:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "hoc_ac_ = %s\n", s.string());
data/neuron-7.6.3/src/ivoc/graph.cpp:2456:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "hoc_ac_ = %s\n", fsc_->selected()->string());
data/neuron-7.6.3/src/ivoc/graph.cpp:2679:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "save_window_.addvar(\"%s\", %d, %d, %g, %g, %d)",
data/neuron-7.6.3/src/ivoc/graph.cpp:2688:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "save_window_.addexpr(\"%s\", %d, %d, %g, %g, %d)",
data/neuron-7.6.3/src/ivoc/graph.cpp:2986:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "save_window_.label(%g, %g, \"%s\", %d, %g, %g, %g, %d)",
data/neuron-7.6.3/src/ivoc/grmanip.cpp:397:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, gl_->text());
data/neuron-7.6.3/src/ivoc/idraw.cpp:465:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%%I cbg %s\n%d %d %d SetCBg\nnone SetP %%I p n",
data/neuron-7.6.3/src/ivoc/ivoc.cpp:140:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(m, "%s (See terminal window)", mes);
data/neuron-7.6.3/src/ivoc/ivocmac.cpp:28:8: [4] (tmpfile) mktemp:
Temporary file race condition (CWE-377).
char * mktemp(char *){
data/neuron-7.6.3/src/ivoc/ivocmain.cpp:482:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buffer, "NEURONHOME=%s", NEURON_DATA_DIR);
data/neuron-7.6.3/src/ivoc/ivocmain.cpp:554:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(nrn_props, "%s/%s", neuron_home, "lib/nrn.defaults");
data/neuron-7.6.3/src/ivoc/ivocmain.cpp:562:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(nrn_props, "%s/%s", neuron_home, "lib/nrn.def");
data/neuron-7.6.3/src/ivoc/ivocmain.cpp:564:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(nrn_props, "%s\\%s", neuron_home, "lib\\nrn.def");
data/neuron-7.6.3/src/ivoc/ivocmain.cpp:571:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "Can't load NEURON resources from %s[aults]",
data/neuron-7.6.3/src/ivoc/ivocmain.cpp:582:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(nrn_props, "%s/%s", h, ".nrn.defaults");
data/neuron-7.6.3/src/ivoc/ivocmain.cpp:729:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s/lib/%s", neuron_home, "python2.5");
data/neuron-7.6.3/src/ivoc/ivocvect.cpp:163:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(label_, label);
data/neuron-7.6.3/src/ivoc/ivocvect.cpp:298:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s\\lib\\ocmatrix.dll", neuron_home);
data/neuron-7.6.3/src/ivoc/ivocvect.cpp:758:14: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(f->file(),format,x->elem(i));
data/neuron-7.6.3/src/ivoc/ivocvect.cpp:763:7: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(format,x->elem(i));
data/neuron-7.6.3/src/ivoc/matrix.cpp:133:4: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(f1, m->getval(i, j));
data/neuron-7.6.3/src/ivoc/matrix.cpp:163:4: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(f, f1, m->getval(i, j));
data/neuron-7.6.3/src/ivoc/objcmd.cpp:74:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf,"%s %s",
data/neuron-7.6.3/src/ivoc/objcmd.cpp:79:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s", s_->string());
data/neuron-7.6.3/src/ivoc/objcmd.cpp:100:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "// execute(\"%s\", %p)\n", name(), obj_);
data/neuron-7.6.3/src/ivoc/objcmd.cpp:102:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "{%s}\n", name());
data/neuron-7.6.3/src/ivoc/objcmd.cpp:117:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "{%s}\n", s_->string());
data/neuron-7.6.3/src/ivoc/objcmd.cpp:142:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "{%s}\n", s);
data/neuron-7.6.3/src/ivoc/objcmd.cpp:228:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s(%d, %g, %g, %d)", hc_->name(), e.type(), x, y, kd);
data/neuron-7.6.3/src/ivoc/ocbox.cpp:334:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "execute(\"%s\", %s)", gargstr(1), gargstr(2));
data/neuron-7.6.3/src/ivoc/ocbox.cpp:723:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "\n//Begin %s", window()->name());
data/neuron-7.6.3/src/ivoc/ocbox.cpp:759:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "ocbox_.map(\"%s\", %g, %g, %g, %g)\n}",
data/neuron-7.6.3/src/ivoc/ocbox.cpp:762:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "ocbox_.map(\"%s\", %g, %g, %g, %g)\n}",
data/neuron-7.6.3/src/ivoc/ocbox.cpp:776:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s = ocbox_", hoc_object_pathname(bi_->oc_ref_));
data/neuron-7.6.3/src/ivoc/ocbox.cpp:782:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "//End %s\n", window()->name());
data/neuron-7.6.3/src/ivoc/ocdeck.cpp:326:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "{ocbox_ = %s", bi_->save_action_->string());
data/neuron-7.6.3/src/ivoc/ocdeck.cpp:341:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "ocbox_.map(\"%s\", %g, %g, %g, %g)}",
data/neuron-7.6.3/src/ivoc/ocdeck.cpp:350:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s = ocbox_", hoc_object_pathname(bi_->oc_ref_));
data/neuron-7.6.3/src/ivoc/ocfile.cpp:114:10: [4] (buffer) fscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
int i = fscanf(f->file(), "%s", buf);
data/neuron-7.6.3/src/ivoc/ocfile.cpp:144:19: [4] (tmpfile) mktemp:
Temporary file race condition (CWE-377).
return double(f->mktemp());
data/neuron-7.6.3/src/ivoc/ocfile.cpp:349:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(mode_, type);
data/neuron-7.6.3/src/ivoc/ocfile.cpp:382:14: [4] (tmpfile) mktemp:
Temporary file race condition (CWE-377).
bool OcFile::mktemp() {
data/neuron-7.6.3/src/ivoc/ocfile.h:22:7: [4] (tmpfile) mktemp:
Temporary file race condition (CWE-377).
bool mktemp();
data/neuron-7.6.3/src/ivoc/ochelp.cpp:67:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "?0 %s", hoc_current_xopen());
data/neuron-7.6.3/src/ivoc/ochelp.cpp:88:12: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
FILE* p = popen(cmd, "r");
data/neuron-7.6.3/src/ivoc/ochelp.cpp:113:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s/ochelp", "$NEURONHOME/bin/$CPU");
data/neuron-7.6.3/src/ivoc/ochelp.cpp:114:20: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if ((help_pipe = popen(buf, "w")) == (FILE*)0) {
data/neuron-7.6.3/src/ivoc/ochelp.cpp:130:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "?0 %s", hoc_current_xopen());
data/neuron-7.6.3/src/ivoc/ochelp.cpp:166:1: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s\n", filequeue->item_ref(i).string());
data/neuron-7.6.3/src/ivoc/ochelp.cpp:174:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "?0 %s", hoc_current_xopen());
data/neuron-7.6.3/src/ivoc/ocjump.cpp:28:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(s, stmt);
data/neuron-7.6.3/src/ivoc/ocpointer.cpp:34:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(s_, st);
data/neuron-7.6.3/src/ivoc/pwman.cpp:51:16: [4] (tmpfile) mktemp:
Temporary file race condition (CWE-377).
extern char * mktemp(char *);
data/neuron-7.6.3/src/ivoc/pwman.cpp:71:16: [4] (tmpfile) mktemp:
Temporary file race condition (CWE-377).
extern char * mktemp(char *);
data/neuron-7.6.3/src/ivoc/pwman.cpp:1901:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s %s %s", filt.string(), tmpfile,
data/neuron-7.6.3/src/ivoc/pwman.cpp:1904:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s < %s | %s ; rm %s", filt.string(), tmpfile,
data/neuron-7.6.3/src/ivoc/pwman.cpp:1909:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s %s > %s", filt.string(), tmpfile,
data/neuron-7.6.3/src/ivoc/pwman.cpp:1912:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s < %s > %s ; rm %s", filt.string(), tmpfile,
data/neuron-7.6.3/src/ivoc/pwman.cpp:1917:14: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
nrnignore = system(buf);
data/neuron-7.6.3/src/ivoc/pwman.cpp:2140:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s %s > %s",
data/neuron-7.6.3/src/ivoc/pwman.cpp:2143:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "cat %s > %s; %s < %s > %s",
data/neuron-7.6.3/src/ivoc/pwman.cpp:2147:15: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
nrnignore = system(buf);
data/neuron-7.6.3/src/ivoc/pwman.cpp:2675:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "lpr -P%s", printer_name);
data/neuron-7.6.3/src/ivoc/pwman.cpp:3206:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "{WindowMenu[0].ses_gid(%d, %d, %d, \"%s\")}\n",
data/neuron-7.6.3/src/ivoc/pwman.cpp:3236:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "{load_file(1, \"%s\")}\n", fc_retrieve_->selected()->string());
data/neuron-7.6.3/src/ivoc/pwman.cpp:3270:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "xlabel(\"%s\")", label_.string());
data/neuron-7.6.3/src/ivoc/pwman.cpp:3492:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(title, s);
data/neuron-7.6.3/src/ivoc/pwman.cpp:3584:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "{load_java(\"%s\", \"%s\")}\n",
data/neuron-7.6.3/src/ivoc/pwman.cpp:3588:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "ocbox_ = new %s()\n", ho->ctemplate->sym->name);
data/neuron-7.6.3/src/ivoc/pwman.cpp:3596:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(b2, fname);
data/neuron-7.6.3/src/ivoc/pwman.cpp:3689:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(tmpfile, "%s/%s", tdir, tname);
data/neuron-7.6.3/src/ivoc/pwman.cpp:3692:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(tmpfile, "%s/nrnXXXXXX", tdir);
data/neuron-7.6.3/src/ivoc/pwman.cpp:3700:2: [4] (tmpfile) mktemp:
Temporary file race condition (CWE-377).
mktemp(tmpfile);
data/neuron-7.6.3/src/ivoc/strfun.cpp:364:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(sp->name, name);
data/neuron-7.6.3/src/ivoc/symdir.cpp:41:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(tmp, "%s%s", s1, s2);
data/neuron-7.6.3/src/ivoc/symdir.cpp:306:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s%s", path().string(), name(index).string());
data/neuron-7.6.3/src/ivoc/symdir.cpp:459:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s%s%s%c", parent, name, index, suffix);
data/neuron-7.6.3/src/ivoc/symdir.cpp:554:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "v%s", xarg);
data/neuron-7.6.3/src/ivoc/symdir.cpp:588:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s[all]%s", sym->name, xarg);
data/neuron-7.6.3/src/ivoc/symdir.cpp:591:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s[%d]%s", sym->name, 0, xarg);
data/neuron-7.6.3/src/ivoc/symdir.cpp:593:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s[%d]%s", sym->name, n-1, xarg);
data/neuron-7.6.3/src/ivoc/symdir.cpp:596:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s%s", sym->name, xarg);
data/neuron-7.6.3/src/ivoc/utility.cpp:120:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s already exists: Write?", s);
data/neuron-7.6.3/src/ivoc/utility.cpp:126:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "Couldn't open %s for %sing", s, io);
data/neuron-7.6.3/src/ivoc/utility.cpp:196:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, d->text()->string());
data/neuron-7.6.3/src/ivoc/utility.cpp:306:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s", gargstr(2));
data/neuron-7.6.3/src/ivoc/utility.cpp:345:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, d->text()->string());
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1098:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "xbutton(\"%s\",\"%s\")", getStr(), hideQuote(a_->name()));
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1119:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "xradiobutton(\"%s\",\"%s\")", getStr(), hideQuote(a_->name()));
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1241:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "xmenu(\"%s\", %d)", getStr(), add2menubar_);
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1277:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(nu, "%s (%s)", name, extra->units);
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1348:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "xpanel(\"%s\", %d)", getName(), horizontal_);
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1409:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(path, "%s %s", child, buf);
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1411:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(path, buf);
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1425:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "xlabel(\"%s\")", hideQuote(getStr()));
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1469:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "xvarlabel(%s)", variable_->string());
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1712:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(form, "Permanently replace default value %s with %s",
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1714:3: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(buf, form, deflt_, x);
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1802:3: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(buf, xvalue_format->string(), -8.888888888888888e-18);
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1824:2: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(buf, xvalue_format->string(), Math::abs(x));
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1932:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s = hoc_ac_\n", variable_->string()); oc.run(buf);
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1944:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "hoc_ac_ = %s\n", variable_->string()); oc.run(buf);
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1958:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "hoc_ac_ = %s\n", fe_->text()->string()); oc.run(buf);
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1970:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s = %s\n",
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1973:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "// %p pointer set to %s\n",
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1984:3: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(buf, xvalue_format->string(), hoc_ac_);
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1986:3: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(buf, xvalue_format->string(), *pval_);
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1990:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "hoc_ac_ = %s\n", variable_->string());
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1994:4: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(buf, xvalue_format->string(), hoc_ac_);
data/neuron-7.6.3/src/ivoc/xmenu.cpp:2008:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "hoc_ac_ = %s\n", variable_->string()); oc.run(buf);
data/neuron-7.6.3/src/ivoc/xmenu.cpp:2009:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s = %g", variable_->string(), hoc_ac_);
data/neuron-7.6.3/src/ivoc/xmenu.cpp:2025:1: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "xvalue(\"%s\",\"%s\", %d,\"%s\", %d, %d )", getStr(),
data/neuron-7.6.3/src/ivoc/xmenu.cpp:2044:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "hoc_ac_ = %s\n", variable()); oc.run(buf);
data/neuron-7.6.3/src/ivoc/xmenu.cpp:2045:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s = %g", variable(), hoc_ac_);
data/neuron-7.6.3/src/ivoc/xmenu.cpp:2047:1: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "xvalue(\"%s\",\"%s\", 2 )", getStr(),
data/neuron-7.6.3/src/ivoc/xmenu.cpp:2173:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, s);
data/neuron-7.6.3/src/ivoc/xmenu.cpp:2197:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, s);
data/neuron-7.6.3/src/ivoc/xmenu.cpp:2205:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, s);
data/neuron-7.6.3/src/ivoc/xmenu.cpp:2658:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s = %g\n",
data/neuron-7.6.3/src/ivoc/xmenu.cpp:2723:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "xslider(&%s, %g, %g, \"%s\", %d, %d)",
data/neuron-7.6.3/src/ivoc/xmenu.cpp:2731:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "xslider(&%s, %g, %g, %d, %d)",
data/neuron-7.6.3/src/ivoc/xmenu.cpp:2879:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "xstatebutton(\"%s\",&%s,\"%s\")",
data/neuron-7.6.3/src/ivoc/xmenu.cpp:2885:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "xcheckbox(\"%s\",&%s,\"%s\")",
data/neuron-7.6.3/src/ivoc/xmenu.cpp:3030:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "xcheckbox(\"%s\",&%s,\"%s\")",
data/neuron-7.6.3/src/ivoc/xyview.cpp:755:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(s, "%s %s x %g : %g y %g : %g", type(),
data/neuron-7.6.3/src/memacs/edef.h:158:26: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
#define Strcat cplint = strcat
data/neuron-7.6.3/src/memacs/edef.h:160:26: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
#define Strcpy cplint = strcpy
data/neuron-7.6.3/src/memacs/edef.h:162:27: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
#define Sprintf cplint = sprintf
data/neuron-7.6.3/src/memacs/edef.h:166:17: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
#define Strcat strcat
data/neuron-7.6.3/src/memacs/edef.h:168:17: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
#define Strcpy strcpy
data/neuron-7.6.3/src/memacs/edef.h:170:18: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
#define Sprintf sprintf
data/neuron-7.6.3/src/memacs/ibm.c:93:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s\\lib\\memacs.dll", neuron_home);
data/neuron-7.6.3/src/memacs/spawn.c:130:9: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
IGNORE(system("command.com"));
data/neuron-7.6.3/src/memacs/spawn.c:148:25: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
{IGNORE(system(cp));}
data/neuron-7.6.3/src/memacs/spawn.c:151:25: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
{IGNORE(system("exec /bin/csh"));}
data/neuron-7.6.3/src/memacs/spawn.c:153:25: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
{IGNORE(system("exec /bin/sh"));}
data/neuron-7.6.3/src/memacs/spawn.c:233:13: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
{IGNORE(system(line));}
data/neuron-7.6.3/src/memacs/spawn.c:247:16: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
IGNORE(system(line));
data/neuron-7.6.3/src/mesch/matrix.h:362:27: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
( ( isatty(fileno(fp)) ? fprintf(stderr,prompt) : skipjunk(fp) ), \
data/neuron-7.6.3/src/mesch/matrix.h:363:8: [4] (buffer) fscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
fscanf(fp,fmt,var) )
data/neuron-7.6.3/src/mesch/matrix.h:366:25: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
( isatty(fileno(fp)) ? fprintf(stderr,prompt) : skipjunk(fp) )
data/neuron-7.6.3/src/mesch/matrixio.c:415:9: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(fp,format,a->me[i][j]);
data/neuron-7.6.3/src/mesch/matrixio.c:454:4: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(fp,format,x->ve[i]);
data/neuron-7.6.3/src/mesch/matrixio.c:481:9: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(fp,format,a->me[i][j]);
data/neuron-7.6.3/src/mesch/matrixio.c:520:4: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(fp,format,x->ve[i]);
data/neuron-7.6.3/src/mesch/zmatio.c:306:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(fp,zformat,z.re,z.im);
data/neuron-7.6.3/src/mesch/zmatio.c:326:9: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(fp,zformat,a->me[i][j].re,a->me[i][j].im);
data/neuron-7.6.3/src/mesch/zmatio.c:346:4: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(fp,zformat,x->ve[i].re,x->ve[i].im);
data/neuron-7.6.3/src/mesch/zmatio.c:373:9: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(fp,zformat,a->me[i][j].re,a->me[i][j].im);
data/neuron-7.6.3/src/mesch/zmatio.c:396:4: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(fp,zformat,x->ve[i].re,x->ve[i].im);
data/neuron-7.6.3/src/modlunit/declare.c:223:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, s->name);
data/neuron-7.6.3/src/modlunit/io.c:248:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(prefix, s);
data/neuron-7.6.3/src/modlunit/io.c:272:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(buf, fname);
data/neuron-7.6.3/src/modlunit/io.c:275:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fname, buf);
data/neuron-7.6.3/src/modlunit/io.c:284:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "../%s", fname); /* Next try next dir up. */
data/neuron-7.6.3/src/modlunit/io.c:293:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, dirs);
data/neuron-7.6.3/src/modlunit/io.c:304:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf2, dirs);
data/neuron-7.6.3/src/modlunit/io.c:306:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(buf2, fname);
data/neuron-7.6.3/src/modlunit/io.c:309:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fname, buf2);
data/neuron-7.6.3/src/modlunit/io.c:326:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fname, STR(q) + 1);
data/neuron-7.6.3/src/modlunit/io.c:335:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fsi->finname, finname);
data/neuron-7.6.3/src/modlunit/io.c:342:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(finname, fname);
data/neuron-7.6.3/src/modlunit/io.c:355:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(finname, fsi->finname);
data/neuron-7.6.3/src/modlunit/model.c:144:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(modprefix, "%s", argv[1]);
data/neuron-7.6.3/src/modlunit/model.h:226:26: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
#define Sprintf clint = sprintf
data/neuron-7.6.3/src/modlunit/model.h:227:26: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define Fprintf ilint = fprintf
data/neuron-7.6.3/src/modlunit/model.h:230:25: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define Printf ilint = printf
data/neuron-7.6.3/src/modlunit/model.h:231:25: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
#define Strcpy clint = strcpy
data/neuron-7.6.3/src/modlunit/model.h:232:25: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
#define Strcat clint = strcat
data/neuron-7.6.3/src/modlunit/model.h:243:18: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
#define Sprintf sprintf
data/neuron-7.6.3/src/modlunit/model.h:244:18: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define Fprintf fprintf
data/neuron-7.6.3/src/modlunit/model.h:247:17: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define Printf printf
data/neuron-7.6.3/src/modlunit/model.h:248:17: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
#define Strcpy strcpy
data/neuron-7.6.3/src/modlunit/model.h:249:17: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
#define Strcat strcat
data/neuron-7.6.3/src/modlunit/parse1.c:1487:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
# define YYFPRINTF fprintf
data/neuron-7.6.3/src/modlunit/units.c:136:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, hoc_dos2unixpath(u));
data/neuron-7.6.3/src/modlunit/units.c:519:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s/lib/nrnunits.lib", s);
data/neuron-7.6.3/src/modlunit/units.c:634:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(ucp,"%s", unames[i]);
data/neuron-7.6.3/src/mswin/extra/d2upath.c:37:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(u+i, d+j);
data/neuron-7.6.3/src/mswin/extra/hel2mos.cpp:54:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s/lib/helpdict", neuronhome());
data/neuron-7.6.3/src/mswin/extra/hel2mos.cpp:58:1: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "Can't open %s\n", sf.string());
data/neuron-7.6.3/src/mswin/extra/hel2mos.cpp:86:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "^%s ", key);
data/neuron-7.6.3/src/mswin/extra/hel2mos.cpp:122:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf2,buf);
data/neuron-7.6.3/src/mswin/extra/hel2mos.cpp:123:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf1, neuronhome());
data/neuron-7.6.3/src/mswin/extra/hel2mos.cpp:132:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "file:///%s/html/help/%s", buf1, buf2);
data/neuron-7.6.3/src/mswin/extra/hel2mos.cpp:155:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, p+1);
data/neuron-7.6.3/src/mswin/extra/hel2mos.cpp:157:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, p);
data/neuron-7.6.3/src/mswin/extra/hel2mos.cpp:176:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf1, "%s/lib/nrn.def", buf);
data/neuron-7.6.3/src/mswin/extra/hel2mos.cpp:178:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf1, "%s/lib/nrn.defaults", buf);
data/neuron-7.6.3/src/mswin/extra/hel2mos.cpp:180:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf1, "%s not valid neuronhome\n", buf);
data/neuron-7.6.3/src/mswin/extra/hel2mos.cpp:186:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf1, "NEURONHOME=%s", buf);
data/neuron-7.6.3/src/mswin/extra/hel2mos.cpp:218:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf1, "%s/bin/hel2mos1.sh \"%s\"", neuronhome(), url+start);
data/neuron-7.6.3/src/mswin/extra/hel2mos.cpp:221:2: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
system(buf1);
data/neuron-7.6.3/src/mswin/extra/mos2nrn.cpp:22:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(nrnhome, buf);
data/neuron-7.6.3/src/mswin/extra/mos2nrn.cpp:74:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s\\mingw\\bin\\bash.exe %s/lib/mos2nrn3.sh %s %s %s", nrnhome, nh, temp, nh, args);
data/neuron-7.6.3/src/mswin/extra/mos2nrn.cpp:76:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s\\bin\\sh %s/lib/mos2nrn.sh %s %s", nrnhome, nh, nh, args);
data/neuron-7.6.3/src/mswin/extra/mos2nrn.cpp:79:8: [4] (shell) WinExec:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
err = WinExec(buf, SW_SHOW);
data/neuron-7.6.3/src/mswin/extra/mos2nrn.cpp:81:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(msg, "Cannot WinExec %s\n", buf);
data/neuron-7.6.3/src/mswin/extra/ms1.cpp:59:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(szDDEData, "%s,,0xFFFFFFFF,0x0,,", name);
data/neuron-7.6.3/src/mswin/extra/neuron.cpp:26:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(nrnhome, buf);
data/neuron-7.6.3/src/mswin/extra/neuron.cpp:85:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s\\mingw\\usr\\bin\\bash.exe -i %s/lib/neuron3.sh %s nrngui %s", nrnhome, nh, nh, args);
data/neuron-7.6.3/src/mswin/extra/neuron.cpp:88:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s\\bin\\mintty -c %s/lib/minttyrc %s/bin/bash --rcfile %s/lib/nrnstart.bsh %s/lib/neuron.sh %s %s", nrnhome, nh, nh, nh, nh, nh, args);
data/neuron-7.6.3/src/mswin/extra/neuron.cpp:91:8: [4] (shell) WinExec:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
err = WinExec(buf, SW_SHOW);
data/neuron-7.6.3/src/mswin/extra/neuron.cpp:93:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(msg, "Cannot WinExec %s\n", buf);
data/neuron-7.6.3/src/mswin/extra/rundemo.cpp:5:2: [4] (shell) WinExec:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
WinExec("\\nrn\\bin\\neuron.exe -dll release/nrnmech.dll demo.hoc",
data/neuron-7.6.3/src/mswin/extra/splitnrn.c:16:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s.zip", argv[1]);
data/neuron-7.6.3/src/mswin/extra/splitnrn.c:24:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s.z%d", argv[1], n);
data/neuron-7.6.3/src/mswin/extra/winmain.c:15:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, GetCommandLine());
data/neuron-7.6.3/src/mswin/mwprefix.h:26:9: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define printf myprintf
data/neuron-7.6.3/src/mswin/mwprefix.h:27:9: [4] (format) vprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define vprintf myvprintf
data/neuron-7.6.3/src/mswin/mwprefix.h:30:9: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define fprintf myfprintf
data/neuron-7.6.3/src/mswin/nrnconf.h:9:20: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define yyoverflow printf
data/neuron-7.6.3/src/mswin/nrnconf.h:22:9: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define printf myprintf
data/neuron-7.6.3/src/mswin/nrnconf.h:23:9: [4] (format) vprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define vprintf myvprintf
data/neuron-7.6.3/src/mswin/nrnconf.h:26:9: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define fprintf myfprintf
data/neuron-7.6.3/src/mswin/rdln/chardefs.h:5:31: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
#define savestring(x) (char *)strcpy (xmalloc (1 + strlen (x)), (x))
data/neuron-7.6.3/src/mswin/rdln/history.c:67:31: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
#define savestring(x) (char *)strcpy (xmalloc (1 + strlen (x)), (x))
data/neuron-7.6.3/src/mswin/rdln/history.c:450:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (return_val, "%s/.history", home);
data/neuron-7.6.3/src/mswin/rdln/history.c:644:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (buffer + j, the_history[i]->line);
data/neuron-7.6.3/src/mswin/rdln/history.c:978:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (format_string, "%c%c:s%s",
data/neuron-7.6.3/src/mswin/rdln/history.c:1073:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (result, "%s: %s.", temp,
data/neuron-7.6.3/src/mswin/rdln/history.c:1101:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (temp, word_spec);
data/neuron-7.6.3/src/mswin/rdln/history.c:1246:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (temp, result);
data/neuron-7.6.3/src/mswin/rdln/history.c:1276:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (result + (j - strlen (temp)), temp);
data/neuron-7.6.3/src/mswin/rdln/history.c:1453:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (result + offset, list[i]);
data/neuron-7.6.3/src/mswin/rdln/history.c:1666:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (line, expansion);
data/neuron-7.6.3/src/mswin/rdln/readline.c:547:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (the_line, temp);
data/neuron-7.6.3/src/mswin/rdln/readline.c:2066:3: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf (msg_buf, string, arg1, arg2);
data/neuron-7.6.3/src/mswin/rdln/readline.c:4053:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (replacement + 1, matches[0]);
data/neuron-7.6.3/src/mswin/rdln/readline.c:4343:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (value + first_char_loc, entry->pw_name);
data/neuron-7.6.3/src/mswin/rdln/readline.c:4574:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (the_line, saved_line_for_history->line);
data/neuron-7.6.3/src/mswin/rdln/readline.c:4651:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (the_line, temp->line);
data/neuron-7.6.3/src/mswin/rdln/readline.c:4710:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (the_line, temp->line);
data/neuron-7.6.3/src/mswin/rdln/readline.c:4779:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat (message, search_string);
data/neuron-7.6.3/src/mswin/rdln/readline.c:4845:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (lines[i], &the_line[0]);
data/neuron-7.6.3/src/mswin/rdln/readline.c:4905:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (the_line, lines[orig_line]);
data/neuron-7.6.3/src/mswin/rdln/readline.c:5009:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (the_line, lines[i]);
data/neuron-7.6.3/src/mswin/rdln/readline.c:5029:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (the_line, lines[orig_line]);
data/neuron-7.6.3/src/mswin/rdln/readline.c:5150:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (new, old);
data/neuron-7.6.3/src/mswin/rdln/readline.c:5151:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat (new, text);
data/neuron-7.6.3/src/mswin/rdln/readline.c:5155:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (new, text);
data/neuron-7.6.3/src/mswin/rdln/readline.c:5156:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat (new, old);
data/neuron-7.6.3/src/mswin/rdln/readline.c:5490:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (filename, ++temp);
data/neuron-7.6.3/src/mswin/rdln/readline.c:5562:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (temp, users_dirname);
data/neuron-7.6.3/src/mswin/rdln/readline.c:5563:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat (temp, entry->d_name);
data/neuron-7.6.3/src/mswin/rdln/readline.c:6459:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat (keyname, seqs[i]);
data/neuron-7.6.3/src/mswin/windll/dll.cpp:41:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(p, s);
data/neuron-7.6.3/src/mswin/windll/dll.cpp:61:17: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define PRDEBUG printf(
data/neuron-7.6.3/src/mswin/windll/dll.cpp:66:17: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define PRDEBUG fprintf(prdebug_,
data/neuron-7.6.3/src/mswin/windll/dll.cpp:294:7: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (access(fn,0) == 0)
data/neuron-7.6.3/src/mswin/windll/dll.cpp:299:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, dll_argv0);
data/neuron-7.6.3/src/mswin/windll/dll.cpp:304:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ep, fn);
data/neuron-7.6.3/src/mswin/windll/dll.cpp:306:9: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (access(buf, 0) == 0)
data/neuron-7.6.3/src/mswin/windll/dll.cpp:317:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(pp, fn);
data/neuron-7.6.3/src/mswin/windll/dll.cpp:319:9: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (access(buf, 0) == 0)
data/neuron-7.6.3/src/mswin/windll/dll.cpp:692:47: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
PRDEBUG "printf=%08x *printf=%02x\n", (long)printf, *((char*)printf)&0xff);
data/neuron-7.6.3/src/mswin/windll/dll.cpp:692:64: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
PRDEBUG "printf=%08x *printf=%02x\n", (long)printf, *((char*)printf)&0xff);
data/neuron-7.6.3/src/mswin/windll/nrnmech.h:163:22: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
MKDLLdec("_fprintf", fprintf)
data/neuron-7.6.3/src/mswin/windll/nrnmech.h:169:21: [4] (buffer) fscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
MKDLLdec("_fscanf", fscanf)
data/neuron-7.6.3/src/mswin/windll/nrnmech.h:174:21: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
MKDLLdec("_printf", printf)
data/neuron-7.6.3/src/mswin/windll/nrnmech.h:177:22: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
MKDLLdec("_sprintf", sprintf)
data/neuron-7.6.3/src/mswin/windll/nrnmech.h:178:21: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
MKDLLdec("_sscanf", sscanf)
data/neuron-7.6.3/src/mswin/windll/nrnmech.h:179:21: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
MKDLLdec("_strcat", strcat)
data/neuron-7.6.3/src/mswin/windll/nrnmech.h:181:21: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
MKDLLdec("_strcpy", strcpy)
data/neuron-7.6.3/src/mswin/windll/nrnmech.h:186:21: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
MKDLLdec("_system", system)
data/neuron-7.6.3/src/mswin/windll/ocmatdll.h:2:21: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
MKDLLdec("_sprintf",sprintf)
data/neuron-7.6.3/src/mswin/windll/ocmatdll.h:22:20: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
MKDLLdec("_sscanf",sscanf)
data/neuron-7.6.3/src/mswin/windll/ocmatdll.h:34:20: [4] (buffer) fscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
MKDLLdec("_fscanf",fscanf)
data/neuron-7.6.3/src/mswin/wnrnbbs/ddeclnt.c:49:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(szDDEString, "%s", data);
data/neuron-7.6.3/src/mswin/wnrnbbs/ddeclnt.c:74:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(val, szDDEData+1);
data/neuron-7.6.3/src/mswin/wnrnbbs/ddeclnt.c:80:2: [4] (shell) WinExec:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
WinExec(cmd, SW_SHOW);
data/neuron-7.6.3/src/mswin/wnrnbbs/ddeclnt.c:128:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s\\bin\\nrnbbs", getenv("NEURONHOME"));
data/neuron-7.6.3/src/mswin/wnrnbbs/ddeclnt.c:129:5: [4] (shell) WinExec:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
WinExec(buf, SW_MINIMIZE);
data/neuron-7.6.3/src/mswin/wnrnbbs/ddeclnt.c:188:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(szDDEData, "%d%s", look, name);
data/neuron-7.6.3/src/mswin/wnrnbbs/ddesrvr.c:364:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy ( szScreenText[cCurrentLine], szOutputString );
data/neuron-7.6.3/src/mswin/wnrnbbs/nrnbbs.cpp:63:1: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%d post |%s| |%s|", bi_->ml_.count(), name, value);
data/neuron-7.6.3/src/mswin/wnrnbbs/nrnbbs.cpp:75:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%d |%s| |%s|", i+1, m->name(), m->value());
data/neuron-7.6.3/src/mswin/wnrnbbs/nrnbbs.cpp:84:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(value, "1%s", bi_->ml_.item(i)->value());
data/neuron-7.6.3/src/mswin/wnrnbbs/nrnbbs.cpp:88:1: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%d take |%s| |%s|", bi_->ml_.count(), name, value);
data/neuron-7.6.3/src/mswin/wnrnbbs/nrnbbs.cpp:94:1: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%d look |%s| |%s|", bi_->ml_.count(), name, value);
data/neuron-7.6.3/src/mswin/wnrnbbs/nrnbbs.cpp:114:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(value, "1%s", bi_->ml_.item(i)->value());
data/neuron-7.6.3/src/neuronmusic/neuronmusic.cpp:735:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(__PYX_DEFAULT_STRING_ENCODING, default_encoding_c);
data/neuron-7.6.3/src/nmodl/deriv.c:48:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, " %s();\n", fun->name);
data/neuron-7.6.3/src/nmodl/deriv.c:50:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, " %s(_p, _ppvar, _thread, _nt);\n", fun->name);
data/neuron-7.6.3/src/nmodl/deriv.c:248:6: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
if(sscanf(prime->name + 1, "%d%s", &maxindx, name) != 2) {
data/neuron-7.6.3/src/nmodl/deriv.c:992:2: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
sscanf(ds->name, "D%s", buf);
data/neuron-7.6.3/src/nmodl/deriv.c:1065:1: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf," __primary -= 0.5*dt*( %s )", b);
data/neuron-7.6.3/src/nmodl/deriv.c:1067:1: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf," %s = %s - dt*(%s)", s->name, s->name, b);
data/neuron-7.6.3/src/nmodl/deriv.c:1069:1: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf," __primary += ( 1. - exp( 0.5*dt*( %s ) ) )*( %s - __primary )",
data/neuron-7.6.3/src/nmodl/deriv.c:1073:1: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf," %s = %s + (1. - exp(dt*(%s)))*(%s - %s)",
data/neuron-7.6.3/src/nmodl/diffeq.c:89:12: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
#define b1 sprintf(lbuf[0],
data/neuron-7.6.3/src/nmodl/diffeq.c:90:12: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
#define b2 sprintf(lbuf[1],
data/neuron-7.6.3/src/nmodl/diffeq.c:91:12: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
#define b3 sprintf(lbuf[2],
data/neuron-7.6.3/src/nmodl/diffeq.c:92:12: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
#define b4 sprintf(lbuf[3],
data/neuron-7.6.3/src/nmodl/diffeq.c:616:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
# define YYFPRINTF fprintf
data/neuron-7.6.3/src/nmodl/diffeq.c:1723:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, SYM(q)->name);
data/neuron-7.6.3/src/nmodl/diffeq.c:1730:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(buf, SYM(q)->name);
data/neuron-7.6.3/src/nmodl/diffeq.c:1737:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(buf, STR(q));
data/neuron-7.6.3/src/nmodl/io.c:222:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf,"at line %d in file %s:\\n%s", linenum-1, finname,
data/neuron-7.6.3/src/nmodl/io.c:316:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(prefix, s);
data/neuron-7.6.3/src/nmodl/io.c:340:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(buf, fname);
data/neuron-7.6.3/src/nmodl/io.c:343:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fname, buf);
data/neuron-7.6.3/src/nmodl/io.c:352:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "../%s", fname); /* Next try next dir up. */
data/neuron-7.6.3/src/nmodl/io.c:361:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, dirs);
data/neuron-7.6.3/src/nmodl/io.c:372:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf2, dirs);
data/neuron-7.6.3/src/nmodl/io.c:374:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(buf2, fname);
data/neuron-7.6.3/src/nmodl/io.c:377:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fname, buf2);
data/neuron-7.6.3/src/nmodl/io.c:394:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fname, STR(q) + 1);
data/neuron-7.6.3/src/nmodl/io.c:403:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fsi->finname, finname);
data/neuron-7.6.3/src/nmodl/io.c:410:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(finname, fname);
data/neuron-7.6.3/src/nmodl/io.c:423:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(finname, fsi->finname);
data/neuron-7.6.3/src/nmodl/kinetic.c:267:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "nrn_nernst_coef(_type_%s)*(%s _ion_d%sdv %s)",
data/neuron-7.6.3/src/nmodl/kinetic.c:1634:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "+ %s", r1->rterm[i]->str);
data/neuron-7.6.3/src/nmodl/kinetic.c:1640:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "+ %s", r1->rterm[(i+1)%2]->str);
data/neuron-7.6.3/src/nmodl/kinetic.c:1643:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, ", %s);\n", r1->krate[i]);
data/neuron-7.6.3/src/nmodl/modl.c:115:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(argv[1], cp+1);
data/neuron-7.6.3/src/nmodl/modl.c:213:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(modprefix, "%s", argv[1]);
data/neuron-7.6.3/src/nmodl/modl.h:212:17: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
extern char *sprintf();
data/neuron-7.6.3/src/nmodl/modl.h:275:26: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
#define Sprintf clint = sprintf
data/neuron-7.6.3/src/nmodl/modl.h:276:26: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define Fprintf ilint = fprintf
data/neuron-7.6.3/src/nmodl/modl.h:279:25: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define Printf ilint = printf
data/neuron-7.6.3/src/nmodl/modl.h:280:25: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
#define Strcpy clint = strcpy
data/neuron-7.6.3/src/nmodl/modl.h:281:25: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
#define Strcat clint = strcat
data/neuron-7.6.3/src/nmodl/modl.h:293:18: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
#define Sprintf sprintf
data/neuron-7.6.3/src/nmodl/modl.h:294:18: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define Fprintf fprintf
data/neuron-7.6.3/src/nmodl/modl.h:297:17: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define Printf printf
data/neuron-7.6.3/src/nmodl/modl.h:298:17: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
#define Strcpy strcpy
data/neuron-7.6.3/src/nmodl/modl.h:299:17: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
#define Strcat strcat
data/neuron-7.6.3/src/nmodl/netrec_discon.c:125:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf,
data/neuron-7.6.3/src/nmodl/netrec_discon.c:185:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf,
data/neuron-7.6.3/src/nmodl/noccout.c:566:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(buf, SYM(q)->name);
data/neuron-7.6.3/src/nmodl/noccout.c:568:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(buf, STR(q));
data/neuron-7.6.3/src/nmodl/noccout.c:1016:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, " _rhs = %s", breakpoint_current(SYM(q))->name);
data/neuron-7.6.3/src/nmodl/noccout.c:1018:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, " + %s", breakpoint_current(SYM(q))->name);
data/neuron-7.6.3/src/nmodl/noccout.c:1030:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, " _g = %s", SYM(q)->name);
data/neuron-7.6.3/src/nmodl/noccout.c:1032:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, " + %s", SYM(q)->name);
data/neuron-7.6.3/src/nmodl/noccout.c:1044:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, " _ion_di%sdv += %s", SYM(q->next)->name, SYM(q)->name);
data/neuron-7.6.3/src/nmodl/nocpout.c:251:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(suffix,"_%s", modbase);
data/neuron-7.6.3/src/nmodl/nocpout.c:258:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(suffix, "_%s", mechname);
data/neuron-7.6.3/src/nmodl/nocpout.c:283:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "\n\
data/neuron-7.6.3/src/nmodl/nocpout.c:297:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "\n#define %s %s_%s", s->name, s->name, suffix);
data/neuron-7.6.3/src/nmodl/nocpout.c:532:1: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "#define %s (_thread[%d]._pval + %d)\n", SYM(q)->name, thread_data_index, cnt);
data/neuron-7.6.3/src/nmodl/nocpout.c:535:1: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "#define %s _thread[%d]._pval[%d]\n", SYM(q)->name, thread_data_index, cnt);
data/neuron-7.6.3/src/nmodl/nocpout.c:540:1: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "static double %s[%d];\n", SYM(q)->name, SYM(q)->araydim);
data/neuron-7.6.3/src/nmodl/nocpout.c:542:1: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "static double %s;\n", SYM(q)->name);
data/neuron-7.6.3/src/nmodl/nocpout.c:577:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "#define %s%s (_thread1data + %d)\n\
data/neuron-7.6.3/src/nmodl/nocpout.c:581:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "#define %s%s _thread1data[%d]\n\
data/neuron-7.6.3/src/nmodl/nocpout.c:806:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "static int _type_i%s;\n", sion->name);
data/neuron-7.6.3/src/nmodl/nocpout.c:883:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, " _type_i%s = prop_ion->_type;\n", sion->name);
data/neuron-7.6.3/src/nmodl/nocpout.c:1051:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "\
data/neuron-7.6.3/src/nmodl/nocpout.c:1062:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "\
data/neuron-7.6.3/src/nmodl/nocpout.c:1095:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, " hoc_register_dparam_semantics(_mechtype, %d, \"%s\");\n",
data/neuron-7.6.3/src/nmodl/nocpout.c:1192:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "\thoc_reg_ba(_mechtype, _ba%d, %s);\n", i, STR(q));
data/neuron-7.6.3/src/nmodl/nocpout.c:1211:1: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf1, "\tivoc_help(\"help ?1 %s %s/%s\\n\");\n", mechname, buf, finname);
data/neuron-7.6.3/src/nmodl/nocpout.c:1302:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, ";\n\
data/neuron-7.6.3/src/nmodl/nocpout.c:1341:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "D%s", s->name);
data/neuron-7.6.3/src/nmodl/nocpout.c:1443:8: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
i = sscanf(sym->u.str, "[%*d]\n%lf\n%s", pg1, s);
data/neuron-7.6.3/src/nmodl/nocpout.c:1445:8: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
i = sscanf(sym->u.str, "%lf\n%s", pg1, s);
data/neuron-7.6.3/src/nmodl/nocpout.c:1471:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "\"%s%s\", \"%s\",\n", s->name, suffix, u);
data/neuron-7.6.3/src/nmodl/nocpout.c:1480:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "\"%s%s\", \"%s\",\n", s->name, rsuffix, u);
data/neuron-7.6.3/src/nmodl/nocpout.c:1488:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "\"%s%s\", \"%s\",\n", s->name, rsuffix, u);
data/neuron-7.6.3/src/nmodl/nocpout.c:1496:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "\"%s%s\", \"%s\",\n", s->name, rsuffix, u);
data/neuron-7.6.3/src/nmodl/nocpout.c:1504:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "\"%s%s\", \"%s\",\n", s->name, rsuffix, u);
data/neuron-7.6.3/src/nmodl/nocpout.c:2003:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(ionname, "%s_ion", sion->name);
data/neuron-7.6.3/src/nmodl/nocpout.c:2011:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, " nrn_update_ion_pointer(_%s_sym, _ppvar, %d, %d);\n",
data/neuron-7.6.3/src/nmodl/nocpout.c:2027:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, " nrn_update_ion_pointer(_%s_sym, _ppvar, %d, %d);\n",
data/neuron-7.6.3/src/nmodl/nocpout.c:2040:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, " nrn_update_ion_pointer(_%s_sym, _ppvar, %d, 4);\n",
data/neuron-7.6.3/src/nmodl/nocpout.c:2054:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "#%s", ionname);
data/neuron-7.6.3/src/nmodl/nocpout.c:2063:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, " nrn_update_ion_pointer(_%s_sym, _ppvar, %d, 4);\n",
data/neuron-7.6.3/src/nmodl/nocpout.c:2300:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "\t_pv[%d] = &(_ion_%s);\n",
data/neuron-7.6.3/src/nmodl/nocpout.c:2318:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "_ion_%s = ", SYM(q2)->name);
data/neuron-7.6.3/src/nmodl/nocpout.c:2328:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s;\n", s);
data/neuron-7.6.3/src/nmodl/nocpout.c:2368:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "\n\
data/neuron-7.6.3/src/nmodl/nocpout.c:2473:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "\n\
data/neuron-7.6.3/src/nmodl/nocpout.c:2634:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s %s = _ion_%s;\n", (j==0)?"\n":"", ions[j]->name, ions[j]->name);
data/neuron-7.6.3/src/nmodl/nocpout.c:2639:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s _ion_%s = %s;\n", (j==0)?"\n":"", ions[j]->name, ions[j]->name);
data/neuron-7.6.3/src/nmodl/nocpout.c:2709:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "Assignment to the GLOBAL variable, \"%s\", is not thread safe", s->name);
data/neuron-7.6.3/src/nmodl/parsact.c:589:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "\nstatic void %s(double*, Datum*, Datum*, _NrnThread*);", STR(q));
data/neuron-7.6.3/src/nmodl/parsact.c:594:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, " %s(_p, _ppvar, _thread, _nt);\n", STR(q));
data/neuron-7.6.3/src/nmodl/parsact.c:630:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "_check_%s();\n", fname);
data/neuron-7.6.3/src/nmodl/parsact.c:632:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "_check_%s(_p, _ppvar, _thread, _nt);\n", fname);
data/neuron-7.6.3/src/nmodl/parsact.c:690:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "_check_%s", fname);
data/neuron-7.6.3/src/nmodl/parsact.c:991:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf,"\n#if 1\n _check_%s(_p, _ppvar, _thread, _nt);\n#endif\n", n->name);
data/neuron-7.6.3/src/nmodl/parsact.c:1140:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "_arg[%d] = %s;\n", i, SYM(q)->name);
data/neuron-7.6.3/src/nmodl/parsact.c:1150:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "return hoc_func_table(_ptable_%s, %d, _arg);\n", s->name, i);
data/neuron-7.6.3/src/nmodl/parsact.c:1155:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "table_%s", s->name);
data/neuron-7.6.3/src/nmodl/parsact.c:1162:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf,"double %s", t->name);
data/neuron-7.6.3/src/nmodl/parsact.c:1166:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf,"{\n\thoc_spec_table(&_ptable_%s, %d);\n\treturn 0.;\n}\n",
data/neuron-7.6.3/src/nmodl/parsact.c:1169:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "\nstatic void* _ptable_%s = (void*)0;\n", s->name);
data/neuron-7.6.3/src/nmodl/parsact.c:1198:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf,
data/neuron-7.6.3/src/nmodl/parse1.c:1560:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
# define YYFPRINTF fprintf
data/neuron-7.6.3/src/nmodl/solve.c:118:1: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "if(error){fprintf(stderr,\"%s\\n\"); nrn_complain(_p); abort_run(error);}\n",
data/neuron-7.6.3/src/nrncvode/hocevent.cpp:171:11: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
assert(sscanf(buf, "%s %d\n", objname, &index) == 1);
data/neuron-7.6.3/src/nrncvode/netcvode.cpp:3288:9: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
assert(sscanf(buf, "%s %d %d %d %d %lf\n", ppname, &ppindex, &pptype, &ncindex, &moff, &flag) == 6);
data/neuron-7.6.3/src/nrncvode/netcvode.cpp:4379:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s.%s", memb_func[sym->u.rng.type].sym->name, sym->name);
data/neuron-7.6.3/src/nrncvode/netcvode.cpp:4388:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, name);
data/neuron-7.6.3/src/nrncvode/netcvode.cpp:4516:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s.x", hoc_object_name(osrc));
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:461:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(cp, buf);
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1009:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(name, "bbsavestate_%s", memb_func[im].sym->name);
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1543:15: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
if (debug) { sprintf(dbuf, "Enter gidobj(%d, %s)", gid, hoc_object_name(obj)); PDEBUG; }
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1553:15: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
if (debug) { sprintf(dbuf, "Leave gidobj(%d, %s)", gid, hoc_object_name(obj)); PDEBUG; }
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1557:15: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
if (debug) { sprintf(dbuf, "Enter cellsize(%s)", hoc_object_name(c)); PDEBUG; }
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1567:15: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
if (debug) { sprintf(dbuf, "Leave cellsize(%s)", hoc_object_name(c)); PDEBUG; }
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1582:15: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
if (debug) { sprintf(dbuf, "Enter cell(%s)", hoc_object_name(c)); PDEBUG; }
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1584:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s", hoc_object_name(c));
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1640:15: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
if (debug) { sprintf(dbuf, "Leave cell(%s)", hoc_object_name(c)); PDEBUG; }
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1646:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s", sym->name);
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1655:15: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
if (debug) { sprintf(dbuf, "Enter section(%s)", sec->prop->dparam[0].sym->name); PDEBUG; }
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1658:15: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
if (debug) { sprintf(dbuf, "Leave section(%s)", sec->prop->dparam[0].sym->name); PDEBUG; }
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1662:20: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
if (debug == 1) { sprintf(dbuf, "Enter sectionsize(%s)", sec->prop->dparam[0].sym->name); PDEBUG; }
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1673:20: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
if (debug == 1) { sprintf(dbuf, "Leave sectionsize(%s)", sec->prop->dparam[0].sym->name); PDEBUG; }
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1678:15: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
if (debug) { sprintf(dbuf, "Enter seccontents(%s)", sec->prop->dparam[0].sym->name); PDEBUG; }
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1690:15: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
if (debug) { sprintf(dbuf, "Leave seccontents(%s)", sec->prop->dparam[0].sym->name); PDEBUG; }
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1763:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "//%s", memb_func[type].sym->name);
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1824:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s", hoc_object_name(pp->ob));
data/neuron-7.6.3/src/nrniv/hocmech.cpp:221:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(parnames, gargstr(3));
data/neuron-7.6.3/src/nrniv/hocmech.cpp:236:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s_%s", sp->name, m[1]);
data/neuron-7.6.3/src/nrniv/hocmech.cpp:260:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(parnames, gargstr(2));
data/neuron-7.6.3/src/nrniv/hocmech.cpp:352:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(cc, mname); m[i] = cc;
data/neuron-7.6.3/src/nrniv/hocmech.cpp:381:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s_%s", cp, m[1]);
data/neuron-7.6.3/src/nrniv/hocmech.cpp:384:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s", cp);
data/neuron-7.6.3/src/nrniv/hocmech.cpp:394:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(cc, "%s[%d]", buf, imax);
data/neuron-7.6.3/src/nrniv/hocmech.cpp:396:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(cc, "%s", buf);
data/neuron-7.6.3/src/nrniv/hocmech.cpp:408:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s_%s", sp->name, m[1]);
data/neuron-7.6.3/src/nrniv/hocmech.cpp:411:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s", sp->name);
data/neuron-7.6.3/src/nrniv/hocmech.cpp:427:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(cc, "%s[%d]", buf, imax);
data/neuron-7.6.3/src/nrniv/hocmech.cpp:429:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(cc, "%s", buf);
data/neuron-7.6.3/src/nrniv/kschan.cpp:38:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s is not a %s", o->ctemplate->sym->name, s->name);
data/neuron-7.6.3/src/nrniv/kschan.cpp:915:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s_ion", ion_.string());
data/neuron-7.6.3/src/nrniv/kschan.cpp:926:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(unsuffix, "_%s", name_.string());
data/neuron-7.6.3/src/nrniv/kschan.cpp:933:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "gmax%s", unsuffix);
data/neuron-7.6.3/src/nrniv/kschan.cpp:937:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "e%s", unsuffix);
data/neuron-7.6.3/src/nrniv/kschan.cpp:942:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "g%s", unsuffix);
data/neuron-7.6.3/src/nrniv/kschan.cpp:944:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "i%s", unsuffix);
data/neuron-7.6.3/src/nrniv/kschan.cpp:973:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(old_suffix, "%s%d", s, i);
data/neuron-7.6.3/src/nrniv/kschan.cpp:980:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(old_suffix, "_%s", mechsym_->name);
data/neuron-7.6.3/src/nrniv/kschan.cpp:998:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(s1 + nbase, "_%s", suffix);
data/neuron-7.6.3/src/nrniv/kschan.cpp:1192:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "e_%s", rlsym_->name);
data/neuron-7.6.3/src/nrniv/kschan.cpp:1215:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s_ion", s);
data/neuron-7.6.3/src/nrniv/kschan.cpp:1334:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s_ion", lig);
data/neuron-7.6.3/src/nrniv/kschan.cpp:1421:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, lig);
data/neuron-7.6.3/src/nrniv/kschan.cpp:1965:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(unsuffix, "_%s", mechsym_->name);
data/neuron-7.6.3/src/nrniv/kschan.cpp:2001:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s%s", state_[i].string(), unsuffix);
data/neuron-7.6.3/src/nrniv/kschan.cpp:2005:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf1, "%s%d", state_[i].string(), j++);
data/neuron-7.6.3/src/nrniv/kschan.cpp:2006:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s%s", buf1, unsuffix);
data/neuron-7.6.3/src/nrniv/nrnbbcore_write.cpp:202:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(path, hoc_gargstr(1));
data/neuron-7.6.3/src/nrniv/nrnbbcore_write.cpp:207:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(fname, "%s/%s", path, "byteswap1.dat");
data/neuron-7.6.3/src/nrniv/nrnbbcore_write.cpp:210:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(fname, "%s/%s", path, "bbcore_mech.dat");
data/neuron-7.6.3/src/nrniv/nrnbbcore_write.cpp:213:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(fname, "%s/%s", path, "globals.dat");
data/neuron-7.6.3/src/nrniv/nrnbbcore_write.cpp:956:13: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(n, "%s[%d]", sp->name, i);
data/neuron-7.6.3/src/nrniv/nrnbbcore_write.cpp:1358:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(fname, "%s/%d_1.dat", path, cg.group_id);
data/neuron-7.6.3/src/nrniv/nrnbbcore_write.cpp:1375:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(fname, "%s/%d_2.dat", path, cg.group_id);
data/neuron-7.6.3/src/nrniv/nrnbbcore_write.cpp:1801:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s and %s", bbcore_write_version, cnver);
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:89:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(suffix, "_%s", name);
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:111:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "nrnglobalmechmenu(\"%s\")", sp->name);
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:120:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(suffix, "_%s", name);
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:133:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s (Globals)", name);
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:145:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s[%d]", sp->name, i);
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:146:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(n, "%s[%d]", sp->name, i);
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:194:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s(%g) %s", name, x, btype.string());
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:196:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s(0 - 1) %s", name, btype.string());
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:207:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s.L", sname.string());
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:213:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s.Ra += 0", sname.string());
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:222:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf,"%s.%s", sname.string(), "v");
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:255:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf,
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:290:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(n, "%s[%d]", vsym->name, i);
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:293:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s.%s", path, n);
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:296:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s is not constant", n);
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:300:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s[%d](%g)",vsym->name, i, x);
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:307:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s.%s", path, vsym->name);
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:310:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s is not constant", vsym->name);
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:314:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s(%g)", vsym->name, x);
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:318:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf2, "%s.Ra += 0", secname(sec));
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:367:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(suffix, "_%s", sp->name);
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:388:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "nrnglobalmechmenu(\"%s\")", psym->name);
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:432:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s at ", hoc_object_name(ob));
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:433:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(buf, sec_and_position(pp->sec, pp->node));
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:435:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s", hoc_object_name(ob));
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:452:17: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s[%d] (Parameters)", psym->name, j);
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:455:17: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s[%d] (States)", psym->name, j);
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:458:17: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s[%d] (Assigned)", psym->name, j);
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:480:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s[%d]", vsym->name, m);
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:667:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(suffix, "_%s", name);
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:748:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "hoc_ac_ = %d %s", i, action_.string());
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:767:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "hoc_ac_ = %d %s", i, action_.string());
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:770:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf2, "%s[%d]", sym->name, j);
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:856:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s = new MechanismStandard(\"%s\")", obref, np_->name());
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:862:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s.set(\"%s\", %g, %d)", obref, sym->name,
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:1254:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "xbutton(\"%s\", \"hoc_ac_=%d %s\")\n",
data/neuron-7.6.3/src/nrniv/nrnpy.cpp:139:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(line, "%s\\mingw\\usr\\bin\\bash %s/bin/nrnpyenv.sh %s --NEURON_HOME=%s",
data/neuron-7.6.3/src/nrniv/nrnpy.cpp:147:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(line, "bash nrnpyenv.sh %s",
data/neuron-7.6.3/src/nrniv/nrnpy.cpp:150:15: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
FILE* p = popen(line, "r");
data/neuron-7.6.3/src/nrniv/nrnpy.cpp:296:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(name, "libpython%s.dylib", ver[i]);
data/neuron-7.6.3/src/nrniv/nrnpy.cpp:298:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(name, "libpython%s.so", ver[i]);
data/neuron-7.6.3/src/nrniv/nrnpy.cpp:335:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(name, "%s.dll", npylib);
data/neuron-7.6.3/src/nrniv/nrnpy.cpp:338:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(name, "%s/../../%s/lib/%s.dylib", neuron_home, NRNHOSTCPU, npylib);
data/neuron-7.6.3/src/nrniv/nrnpy.cpp:340:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(name, "%s/../../%s/lib/%s.so", neuron_home, NRNHOSTCPU, npylib);
data/neuron-7.6.3/src/nrniv/nvector_nrnparallel_ld.c:121:5: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(BAD_N);
data/neuron-7.6.3/src/nrniv/nvector_nrnthread.c:37:20: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define mydebug(a) printf(a)
data/neuron-7.6.3/src/nrniv/nvector_nrnthread.c:38:23: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define mydebug2(a,b) printf(a,b)
data/neuron-7.6.3/src/nrniv/nvector_nrnthread_ld.c:37:20: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define mydebug(a) printf(a)
data/neuron-7.6.3/src/nrniv/nvector_nrnthread_ld.c:38:23: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define mydebug2(a,b) printf(a,b)
data/neuron-7.6.3/src/nrniv/partrans.cpp:242:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%d of %s", ix, memb_func[type].sym->name);
data/neuron-7.6.3/src/nrniv/partrans.cpp:1099:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(fname, "%s/%d_gap.dat", path, group_ids[tid]);
data/neuron-7.6.3/src/nrniv/prcellstate.cpp:184:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%d_%s.nrndat", gid, suffix);
data/neuron-7.6.3/src/nrniv/shape.cpp:1024:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%sappend(save_window_)", var_name_->string());
data/neuron-7.6.3/src/nrniv/shape.cpp:1026:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s = save_window_", var_name_->string());
data/neuron-7.6.3/src/nrniv/shape.cpp:1029:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "save_window_.save_name(\"%s\")",
data/neuron-7.6.3/src/nrniv/shape.cpp:1450:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s nrnsecmenu(.5, 1)", name); hoc_ivbutton("Parameters", buf);
data/neuron-7.6.3/src/nrniv/shape.cpp:1451:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s nrnsecmenu(.5, 2)", name); hoc_ivbutton("Assigned", buf);
data/neuron-7.6.3/src/nrniv/shape.cpp:1452:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s nrnsecmenu(.5, 3)", name); hoc_ivbutton("States", buf);
data/neuron-7.6.3/src/nrniv/shapeplt.cpp:442:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "save_window_.variable(\"%s\")", spi_->sym_->name);
data/neuron-7.6.3/src/nrniv/shapeplt.cpp:732:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "{graphItem.addvar(\"%s.%s(%g)\")}\n",
data/neuron-7.6.3/src/nrniv/shapeplt.cpp:788:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "rvp_ = new RangeVarPlot(\"%s\")\n", sp->varname());oc.run(buf);
data/neuron-7.6.3/src/nrniv/shapeplt.cpp:789:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s rvp_.begin(%g)\n", hoc_section_pathname(sec1), a1);oc.run(buf);
data/neuron-7.6.3/src/nrniv/shapeplt.cpp:790:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s rvp_.end(%g)\n", hoc_section_pathname(sec2), a2);oc.run(buf);
data/neuron-7.6.3/src/nrniv/spaceplt.cpp:412:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "rvp_ = new RangeVarPlot(\"%s\")", expr_.string());
data/neuron-7.6.3/src/nrniv/spaceplt.cpp:414:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s rvp_.begin(%g)",hoc_section_pathname(begin_section_), x_begin_);
data/neuron-7.6.3/src/nrniv/spaceplt.cpp:416:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s rvp_.end(%g)",hoc_section_pathname(end_section_), x_end_);
data/neuron-7.6.3/src/nrniv/spaceplt.cpp:487:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s(hoc_ac_)", expr_.string());
data/neuron-7.6.3/src/nrnjava/njvm.cpp:197:2: [4] (format) vsprintf:
Potential format string problem (CWE-134). Make format string constant.
vsprintf(buf, format, args);
data/neuron-7.6.3/src/nrnjava/njvm.cpp:217:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(classpath, "%s;/%s/classes/neuron.jar",
data/neuron-7.6.3/src/nrnjava/njvm.cpp:238:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(classpath,
data/neuron-7.6.3/src/nrnjava/njvm.cpp:246:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(classpath, "%s:.:%s/classes/neuron.jar", args.classpath, neuron_home);
data/neuron-7.6.3/src/nrnjava/njvm.cpp:281:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(classpath, "-Djava.class.path=%s/classes/nrnclsld.jar", neuron_home);
data/neuron-7.6.3/src/nrnjava/njvm.cpp:487:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(name, "%s:nrnjvmdll", neuron_home);
data/neuron-7.6.3/src/nrnjava/nrnjava.cpp:229:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(mangledstr, s);
data/neuron-7.6.3/src/nrnjava/nrnjava.cpp:241:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(mangledstr, s);
data/neuron-7.6.3/src/nrnjava/nrnjava.cpp:385:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(cs[i], jc);
data/neuron-7.6.3/src/nrnjava/nrnjni.cpp:428:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(cs[i], jc);
data/neuron-7.6.3/src/nrnmpi/nrnmpi_dynam.c:36:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(mes, "load_mpi: %s\n", dlerror());
data/neuron-7.6.3/src/nrnmpi/nrnmpi_dynam.c:38:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(mes, "load_mpi: %s successful\n", name);
data/neuron-7.6.3/src/nrnmpi/nrnmpi_dynam.c:48:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(mes, "load_nrnmpi: %s\n", dlerror());
data/neuron-7.6.3/src/nrnmpi/nrnmpi_dynam.c:51:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(mes, "load_nrnmpi: %s successful\n", name);
data/neuron-7.6.3/src/nrnmpi/nrnmpi_dynam.c:55:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(mes+strlen(mes), "load_nrnmpi: %s\n", dlerror());
data/neuron-7.6.3/src/nrnoc/cabcode.c:1804:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "_pysec.%s", name);
data/neuron-7.6.3/src/nrnoc/cabcode.c:1806:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, name);
data/neuron-7.6.3/src/nrnoc/cabcode.c:1841:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(name, secname(sec));
data/neuron-7.6.3/src/nrnoc/cabcode.c:1849:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(name, nrn_sec2pysecname(sec));
data/neuron-7.6.3/src/nrnoc/cabcode.c:1907:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf1, "%s(%g)", buf, x);
data/neuron-7.6.3/src/nrnoc/cabcode.c:2164:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s.*%s.*", objectname(), *s);
data/neuron-7.6.3/src/nrnoc/cabcode.c:2168:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s.*", o);
data/neuron-7.6.3/src/nrnoc/cabcode.c:2207:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, ".*%s.*", *s);
data/neuron-7.6.3/src/nrnoc/cabcode.c:2267:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, secname(sec));
data/neuron-7.6.3/src/nrnoc/cabcode.c:2269:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, nrn_sec2pysecname(sec));
data/neuron-7.6.3/src/nrnoc/eion.c:68:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s_ion", name);
data/neuron-7.6.3/src/nrnoc/eion.c:76:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "e%s", name); if (hoc_lookup(buf)) { fail = 1; }
data/neuron-7.6.3/src/nrnoc/eion.c:77:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%si", name); if (hoc_lookup(buf)) { fail = 1; }
data/neuron-7.6.3/src/nrnoc/eion.c:78:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%so", name); if (hoc_lookup(buf)) { fail = 1; }
data/neuron-7.6.3/src/nrnoc/eion.c:79:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "i%s", name); if (hoc_lookup(buf)) { fail = 1; }
data/neuron-7.6.3/src/nrnoc/eion.c:80:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "di%s_dv_", name); if (hoc_lookup(buf)) { fail = 1; }
data/neuron-7.6.3/src/nrnoc/eion.c:89:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s_ion", name);
data/neuron-7.6.3/src/nrnoc/eion.c:398:1: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%.*s%c is being written at the same location by %s and %s",
data/neuron-7.6.3/src/nrnoc/extcelln.c:573:13: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define DBG printf
data/neuron-7.6.3/src/nrnoc/init.c:65:10: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
IGNORE(fprintf(stderr, CHKmes, name));\
data/neuron-7.6.3/src/nrnoc/init.c:296:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(login_name, getenv("LOGNAME"));
data/neuron-7.6.3/src/nrnoc/init.c:532:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, m2[j]); /* not allowed to change constant string */
data/neuron-7.6.3/src/nrnoc/init.c:551:13: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
IGNORE(fprintf(stderr, CHKmes,
data/neuron-7.6.3/src/nrnoc/init.c:555:8: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
IGNORE(fprintf(stderr, CHKmes, buf));
data/neuron-7.6.3/src/nrnoc/nrnversion.c:32:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(head, "%s (%s)", GIT_BRANCH, GIT_CHANGESET);
data/neuron-7.6.3/src/nrnoc/nrnversion.c:34:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(head, "VERSION %s %s (%s)",
data/neuron-7.6.3/src/nrnoc/nrnversion.c:41:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s", PACKAGE_VERSION);
data/neuron-7.6.3/src/nrnoc/nrnversion.c:43:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s", head);
data/neuron-7.6.3/src/nrnoc/nrnversion.c:45:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s", GIT_CHANGESET);
data/neuron-7.6.3/src/nrnoc/nrnversion.c:47:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s", GIT_DATE);
data/neuron-7.6.3/src/nrnoc/nrnversion.c:49:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s", GIT_DESCRIBE);
data/neuron-7.6.3/src/nrnoc/nrnversion.c:66:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(c, "%s%s", j?" ":"", nrn_global_argv[j]);
data/neuron-7.6.3/src/nrnoc/nrnversion.c:72:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s", NRNHOST);
data/neuron-7.6.3/src/nrnoc/nrnversion.c:76:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "NEURON -- %s %s", head, GIT_DATE);
data/neuron-7.6.3/src/nrnoc/osxdlfcn.c:63:3: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf(errstr + 10, ERR_STR_LEN - 10, str, arg);
data/neuron-7.6.3/src/nrnoc/osxdlfcn.c:229:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(malloc_sym, "_%s", symbol);
data/neuron-7.6.3/src/nrnoc/treeset.c:1765:11: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define P fprintf(fnd,
data/neuron-7.6.3/src/nrnpython/inithoc.cpp:69:7: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if (system("stty sane")){} // 'if' to avoid ignoring return value warning
data/neuron-7.6.3/src/nrnpython/inithoc.cpp:163:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s/.libs/libnrnmech.so", NRNHOSTCPU);
data/neuron-7.6.3/src/nrnpython/inithoc.cpp:170:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(argv[argc - 1], buf);
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:286:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(cp, "%s", hoc_object_name(self->ho_));
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:289:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(cp, "%s%s%s", self->ho_ ? hoc_object_name(self->ho_) : "",
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:302:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(cp, "<hoc ref value \"%s\">", self->u.s_);
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:304:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(cp, "<hoc ref value \"%s\">", hoc_object_name(self->u.ho_));
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:311:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(cp, "<incomplete pointer to hoc array %s>", self->sym_->name);
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:402:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(e, "'%s' is not a defined hoc variable name.", name);
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:924:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf,
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:1262:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(e, "'%s' requires subscript for assignment", n);
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:1388:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(e, "%s%s%s", po->ho_ ? hoc_object_name(po->ho_) : "",
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:1558:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(e, "%s", hoc_object_name(po->ho_));
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:1568:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(e, "%s", hoc_object_name(po->ho_));
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:1594:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(e, "%s[%ld] instance does not exist", po->sym_->name, ix);
data/neuron-7.6.3/src/nrnpython/nrnpy_nrn.cpp:125:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s.", cp);
data/neuron-7.6.3/src/nrnpython/nrnpy_nrn.cpp:130:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(cp, "%s", ps->name_);
data/neuron-7.6.3/src/nrnpython/nrnpy_nrn.cpp:242:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(self->name_, "%s.%s", cp, name);
data/neuron-7.6.3/src/nrnpython/nrnpy_nrn.cpp:247:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(self->name_, name);
data/neuron-7.6.3/src/nrnpython/nrnpy_nrn.cpp:666:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(name, "%s(%g)", sname, pyseg->x_);
data/neuron-7.6.3/src/nrnpython/nrnpy_nrn.cpp:888:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "_ref_%s", self->sym_->name);
data/neuron-7.6.3/src/nrnpython/nrnpy_nrn.cpp:1266:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s was not made to point to anything at %s(%g)", n,
data/neuron-7.6.3/src/nrnpython/nrnpy_nrn.cpp:1269:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s, the mechanism does not exist at %s(%g)", n, secname(sec),
data/neuron-7.6.3/src/nrnpython/nrnpy_nrn.cpp:1272:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s does not exist at %s(%g)", n, secname(sec), x);
data/neuron-7.6.3/src/nrnpython/nrnpy_nrn.cpp:1632:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(s, "%s needs an index for assignment", sym->name);
data/neuron-7.6.3/src/nrnpython/nrnpy_nrn.cpp:1693:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s_%s", isptr ? n + 5 : n,
data/neuron-7.6.3/src/nrnpython/nrnpy_nrn.cpp:1722:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, s->name);
data/neuron-7.6.3/src/nrnpython/nrnpy_nrn.cpp:1748:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s_%s", n, memb_func[self->prop_->type].sym->name);
data/neuron-7.6.3/src/nrnpython/nrnpy_nrn.cpp:1783:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s_%s", n, memb_func[m->prop_->type].sym->name);
data/neuron-7.6.3/src/nrnpython/nrnpy_nrn.cpp:1957:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(s2, s);
data/neuron-7.6.3/src/nrnpython/nrnpy_p2h.cpp:351:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s.%s[][]...=...:", hoc_object_name(o), sym->name);
data/neuron-7.6.3/src/nrnpython/nrnpy_p2h.cpp:614:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(*cpp, cp);
data/neuron-7.6.3/src/nrnpython/nrnpython.cpp:52:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "sys.path.append('%s/lib/python')", neuronhome_forward());
data/neuron-7.6.3/src/nrnpython/nrnpython.cpp:68:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(cmd, "exec(open(\"%s\").read(), globals())", fname);
data/neuron-7.6.3/src/nrnpython/nrnpython.cpp:282:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(p, hoc_cbufstr->buf);
data/neuron-7.6.3/src/oc/audit.c:78:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "if [ ! -d %s ] ; then mkdir %s ; fi", AUDIT_DIR, AUDIT_DIR);
data/neuron-7.6.3/src/oc/audit.c:79:9: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
assert(system(buf) >= 0);
data/neuron-7.6.3/src/oc/audit.c:80:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "mkdir %s/%d", AUDIT_DIR, hoc_pid());
data/neuron-7.6.3/src/oc/audit.c:81:9: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
assert(system(buf) >= 0);
data/neuron-7.6.3/src/oc/audit.c:82:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s/hocaudit.sh %d %s", AUDIT_SCRIPT_DIR, hoc_pid(), AUDIT_DIR);
data/neuron-7.6.3/src/oc/audit.c:83:20: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if ((audit_pipe = popen(buf, "w")) == (FILE*)0) {
data/neuron-7.6.3/src/oc/audit.c:167:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(fname, "%s/%d/bf%d", AUDIT_DIR, hoc_pid(), n);
data/neuron-7.6.3/src/oc/audit.c:176:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(s, "%s %s %s", fname, bufname, filname);
data/neuron-7.6.3/src/oc/audit.c:205:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s/%d/hocaudit%d", AUDIT_DIR, hoc_pid(), n);
data/neuron-7.6.3/src/oc/audit.c:248:9: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
assert(system(buf) >= 0);
data/neuron-7.6.3/src/oc/audit.c:269:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s/retrieve.sh %d %s", AUDIT_SCRIPT_DIR, id, AUDIT_DIR);
data/neuron-7.6.3/src/oc/audit.c:270:29: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if ((retrieve_audit.pipe = popen(buf, "r")) == (FILE*)0) {
data/neuron-7.6.3/src/oc/code2.c:47:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, name);
data/neuron-7.6.3/src/oc/code2.c:134:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(sym->extra->units, units);
data/neuron-7.6.3/src/oc/code2.c:193:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, neuron_home);
data/neuron-7.6.3/src/oc/code2.c:379:6: [4] (buffer) vsscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
n = vsscanf(buf, format, arglist);
data/neuron-7.6.3/src/oc/code2.c:382:7: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
n = sscanf(buf, format, arglist[0], arglist[1], arglist[2]);
data/neuron-7.6.3/src/oc/code2.c:384:7: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
n = sscanf(buf, format, arglist[0], arglist[1], arglist[2],
data/neuron-7.6.3/src/oc/code2.c:451:6: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
int system();
data/neuron-7.6.3/src/oc/code2.c:460:16: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
d = (double) system(st->buf);
data/neuron-7.6.3/src/oc/code2.c:476:8: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
fp = popen(gargstr(1), "r");
data/neuron-7.6.3/src/oc/code2.c:489:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(hoc_tmpbuf->buf, line->buf);
data/neuron-7.6.3/src/oc/code2.c:496:16: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
d = (double) system(gargstr(1));
data/neuron-7.6.3/src/oc/code2.c:646:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(s->buf, "hoc_ac_ = %s\n", str);
data/neuron-7.6.3/src/oc/code2.c:650:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(s, "hoc_ac_ = %s\n", str);
data/neuron-7.6.3/src/oc/code2.c:678:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(s->buf, "{%s}\n", str);
data/neuron-7.6.3/src/oc/code2.c:682:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(s, "{%s}\n", str);
data/neuron-7.6.3/src/oc/code2.c:704:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf->buf, "{hoc_pointer_(&%s)}\n", s);
data/neuron-7.6.3/src/oc/code2.c:708:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "{hoc_pointer_(&%s)}\n", s);
data/neuron-7.6.3/src/oc/fileio.c:35:2: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
vfprintf(df, format, args);
data/neuron-7.6.3/src/oc/fileio.c:243:15: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
ERRCHK(if (system(fname) != 0) {
data/neuron-7.6.3/src/oc/fileio.c:291:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(hoc_xopen_file_, fname);
data/neuron-7.6.3/src/oc/fileio.c:307:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(hoc_xopen_file_, savname);
data/neuron-7.6.3/src/oc/fileio.c:517:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(pbuf, frag);
data/neuron-7.6.3/src/oc/fileio.c:562:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "sh %s > hocload.tmp", cmd);
data/neuron-7.6.3/src/oc/fileio.c:563:6: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if (system(buf) != 0) {
data/neuron-7.6.3/src/oc/fileio.c:576:18: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
#define oc_popen popen
data/neuron-7.6.3/src/oc/fileio.c:597:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(cmd, "$NEURONHOME/lib/hocload.sh %s %s %d", stype, s, hoc_pid());
data/neuron-7.6.3/src/oc/fileio.c:746:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(fname, "%s/%s", path, base);
data/neuron-7.6.3/src/oc/fileio.c:764:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(fname, "%s/%s", path, base);
data/neuron-7.6.3/src/oc/fileio.c:801:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(cmd, "hoc_ac_ = execute1(\"{xopen(\\\"%s\\\")}\")\n", base);
data/neuron-7.6.3/src/oc/fileio.c:828:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, hoc_back2forward(buf));
data/neuron-7.6.3/src/oc/fileio.c:893:16: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
size = vfprintf(stream, fmt, ap);
data/neuron-7.6.3/src/oc/fileio.c:900:12: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
size = vsnprintf(p, size, fmt, apc);
data/neuron-7.6.3/src/oc/fileio.c:911:12: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
size = vsnprintf(p, size, fmt, ap);
data/neuron-7.6.3/src/oc/fmenu.c:683:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%-13s",string);
data/neuron-7.6.3/src/oc/fmenu.c:689:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf,"<%s>",string);
data/neuron-7.6.3/src/oc/hoc.c:875:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(hs->buf, buf);
data/neuron-7.6.3/src/oc/hoc.c:1074:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s/lib/cleanup %d", neuron_home, hoc_pid());
data/neuron-7.6.3/src/oc/hoc.c:1075:7: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if (system(buf)) {;} /* ignore return value */
data/neuron-7.6.3/src/oc/hoc.c:1228:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(hs->buf, "%s\n", infile);
data/neuron-7.6.3/src/oc/hoc.c:1263:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(hoc_xopen_file_, infile);
data/neuron-7.6.3/src/oc/hoc.c:1809:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy((char*)cbuf, line);
data/neuron-7.6.3/src/oc/hoc_oop.c:368:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(pbuf, "%s\n", cmd+1);
data/neuron-7.6.3/src/oc/hoc_oop.c:370:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(pbuf, "{%s}\n", cmd);
data/neuron-7.6.3/src/oc/hoc_oop.c:724:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(str, "%s.%s", hoc_object_name(ob), sym->name);
data/neuron-7.6.3/src/oc/hoc_oop.c:868:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s[%d]\n", t->sym->name, index);
data/neuron-7.6.3/src/oc/hoc_oop.c:1665:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(mname + strlen(mname), "%ld%s",
data/neuron-7.6.3/src/oc/hoc_oop.c:1831:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, path);
data/neuron-7.6.3/src/oc/hoc_oop.c:1832:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(path, "%s%s.%s",name, indx, buf);
data/neuron-7.6.3/src/oc/hoc_oop.c:1834:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(path, "%s%s", name, indx);
data/neuron-7.6.3/src/oc/hoc_oop.c:2130:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "object type is %s instead of",
data/neuron-7.6.3/src/oc/hocdec.h:306:34: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
#define Strcat cplint = strcat
data/neuron-7.6.3/src/oc/hocdec.h:308:34: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
#define Strcpy cplint = strcpy
data/neuron-7.6.3/src/oc/hocdec.h:310:34: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
#define Sprintf cplint = sprintf
data/neuron-7.6.3/src/oc/hocdec.h:311:25: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define Printf ilint = printf
data/neuron-7.6.3/src/oc/hocdec.h:321:25: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
#define Strcat strcat
data/neuron-7.6.3/src/oc/hocdec.h:323:25: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
#define Strcpy strcpy
data/neuron-7.6.3/src/oc/hocdec.h:325:25: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
#define Sprintf sprintf
data/neuron-7.6.3/src/oc/hocedit.c:84:18: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define Fprintf fprintf
data/neuron-7.6.3/src/oc/hocusr.c:13:10: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
IGNORE(fprintf(stderr, CHKmes, name));\
data/neuron-7.6.3/src/oc/macprt.c:47:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(prePath, (char*)&dirName[1]);
data/neuron-7.6.3/src/oc/macprt.c:49:8: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(prePath, fullPath);
data/neuron-7.6.3/src/oc/macprt.c:50:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fullPath, prePath);
data/neuron-7.6.3/src/oc/macprt.c:67:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, neuron_home);
data/neuron-7.6.3/src/oc/macprt.c:96:7: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
FILE* popen(char* s1, char* s2) {
data/neuron-7.6.3/src/oc/mswinprt.c:43:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, p+1);
data/neuron-7.6.3/src/oc/mswinprt.c:45:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, p);
data/neuron-7.6.3/src/oc/mswinprt.c:55:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(neuron_home_dos, buf);
data/neuron-7.6.3/src/oc/mswinprt.c:70:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf1, "%s/lib/nrn.def", buf);
data/neuron-7.6.3/src/oc/mswinprt.c:72:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf1, "%s/lib/nrn.defaults", buf);
data/neuron-7.6.3/src/oc/mswinprt.c:80:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf1, "NEURONHOME=%s", buf);
data/neuron-7.6.3/src/oc/mswinprt.c:92:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(s, buf1);
data/neuron-7.6.3/src/oc/mswinprt.c:148:22: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define ncyg_fprintf fprintf
data/neuron-7.6.3/src/oc/mswinprt.c:172:8: [4] (format) vsprintf:
Potential format string problem (CWE-134). Make format string constant.
len = vsprintf(s, strFmt, marker);
data/neuron-7.6.3/src/oc/mswinprt.c:210:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s/oc%d.hl", path, getpid());
data/neuron-7.6.3/src/oc/mswinprt.c:222:6: [4] (shell) WinExec:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
i = WinExec(gargstr(1), i);
data/neuron-7.6.3/src/oc/mswinprt.c:229:7: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
FILE* popen(char* s1, char* s2) {
data/neuron-7.6.3/src/oc/mswinprt.c:260:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dnrnhome, nrnhome);
data/neuron-7.6.3/src/oc/mswinprt.c:275:5: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
int system(const char* s) {
data/neuron-7.6.3/src/oc/mswinprt.c:285:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(stin, redirect+1);
data/neuron-7.6.3/src/oc/mswinprt.c:286:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s\\bin\\sh %s/%s %s %s %s",
data/neuron-7.6.3/src/oc/mswinprt.c:291:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s\\bin\\sh %s/%s %s %s %s",
data/neuron-7.6.3/src/oc/mswinprt.c:295:6: [4] (shell) WinExec:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if (WinExec(buf, 0) < 32) {
data/neuron-7.6.3/src/oc/nrn_vsscanf.c:153:5: [4] (buffer) vsscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
int vsscanf(const char *str, const char *format, va_list args)
data/neuron-7.6.3/src/oc/nrn_vsscanf.c:371:7: [4] (buffer) vsscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
rc = vsscanf(str, format, args);
data/neuron-7.6.3/src/oc/nrn_vsscanf.c:415:8: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
rc1 = sscanf(str,
data/neuron-7.6.3/src/oc/nrn_vsscanf.c:457:8: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
rc1 = sscanf(str, format, &s##var##1, &var##1, &l##var##1); \
data/neuron-7.6.3/src/oc/nrn_vsscanf.c:469:8: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
rc1 = sscanf(str, format, b1, c1, s1); \
data/neuron-7.6.3/src/oc/nrn_vsscanf.c:508:8: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
rc1 = sscanf(str, format); \
data/neuron-7.6.3/src/oc/nrn_vsscanf.c:514:8: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
rc1 = sscanf(str, format, &var##1); \
data/neuron-7.6.3/src/oc/nrnfilewrap.c:82:7: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
r = access(path, R_OK);
data/neuron-7.6.3/src/oc/nrnfilewrap.c:85:8: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
r = access(path, R_OK);
data/neuron-7.6.3/src/oc/nrnfilewrap.c:156:7: [4] (buffer) vfscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
i = vfscanf(fw->f, fmt, ap);
data/neuron-7.6.3/src/oc/nrnfilewrap.h:53:23: [4] (buffer) fscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
#define nrn_fw_fscanf fscanf
data/neuron-7.6.3/src/oc/ocmain.c:37:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buffer, "NEURONHOME=%s", NEURON_DATA_DIR);
data/neuron-7.6.3/src/oc/parallel.c:79:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(pnt, buf);
data/neuron-7.6.3/src/oc/parallel.c:225:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy((pnt = parallel_argv), argv[0]);
data/neuron-7.6.3/src/oc/parallel.c:237:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(pnt, argv[j]);
data/neuron-7.6.3/src/oc/parallel.c:276:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(pnt, envp[j]);
data/neuron-7.6.3/src/oc/parse.c:1712:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
# define YYFPRINTF fprintf
data/neuron-7.6.3/src/oc/plot.c:176:10: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
IGNORE(strcpy(buf, s));
data/neuron-7.6.3/src/oc/plot.c:703:11: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
IGNORE(sprintf(fig_text_preamble, "%s %d %d ",
data/neuron-7.6.3/src/oc/system.c:108:1: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
system (s)
data/neuron-7.6.3/src/oc/xred.c:109:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(defalt,gargstr(2));
data/neuron-7.6.3/src/oc/xred.c:149:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(istr,defalt); /* if CR only, use default */
data/neuron-7.6.3/src/oc/xred.c:153:15: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
if ( sscanf(istr,"%s%s",instring,c) == 1 ) { /* only single input */
data/neuron-7.6.3/src/oc/xred.c:155:16: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(defalt,instring); /* accept any input, so */
data/neuron-7.6.3/src/oc/xred.c:159:16: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(defalt,instring); /* if input is in charlist: */
data/neuron-7.6.3/src/parallel/bbsdirect.cpp:386:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(rel, wd+nh);
data/neuron-7.6.3/src/parallel/bbslsrv.cpp:59:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(s1, s);
data/neuron-7.6.3/src/parallel/bbslsrv.cpp:190:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(m->u.s, str);
data/neuron-7.6.3/src/parallel/bbslsrv.cpp:237:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(s, unpack_->u.s);
data/neuron-7.6.3/src/parallel/bbslsrv2.cpp:69:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(s1, s);
data/neuron-7.6.3/src/parallel/bbssrv2mpi.cpp:71:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(s1, s);
data/neuron-7.6.3/src/readline/chardefs.h:5:31: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
#define savestring(x) (char *)strcpy (xmalloc (1 + strlen (x)), (x))
data/neuron-7.6.3/src/readline/history.c:69:31: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
#define savestring(x) (char *)strcpy (xmalloc (1 + strlen (x)), (x))
data/neuron-7.6.3/src/readline/history.c:407:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (return_val, "%s/.history", home);
data/neuron-7.6.3/src/readline/history.c:947:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (format_string, "%c%c:s%s",
data/neuron-7.6.3/src/readline/history.c:1045:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (result, "%s: %s.", temp,
data/neuron-7.6.3/src/readline/history.c:1079:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (temp, word_spec);
data/neuron-7.6.3/src/readline/history.c:1236:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (temp, result);
data/neuron-7.6.3/src/readline/history.c:1266:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (result + (j - strlen (temp)), temp);
data/neuron-7.6.3/src/readline/history.c:1449:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (result + offset, list[i]);
data/neuron-7.6.3/src/readline/history.c:1662:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (line, expansion);
data/neuron-7.6.3/src/readline/readline.c:502:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (the_line, temp);
data/neuron-7.6.3/src/readline/readline.c:1963:3: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf (msg_buf, string, arg1, arg2);
data/neuron-7.6.3/src/readline/readline.c:2052:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(term_buffer, "TERMINFO=%s/lib", hoc_back2forward(neuron_home));
data/neuron-7.6.3/src/readline/readline.c:3938:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (value + first_char_loc, entry->pw_name);
data/neuron-7.6.3/src/readline/readline.c:3974:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (temp_name, temp_home);
data/neuron-7.6.3/src/readline/readline.c:3975:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat (temp_name, &dirname[1]);
data/neuron-7.6.3/src/readline/readline.c:4010:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (temp_name, expansion);
data/neuron-7.6.3/src/readline/readline.c:4011:9: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat (temp_name, &dirname[i]);
data/neuron-7.6.3/src/readline/readline.c:4024:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (temp_name, user_entry->pw_dir);
data/neuron-7.6.3/src/readline/readline.c:4025:8: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat (temp_name, &dirname[i]);
data/neuron-7.6.3/src/readline/readline.c:4255:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (the_line, saved_line_for_history->line);
data/neuron-7.6.3/src/readline/readline.c:4325:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (the_line, temp->line);
data/neuron-7.6.3/src/readline/readline.c:4373:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (the_line, temp->line);
data/neuron-7.6.3/src/readline/readline.c:4444:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat (message, search_string);
data/neuron-7.6.3/src/readline/readline.c:4517:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (lines[i], &the_line[0]);
data/neuron-7.6.3/src/readline/readline.c:4569:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (the_line, lines[orig_line]);
data/neuron-7.6.3/src/readline/readline.c:4672:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (the_line, lines[i]);
data/neuron-7.6.3/src/readline/readline.c:4691:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (the_line, lines[orig_line]);
data/neuron-7.6.3/src/readline/readline.c:4818:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (new, old);
data/neuron-7.6.3/src/readline/readline.c:4819:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat (new, text);
data/neuron-7.6.3/src/readline/readline.c:4823:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (new, text);
data/neuron-7.6.3/src/readline/readline.c:4824:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat (new, old);
data/neuron-7.6.3/src/readline/readline.c:5153:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (filename, ++temp);
data/neuron-7.6.3/src/readline/readline.c:5231:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (temp, users_dirname);
data/neuron-7.6.3/src/readline/readline.c:5232:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat (temp, entry->d_name);
data/neuron-7.6.3/src/scopmath/force.c:340:18: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
extern char *strcpy(), *gets();
data/neuron-7.6.3/src/scopmath/force.c:353:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(newspline->name, filename);
data/neuron-7.6.3/src/sundials/cvodes/cvband.c:122:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGB_CVMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvband.c:129:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGB_BAD_NVECTOR);
data/neuron-7.6.3/src/sundials/cvodes/cvband.c:144:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGB_MEM_FAIL);
data/neuron-7.6.3/src/sundials/cvodes/cvband.c:164:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGB_BAD_SIZES);
data/neuron-7.6.3/src/sundials/cvodes/cvband.c:174:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGB_MEM_FAIL);
data/neuron-7.6.3/src/sundials/cvodes/cvband.c:179:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGB_MEM_FAIL);
data/neuron-7.6.3/src/sundials/cvodes/cvband.c:185:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGB_MEM_FAIL);
data/neuron-7.6.3/src/sundials/cvodes/cvband.c:210:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGB_SETGET_CVMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvband.c:216:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGB_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvband.c:239:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGB_SETGET_CVMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvband.c:245:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGB_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvband.c:268:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGB_SETGET_CVMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvband.c:274:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGB_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvband.c:298:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGB_SETGET_CVMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvband.c:304:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGB_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvband.c:327:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGB_SETGET_CVMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvband.c:333:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGB_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvband.c:356:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGB_SETGET_CVMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvband.c:362:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGB_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvbandpre.c:74:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGBP_CVMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvbandpre.c:81:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGBP_BAD_NVECTOR);
data/neuron-7.6.3/src/sundials/cvodes/cvbandpre.c:130:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGBP_NO_PDATA);
data/neuron-7.6.3/src/sundials/cvodes/cvbandpre.c:168:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGBP_PDATA_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvbandpre.c:189:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGBP_PDATA_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvbbdpre.c:74:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGBBDP_CVMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvbbdpre.c:81:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGBBDP_BAD_NVECTOR);
data/neuron-7.6.3/src/sundials/cvodes/cvbbdpre.c:140:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGBBDP_NO_PDATA);
data/neuron-7.6.3/src/sundials/cvodes/cvbbdpre.c:169:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGBBDP_NO_PDATA);
data/neuron-7.6.3/src/sundials/cvodes/cvbbdpre.c:210:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGBBDP_PDATA_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvbbdpre.c:227:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGBBDP_PDATA_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvdense.c:116:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGDS_CVMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvdense.c:124:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGDS_BAD_NVECTOR);
data/neuron-7.6.3/src/sundials/cvodes/cvdense.c:139:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGDS_MEM_FAIL);
data/neuron-7.6.3/src/sundials/cvodes/cvdense.c:157:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGDS_MEM_FAIL);
data/neuron-7.6.3/src/sundials/cvodes/cvdense.c:162:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGDS_MEM_FAIL);
data/neuron-7.6.3/src/sundials/cvodes/cvdense.c:168:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGDS_MEM_FAIL);
data/neuron-7.6.3/src/sundials/cvodes/cvdense.c:193:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGDS_SETGET_CVMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvdense.c:199:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGDS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvdense.c:222:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGDS_SETGET_CVMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvdense.c:228:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGDS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvdense.c:251:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGDS_SETGET_CVMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvdense.c:257:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGDS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvdense.c:281:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGDS_SETGET_CVMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvdense.c:287:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGDS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvdense.c:310:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGDS_SETGET_CVMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvdense.c:316:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGDS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvdense.c:339:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGDS_SETGET_CVMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvdense.c:345:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGDS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvdiag.c:97:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGDG_CVMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvdiag.c:105:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGDG_BAD_NVECTOR);
data/neuron-7.6.3/src/sundials/cvodes/cvdiag.c:120:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGDG_MEM_FAIL);
data/neuron-7.6.3/src/sundials/cvodes/cvdiag.c:133:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGDG_MEM_FAIL);
data/neuron-7.6.3/src/sundials/cvodes/cvdiag.c:138:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGDG_MEM_FAIL);
data/neuron-7.6.3/src/sundials/cvodes/cvdiag.c:144:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGDG_MEM_FAIL);
data/neuron-7.6.3/src/sundials/cvodes/cvdiag.c:168:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGDG_SETGET_CVMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvdiag.c:192:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGDG_SETGET_CVMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvdiag.c:198:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGDG_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvdiag.c:221:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGDG_SETGET_CVMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvdiag.c:227:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGDG_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvodea.c:214:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGAM_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodea.c:218:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGAM_BAD_STEPS);
data/neuron-7.6.3/src/sundials/cvodes/cvodea.c:225:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGAM_MEM_FAIL);
data/neuron-7.6.3/src/sundials/cvodes/cvodea.c:237:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGAM_MEM_FAIL);
data/neuron-7.6.3/src/sundials/cvodes/cvodea.c:246:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGAM_MEM_FAIL);
data/neuron-7.6.3/src/sundials/cvodes/cvodea.c:256:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGAM_MEM_FAIL);
data/neuron-7.6.3/src/sundials/cvodes/cvodea.c:266:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGAM_MEM_FAIL);
data/neuron-7.6.3/src/sundials/cvodes/cvodea.c:277:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGAM_MEM_FAIL);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:338:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_BAD_LMM);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:343:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_BAD_ITER);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:349:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_CVMEM_FAIL);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:446:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_CVM_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:454:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_Y0_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:459:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_BAD_ITOL);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:464:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_F_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:469:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_RELTOL_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:474:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_BAD_RELTOL);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:479:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_ABSTOL_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:486:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_BAD_NVECTOR);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:497:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_BAD_ABSTOL);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:514:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_MEM_FAIL);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:612:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_CVM_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:619:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_CVREI_NO_MALLOC);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:626:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_Y0_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:631:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_BAD_ITOL);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:636:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_F_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:641:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_RELTOL_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:646:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_BAD_RELTOL);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:651:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_ABSTOL_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:661:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_BAD_ABSTOL);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:741:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stdout, MSGCVS_ROOT_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:782:2: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSGCVS_ROOT_FUNC_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:796:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSGCVS_ROOT_FUNC_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:804:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stdout, MSGCVS_ROOT_MEM_FAIL);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:811:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stdout, MSGCVS_ROOT_MEM_FAIL);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:818:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stdout, MSGCVS_ROOT_MEM_FAIL);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:825:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stdout, MSGCVS_ROOT_MEM_FAIL);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:853:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_QCVM_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:866:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_QCVM_MEM_FAIL);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:909:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_QCVM_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:916:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_QREI_NO_QUAD);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:968:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_SCVM_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:975:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_BAD_NS);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:982:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_BAD_ISM);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:989:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_P_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:997:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_YS0_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1008:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_SCVM_MEM_FAIL);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1023:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_SCVM_MEM_FAIL);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1085:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_SCVM_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1092:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_SREI_NO_SENSI);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1098:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_BAD_ISM);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1105:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_P_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1113:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_YS0_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1124:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_SCVM_MEM_FAIL);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1170:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_SCVT_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1184:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_SCVT_NO_SENSI);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1380:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_CVODE_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1387:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_CVODE_NO_MALLOC);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1393:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_YOUT_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1399:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_TRET_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1409:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_BAD_ITASK);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1416:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_NO_TSTOP);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1485:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_BAD_H0);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1491:25: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_TOO_CLOSE);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1503:18: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_BAD_TSTOP, tn);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1526:9: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSGCVS_BAD_INIT_ROOT);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1549:9: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSGCVS_CLOSE_ROOTS, tlo);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1579:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_BAD_TSTOP, tn);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1588:20: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_BAD_TOUT, tout);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1608:20: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_BAD_TSTOP, tn);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1651:33: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(!ewtsetOK) if(errfp!=NULL) fprintf(errfp, MSGCVS_EWT_NOW_BAD, tn);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1652:40: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(!ewtSsetOK) if(errfp!=NULL) fprintf(errfp, MSGCVS_EWTS_NOW_BAD, tn);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1653:33: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(!ewtQsetOK) if(errfp!=NULL) fprintf(errfp, MSGCVS_EWTQ_NOW_BAD, tn);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1667:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_MAX_STEPS, tn);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1686:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_TOO_MUCH_ACC, tn);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1700:44: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if (nhnil <= mxhnil) if(errfp!=NULL) fprintf(errfp, MSGCVS_HNIL, tn, hprime);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1701:44: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if (nhnil == mxhnil) if(errfp!=NULL) fprintf(errfp, MSGCVS_HNIL_DONE);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1821:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_DKY_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1827:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_BAD_DKY);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1832:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_BAD_K);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1842:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_BAD_T, t, tn-hu, tn);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1904:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_QDKY_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1910:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_QDKY_NO_QUAD);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1915:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_QBAD_DKY);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1920:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_QBAD_K);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1930:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_QBAD_T, t, tn-hu, tn);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:1999:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_SDKY_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:2005:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_SBAD_DKYA);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:2044:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_SDKY_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:2050:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_SDKY_NO_SENSI);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:2055:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_SBAD_DKY);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:2060:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_SBAD_K);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:2065:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_SBAD_IS);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:2077:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_SBAD_T);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:2329:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_BAD_EWT);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:2338:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_NO_QUADTOL);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:2345:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_BAD_EWTQ);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:2359:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_BAD_ISM_IFS);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:2366:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_BAD_EWTS);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:2379:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_LSOLVE_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:2385:25: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_LINIT_FAIL);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:2637:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_BAD_RELTOLS);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:2652:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_BAD_ABSTOLS);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:2674:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_ATOLS_MEM_FAIL);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:2690:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_BAD_PBAR);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:5493:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_ERR_FAILS, tn, h);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:5496:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_CONV_FAILS, tn, h);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:5499:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_SETUP_FAILED, tn);
data/neuron-7.6.3/src/sundials/cvodes/cvodes.c:5502:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_SOLVE_FAILED, tn);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:44:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_SET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:68:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_SET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:75:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_SET_BAD_ITER);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:95:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_SET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:117:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_SET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:139:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_SET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:146:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_SET_NEG_MAXORD);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:151:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_SET_BAD_MAXORD);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:171:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_SET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:178:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_SET_NEG_MXSTEPS);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:198:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_SET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:220:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_SET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:227:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_SET_SLDET);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:247:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_SET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:270:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_SET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:277:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_SET_NEG_HMIN);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:283:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_SET_BAD_HMIN_HMAX);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:304:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_SET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:311:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_SET_NEG_HMAX);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:317:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_SET_BAD_HMIN_HMAX);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:338:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_SET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:362:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_SET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:385:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_SET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:408:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_SET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:431:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_SET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:455:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_SET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:462:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_SET_BAD_ITOL);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:467:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_SET_BAD_RELTOL);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:472:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_SET_ABSTOL_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:482:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_SET_BAD_ABSTOL);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:504:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_SET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:522:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_SET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:542:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_SET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:549:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_BAD_ITOLQ);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:554:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_RELTOLQ_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:559:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_BAD_RELTOLQ);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:564:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_ABSTOLQ_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:574:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_BAD_ABSTOLQ);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:597:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_SET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:624:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_SET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:651:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_SET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:669:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_SET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:687:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_SET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:705:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_SET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:723:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_SET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:742:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_SET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:749:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_BAD_ITOLS);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:763:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_RELTOLS_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:768:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_ABSTOLS_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:827:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_GET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:849:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_GET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:871:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_GET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:893:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_GET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:915:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_GET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:937:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_GET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:960:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_GET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:967:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_GET_NO_SLDET);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:987:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_GET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1009:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_GET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1031:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_GET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1053:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_GET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1075:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_GET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1098:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_GET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1120:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_GET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1142:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_GET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1168:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_GET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1199:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_GET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1221:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_GET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1244:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_GET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1267:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_GET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1290:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_GET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1325:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_GET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1332:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_GET_NO_QUAD);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1348:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_GET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1355:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_GET_NO_QUAD);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1371:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_GET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1378:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_GET_NO_QUAD);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1395:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_GET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1402:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_GET_NO_QUAD);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1442:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_GET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1449:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_GET_NO_SENSI);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1465:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_GET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1472:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_GET_NO_SENSI);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1488:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_GET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1495:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_GET_NO_SENSI);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1511:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_GET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1518:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_GET_NO_SENSI);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1534:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_GET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1541:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_GET_NO_SENSI);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1558:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_GET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1565:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_GET_NO_SENSI);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1584:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_GET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1591:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_GET_NO_SENSI);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1607:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_GET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1614:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_GET_NO_SENSI);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1630:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_GET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1637:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_GET_NO_SENSI);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1655:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_GET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1662:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_GET_NO_SENSI);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1680:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_GET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1687:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_GET_NO_SENSI);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1705:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGCVS_GET_NO_MEM);
data/neuron-7.6.3/src/sundials/cvodes/cvodesio.c:1712:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGCVS_GET_NO_SENSI);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:136:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGS_CVMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:143:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_BAD_NVECTOR);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:158:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_MEM_FAIL);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:183:7: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSGS_BAD_PRETYPE);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:190:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_MEM_FAIL);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:195:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_MEM_FAIL);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:207:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_MEM_FAIL);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:232:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGS_SETGET_CVMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:238:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:247:7: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSGS_SET_BAD_PRETYPE);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:269:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGS_SETGET_CVMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:275:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:283:7: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(errfp, MSGS_SET_BAD_GSTYPE);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:305:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGS_SETGET_CVMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:311:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:318:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_SET_BAD_DELT);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:340:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGS_SETGET_CVMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:346:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:369:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGS_SETGET_CVMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:375:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:398:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGS_SETGET_CVMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:404:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:427:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGS_SETGET_CVMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:433:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:456:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGS_SETGET_CVMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:462:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:486:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGS_SETGET_CVMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:492:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:517:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGS_SETGET_CVMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:523:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:546:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGS_SETGET_CVMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:552:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:575:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGS_SETGET_CVMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:581:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:604:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGS_SETGET_CVMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:610:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:633:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGS_SETGET_CVMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:639:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:662:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGS_SETGET_CVMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:668:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:691:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGS_SETGET_CVMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:697:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/cvodes/cvspgmr.c:740:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_PSOLVE_REQ);
data/neuron-7.6.3/src/sundials/ida/ida.c:167:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_MEM_FAIL);
data/neuron-7.6.3/src/sundials/ida/ida.c:232:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAM_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/ida.c:240:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_Y0_NULL);
data/neuron-7.6.3/src/sundials/ida/ida.c:245:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_YP0_NULL);
data/neuron-7.6.3/src/sundials/ida/ida.c:250:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_BAD_ITOL);
data/neuron-7.6.3/src/sundials/ida/ida.c:255:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_RES_NULL);
data/neuron-7.6.3/src/sundials/ida/ida.c:260:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_RTOL_NULL);
data/neuron-7.6.3/src/sundials/ida/ida.c:265:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_BAD_RTOL);
data/neuron-7.6.3/src/sundials/ida/ida.c:270:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_ATOL_NULL);
data/neuron-7.6.3/src/sundials/ida/ida.c:277:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_BAD_NVECTOR);
data/neuron-7.6.3/src/sundials/ida/ida.c:288:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_BAD_ATOL);
data/neuron-7.6.3/src/sundials/ida/ida.c:305:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_MEM_FAIL);
data/neuron-7.6.3/src/sundials/ida/ida.c:378:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAM_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/ida.c:386:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_REI_NO_MALLOC);
data/neuron-7.6.3/src/sundials/ida/ida.c:393:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_Y0_NULL);
data/neuron-7.6.3/src/sundials/ida/ida.c:398:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_YP0_NULL);
data/neuron-7.6.3/src/sundials/ida/ida.c:403:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_BAD_ITOL);
data/neuron-7.6.3/src/sundials/ida/ida.c:408:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_RES_NULL);
data/neuron-7.6.3/src/sundials/ida/ida.c:413:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_RTOL_NULL);
data/neuron-7.6.3/src/sundials/ida/ida.c:418:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_BAD_RTOL);
data/neuron-7.6.3/src/sundials/ida/ida.c:423:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_ATOL_NULL);
data/neuron-7.6.3/src/sundials/ida/ida.c:433:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_BAD_ATOL);
data/neuron-7.6.3/src/sundials/ida/ida.c:618:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDA_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/ida.c:626:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_NO_MALLOC);
data/neuron-7.6.3/src/sundials/ida/ida.c:633:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_YRET_NULL);
data/neuron-7.6.3/src/sundials/ida/ida.c:639:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_YPRET_NULL);
data/neuron-7.6.3/src/sundials/ida/ida.c:645:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_TRET_NULL);
data/neuron-7.6.3/src/sundials/ida/ida.c:651:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_BAD_ITASK);
data/neuron-7.6.3/src/sundials/ida/ida.c:657:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_NO_TSTOP);
data/neuron-7.6.3/src/sundials/ida/ida.c:683:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_TOO_CLOSE);
data/neuron-7.6.3/src/sundials/ida/ida.c:689:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_BAD_HINIT);
data/neuron-7.6.3/src/sundials/ida/ida.c:705:25: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_BAD_TSTOP, tn);
data/neuron-7.6.3/src/sundials/ida/ida.c:742:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_MAX_STEPS, tn);
data/neuron-7.6.3/src/sundials/ida/ida.c:757:25: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_EWT_NOW_BAD, tn);
data/neuron-7.6.3/src/sundials/ida/ida.c:771:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_TOO_MUCH_ACC, tn);
data/neuron-7.6.3/src/sundials/ida/ida.c:829:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAG_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/ida.c:839:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_IDAG_BAD_T, t, tn-hused, tn);
data/neuron-7.6.3/src/sundials/ida/ida.c:1045:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_BAD_NVECTOR);
data/neuron-7.6.3/src/sundials/ida/ida.c:1055:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_BAD_NVECTOR);
data/neuron-7.6.3/src/sundials/ida/ida.c:1062:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_MISSING_ID);
data/neuron-7.6.3/src/sundials/ida/ida.c:1070:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_BAD_EWT);
data/neuron-7.6.3/src/sundials/ida/ida.c:1082:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_BAD_CONSTRAINTS);
data/neuron-7.6.3/src/sundials/ida/ida.c:1092:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_Y0_FAIL_CONSTR);
data/neuron-7.6.3/src/sundials/ida/ida.c:1100:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_LSOLVE_NULL);
data/neuron-7.6.3/src/sundials/ida/ida.c:1107:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_LINIT_FAIL);
data/neuron-7.6.3/src/sundials/ida/ida.c:1239:25: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_BAD_TOUT, tout);
data/neuron-7.6.3/src/sundials/ida/ida.c:1259:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_BAD_TSTOP, tn);
data/neuron-7.6.3/src/sundials/ida/ida.c:1269:25: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_BAD_TOUT, tout);
data/neuron-7.6.3/src/sundials/ida/ida.c:1279:20: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_BAD_TSTOP, tn);
data/neuron-7.6.3/src/sundials/ida/ida.c:1291:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_BAD_TSTOP, tn);
data/neuron-7.6.3/src/sundials/ida/ida.c:1303:25: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_BAD_TSTOP, tn);
data/neuron-7.6.3/src/sundials/ida/ida.c:1410:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_ERR_FAILS, tn, hh);
data/neuron-7.6.3/src/sundials/ida/ida.c:1414:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_CONV_FAILS, tn, hh);
data/neuron-7.6.3/src/sundials/ida/ida.c:1418:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_SETUP_FAILED, tn);
data/neuron-7.6.3/src/sundials/ida/ida.c:1422:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_SOLVE_FAILED, tn);
data/neuron-7.6.3/src/sundials/ida/ida.c:1426:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_REP_RES_ERR, tn);
data/neuron-7.6.3/src/sundials/ida/ida.c:1430:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_RES_NONRECOV, tn);
data/neuron-7.6.3/src/sundials/ida/ida.c:1434:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_FAILED_CONSTR, tn);
data/neuron-7.6.3/src/sundials/ida/idaband.c:127:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGB_MEM_FAIL);
data/neuron-7.6.3/src/sundials/ida/idaband.c:134:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGB_BAD_NVECTOR);
data/neuron-7.6.3/src/sundials/ida/idaband.c:150:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGB_MEM_FAIL);
data/neuron-7.6.3/src/sundials/ida/idaband.c:166:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGB_BAD_SIZES);
data/neuron-7.6.3/src/sundials/ida/idaband.c:178:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGB_MEM_FAIL);
data/neuron-7.6.3/src/sundials/ida/idaband.c:183:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGB_MEM_FAIL);
data/neuron-7.6.3/src/sundials/ida/idaband.c:207:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGB_SETGET_IDAMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaband.c:213:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGB_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaband.c:230:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGB_SETGET_IDAMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaband.c:236:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGB_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaband.c:253:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGB_SETGET_IDAMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaband.c:259:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGB_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaband.c:277:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGB_SETGET_IDAMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaband.c:283:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGB_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaband.c:300:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGB_SETGET_IDAMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaband.c:306:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGB_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaband.c:323:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGB_SETGET_IDAMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaband.c:329:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGB_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idabbdpre.c:67:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGBBD_IDAMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idabbdpre.c:75:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGBBD_BAD_NVECTOR);
data/neuron-7.6.3/src/sundials/ida/idabbdpre.c:138:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGBBD_NO_PDATA);
data/neuron-7.6.3/src/sundials/ida/idabbdpre.c:205:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGBBD_PDATA_NULL);
data/neuron-7.6.3/src/sundials/ida/idabbdpre.c:222:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGBBD_PDATA_NULL);
data/neuron-7.6.3/src/sundials/ida/idadense.c:119:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGD_IDAMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idadense.c:127:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGD_BAD_NVECTOR);
data/neuron-7.6.3/src/sundials/ida/idadense.c:143:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGD_MEM_FAIL);
data/neuron-7.6.3/src/sundials/ida/idadense.c:160:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGD_MEM_FAIL);
data/neuron-7.6.3/src/sundials/ida/idadense.c:165:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGD_MEM_FAIL);
data/neuron-7.6.3/src/sundials/ida/idadense.c:189:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGD_SETGET_IDAMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idadense.c:195:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGD_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idadense.c:212:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGD_SETGET_IDAMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idadense.c:218:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGD_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idadense.c:235:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGD_SETGET_IDAMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idadense.c:241:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGD_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idadense.c:259:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGD_SETGET_IDAMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idadense.c:265:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGD_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idadense.c:282:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGD_SETGET_IDAMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idadense.c:288:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGD_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idadense.c:305:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGD_SETGET_IDAMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idadense.c:311:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGD_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaic.c:162:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IC_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaic.c:170:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_IC_NO_MALLOC);
data/neuron-7.6.3/src/sundials/ida/idaic.c:183:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_IC_BAD_ICOPT);
data/neuron-7.6.3/src/sundials/ida/idaic.c:189:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_IC_MISSING_ID);
data/neuron-7.6.3/src/sundials/ida/idaic.c:196:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_IC_TOO_CLOSE);
data/neuron-7.6.3/src/sundials/ida/idaic.c:207:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_IC_BAD_ID);
data/neuron-7.6.3/src/sundials/ida/idaic.c:661:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_IC_RES_NONREC);
data/neuron-7.6.3/src/sundials/ida/idaic.c:665:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_IC_RES_FAIL);
data/neuron-7.6.3/src/sundials/ida/idaic.c:669:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_IC_SETUP_FAIL);
data/neuron-7.6.3/src/sundials/ida/idaic.c:673:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_IC_SOLVE_FAIL);
data/neuron-7.6.3/src/sundials/ida/idaic.c:677:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_IC_NO_RECOVERY);
data/neuron-7.6.3/src/sundials/ida/idaic.c:681:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_IC_FAIL_CONSTR);
data/neuron-7.6.3/src/sundials/ida/idaic.c:685:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_IC_FAILED_LINS);
data/neuron-7.6.3/src/sundials/ida/idaic.c:689:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_IC_CONV_FAILED);
data/neuron-7.6.3/src/sundials/ida/idaic.c:693:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_IC_CONV_FAILED);
data/neuron-7.6.3/src/sundials/ida/idaic.c:697:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_IC_BAD_EWT);
data/neuron-7.6.3/src/sundials/ida/idaio.c:36:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAS_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:56:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAS_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:74:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAS_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:81:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_IDAS_NEG_MAXORD);
data/neuron-7.6.3/src/sundials/ida/idaio.c:86:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_IDAS_BAD_MAXORD);
data/neuron-7.6.3/src/sundials/ida/idaio.c:102:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAS_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:109:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_IDAS_NEG_MXSTEPS);
data/neuron-7.6.3/src/sundials/ida/idaio.c:125:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAS_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:143:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAS_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:150:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_IDAS_NEG_HMAX);
data/neuron-7.6.3/src/sundials/ida/idaio.c:166:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAS_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:185:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAS_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:192:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_IDAS_NEG_EPCON);
data/neuron-7.6.3/src/sundials/ida/idaio.c:208:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAS_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:226:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAS_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:244:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAS_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:262:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAS_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:280:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAS_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:298:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAS_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:318:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAS_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:325:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_IDAS_BAD_ITOL);
data/neuron-7.6.3/src/sundials/ida/idaio.c:330:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_IDAS_RTOL_NULL);
data/neuron-7.6.3/src/sundials/ida/idaio.c:335:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_IDAS_BAD_RTOL);
data/neuron-7.6.3/src/sundials/ida/idaio.c:340:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_IDAS_ATOL_NULL);
data/neuron-7.6.3/src/sundials/ida/idaio.c:351:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_IDAS_BAD_ATOL);
data/neuron-7.6.3/src/sundials/ida/idaio.c:373:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAS_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:380:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_IDAS_BAD_EPICCON);
data/neuron-7.6.3/src/sundials/ida/idaio.c:396:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAS_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:403:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_IDAS_BAD_MAXNH);
data/neuron-7.6.3/src/sundials/ida/idaio.c:419:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAS_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:426:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_IDAS_BAD_MAXNJ);
data/neuron-7.6.3/src/sundials/ida/idaio.c:442:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAS_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:449:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_IDAS_BAD_MAXNIT);
data/neuron-7.6.3/src/sundials/ida/idaio.c:465:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAS_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:483:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAS_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:490:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSG_IDAS_BAD_STEPTOL);
data/neuron-7.6.3/src/sundials/ida/idaio.c:534:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAG_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:552:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAG_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:570:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAG_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:588:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAG_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:606:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAG_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:624:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAG_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:642:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAG_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:660:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAG_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:678:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAG_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:696:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAG_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:714:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAG_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:732:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAG_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:750:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAG_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:768:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAG_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:790:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAG_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:816:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAG_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:834:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAG_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaio.c:852:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSG_IDAG_NO_MEM);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:161:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGS_IDAMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:168:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_BAD_NVECTOR);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:184:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_MEM_FAIL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:210:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_MEM_FAIL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:215:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_MEM_FAIL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:221:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_MEM_FAIL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:234:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_MEM_FAIL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:260:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGS_SETGET_IDAMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:266:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:273:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_BAD_GSTYPE);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:289:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGS_SETGET_IDAMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:295:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:302:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_IDAS_NEG_MAXRS);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:318:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGS_SETGET_IDAMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:324:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:331:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_IDAS_NEG_EPLIFAC);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:350:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGS_SETGET_IDAMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:356:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:363:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_IDAS_NEG_DQINCFAC);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:379:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGS_SETGET_IDAMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:385:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:402:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGS_SETGET_IDAMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:408:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:425:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGS_SETGET_IDAMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:431:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:448:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGS_SETGET_IDAMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:454:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:471:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGS_SETGET_IDAMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:477:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:495:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGS_SETGET_IDAMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:501:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:520:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGS_SETGET_IDAMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:526:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:543:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGS_SETGET_IDAMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:549:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:566:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGS_SETGET_IDAMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:572:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:589:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGS_SETGET_IDAMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:595:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:612:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGS_SETGET_IDAMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:618:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:635:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGS_SETGET_IDAMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:641:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:658:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, MSGS_SETGET_IDAMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:664:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if(errfp!=NULL) fprintf(errfp, MSGS_SETGET_LMEM_NULL);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:834:29: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if (lavd) if(errfp!=NULL) fprintf(errfp, MSGS_AVD_WARN, tn, avdim);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:835:29: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if (lcfn) if(errfp!=NULL) fprintf(errfp, MSGS_CFN_WARN, tn, rcfn);
data/neuron-7.6.3/src/sundials/ida/idaspgmr.c:836:29: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
if (lcfl) if(errfp!=NULL) fprintf(errfp, MSGS_CFL_WARN, tn, rcfl);
data/neuron-7.6.3/src/sundials/shared/nvector_parallel.c:102:5: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(BAD_N);
data/neuron-7.6.3/src/uxnrnbbs/mos2nrn.cpp:30:1: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "xterm -sb -e %s/mos2nrn2.sh %s %s %d", NEURON_BIN_DIR,
data/neuron-7.6.3/src/uxnrnbbs/mos2nrn.cpp:32:11: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
int i = system(buf);
data/neuron-7.6.3/src/uxnrnbbs/mos2nrn.cpp:35:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "xterm -sb -e %s/nrniv %s -",
data/neuron-7.6.3/src/uxnrnbbs/mos2nrn.cpp:37:11: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
int i = system(buf);
data/neuron-7.6.3/src/uxnrnbbs/mos2nrn.cpp:46:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(forward, back);
data/neuron-7.6.3/src/uxnrnbbs/mos2nrn.cpp:71:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(dname, "%s/nrnXXXXXX", tdir);
data/neuron-7.6.3/src/uxnrnbbs/mos2nrn.cpp:76:2: [4] (tmpfile) mktemp:
Temporary file race condition (CWE-377).
mktemp(dname);
data/neuron-7.6.3/ivhines/src/bin/iclass/direct.cpp:81:17: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
const char* realpath;
data/neuron-7.6.3/ivhines/src/bin/iclass/direct.cpp:88:12: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
return realpath;
data/neuron-7.6.3/ivhines/src/bin/iclass/direct.cpp:262:17: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
static char realpath[MAX_PATH_LENGTH+1];
data/neuron-7.6.3/ivhines/src/bin/iclass/direct.cpp:274:20: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
strcpy(realpath, expandedTilde);
data/neuron-7.6.3/ivhines/src/bin/iclass/direct.cpp:276:24: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
strcat(realpath, end);
data/neuron-7.6.3/ivhines/src/bin/iclass/direct.cpp:280:25: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
return validTilde ? realpath : path;
data/neuron-7.6.3/ivhines/src/lib/Dispatch/iostreamb.cpp:117:3: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
setstate(ios::failbit); // overflow: value won't fit in short
data/neuron-7.6.3/ivhines/src/lib/Dispatch/iostreamb.cpp:134:3: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
setstate(ios::failbit); // overflow: value won't fit in ushort
data/neuron-7.6.3/ivhines/src/lib/Dispatch/iostreamb.cpp:151:3: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
setstate(ios::failbit); // overflow: value won't fit in int
data/neuron-7.6.3/ivhines/src/lib/Dispatch/iostreamb.cpp:168:3: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
setstate(ios::failbit); // overflow: value won't fit in uint
data/neuron-7.6.3/ivhines/src/lib/Dispatch/iostreamb.cpp:185:3: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
setstate(ios::failbit); // overflow: value won't fit in long
data/neuron-7.6.3/ivhines/src/lib/Dispatch/iostreamb.cpp:202:3: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
setstate(ios::failbit); // overflow: value won't fit in ulong
data/neuron-7.6.3/ivhines/src/lib/Dispatch/iostreamb.cpp:229:2: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
setstate(ios::failbit);
data/neuron-7.6.3/ivhines/src/lib/Dispatch/iostreamb.cpp:239:2: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
setstate(ios::failbit);
data/neuron-7.6.3/ivhines/src/lib/Dispatch/iostreamb.cpp:300:6: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
setstate(ios::failbit); // overflow: number won't fit in 16 bits
data/neuron-7.6.3/ivhines/src/lib/Dispatch/iostreamb.cpp:322:6: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
setstate(ios::failbit); // number won't fit
data/neuron-7.6.3/ivhines/src/lib/Dispatch/iostreamb.cpp:352:6: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
setstate(ios::failbit); // overflow: number won't fit in 32 bits
data/neuron-7.6.3/ivhines/src/lib/Dispatch/iostreamb.cpp:376:6: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
setstate(ios::failbit); // overflow: number won't fit in 32 bits
data/neuron-7.6.3/ivhines/src/lib/Dispatch/iostreamb.cpp:471:2: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
setstate(ios::badbit);
data/neuron-7.6.3/ivhines/src/lib/Dispatch/iostreamb.cpp:486:6: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
setstate(ios::badbit);
data/neuron-7.6.3/ivhines/src/lib/Dispatch/rpcstream.cpp:72:2: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
setstate(ios::failbit);
data/neuron-7.6.3/ivhines/src/lib/Dispatch/rpcstream.cpp:87:2: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
setstate(ios::failbit);
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:116:17: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
const char* realpath;
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:123:12: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
return realpath;
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:286:17: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
static char realpath[MAXPATHLEN+1];
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:298:20: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
strcpy(realpath, expandedTilde);
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:300:24: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
strcat(realpath, end);
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:304:25: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
return validTilde ? realpath : path;
data/neuron-7.6.3/ivhines/src/lib/IV-Win/session.cpp:410:14: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char* nh = getenv("NEURONHOME");
data/neuron-7.6.3/ivhines/src/lib/IV-X11/session.cpp:632:24: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
const char* xres = getenv("XAPPLRESDIR");
data/neuron-7.6.3/ivhines/src/lib/IV-X11/session.cpp:641:24: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
const char* xenv = getenv("XENVIRONMENT");
data/neuron-7.6.3/ivhines/src/lib/IV-X11/session.cpp:661:24: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
const char* home = getenv("HOME");
data/neuron-7.6.3/ivhines/src/lib/IV-X11/session.cpp:692:28: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
const char* res_name = getenv("RESOURCE_NAME");
data/neuron-7.6.3/ivhines/src/lib/InterViews/psfont.cpp:113:23: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
const char* dir = getenv("PSFONTDIR");
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:808:17: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
static char realpath[path_buffer_size];
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:818:13: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
strcpy(realpath, expanded);
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:820:10: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
strcat(realpath, end);
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:824:20: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
return valid ? realpath : path;
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:839:17: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
const char* realpath;
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:845:12: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
return realpath;
data/neuron-7.6.3/ivhines/src/lib/Unidraw/dialogs.cpp:338:29: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
const char* print_cmd = getenv("PRINT_CMD");
data/neuron-7.6.3/ivhines/src/lib/Unidraw/dialogs.cpp:341:36: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
const char* printer_name = getenv("PRINTER");
data/neuron-7.6.3/share/lib/python/neuron/crxd/geometry3d/graphicsPrimitives.cpp:33716:18: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (!setstate) PyErr_Clear();
data/neuron-7.6.3/share/lib/python/neuron/crxd/geometry3d/graphicsPrimitives.cpp:33717:18: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (!setstate || __Pyx_setup_reduce_is_named(setstate, __pyx_n_s_setstate_cython)) {
data/neuron-7.6.3/share/lib/python/neuron/crxd/geometry3d/graphicsPrimitives.cpp:33717:58: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (!setstate || __Pyx_setup_reduce_is_named(setstate, __pyx_n_s_setstate_cython)) {
data/neuron-7.6.3/share/lib/python/neuron/crxd/geometry3d/graphicsPrimitives.cpp:33738:16: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
Py_XDECREF(setstate);
data/neuron-7.6.3/share/lib/python/neuron/rxd/geometry3d/graphicsPrimitives.cpp:33716:18: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (!setstate) PyErr_Clear();
data/neuron-7.6.3/share/lib/python/neuron/rxd/geometry3d/graphicsPrimitives.cpp:33717:18: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (!setstate || __Pyx_setup_reduce_is_named(setstate, __pyx_n_s_setstate_cython)) {
data/neuron-7.6.3/share/lib/python/neuron/rxd/geometry3d/graphicsPrimitives.cpp:33717:58: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (!setstate || __Pyx_setup_reduce_is_named(setstate, __pyx_n_s_setstate_cython)) {
data/neuron-7.6.3/share/lib/python/neuron/rxd/geometry3d/graphicsPrimitives.cpp:33738:16: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
Py_XDECREF(setstate);
data/neuron-7.6.3/src/Random123/features/clangfeatures.h:63:44: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
#if __cplusplus>=201103L && __has_include(<random>)
data/neuron-7.6.3/src/ivoc/ivocmain.cpp:204:16: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
neuron_home = getenv("NEURONHOME");
data/neuron-7.6.3/src/ivoc/ivocmain.cpp:476:16: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
neuron_home = getenv("NEURONHOME");
data/neuron-7.6.3/src/ivoc/ivocmain.cpp:505:16: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
neuron_home = getenv("NEURONHOME");
data/neuron-7.6.3/src/ivoc/ivocmain.cpp:541:6: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if (getenv("DISPLAY")) {
data/neuron-7.6.3/src/ivoc/ivocmain.cpp:580:13: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char* h = getenv("HOME");
data/neuron-7.6.3/src/ivoc/pwman.cpp:2668:36: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
static const char* print_cmd = getenv("PRINT_CMD");
data/neuron-7.6.3/src/ivoc/pwman.cpp:2670:36: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
const char* printer_name = getenv("PRINTER");
data/neuron-7.6.3/src/ivoc/pwman.cpp:3681:21: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
const char* tdir = getenv("TEMP");
data/neuron-7.6.3/src/ivoc/pwman.cpp:3687:2: [3] (tmpfile) tmpnam:
Temporary file race condition (CWE-377).
tmpnam(tname);
data/neuron-7.6.3/src/memacs/ansi.c:137:15: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *getenv();
data/neuron-7.6.3/src/memacs/ansi.c:139:19: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((cp = getenv("TERM")) == NULL) {
data/neuron-7.6.3/src/memacs/bind.c:805:8: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *getenv();
data/neuron-7.6.3/src/memacs/bind.c:808:17: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((homedir = getenv("HOME")) != NULL) {
data/neuron-7.6.3/src/memacs/spawn.c:104:18: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *getenv();
data/neuron-7.6.3/src/memacs/spawn.c:147:19: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((cp = getenv("SHELL")) != NULL && *cp != '\0')
data/neuron-7.6.3/src/memacs/tcap.c:83:15: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *getenv();
data/neuron-7.6.3/src/memacs/tcap.c:89:25: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((tv_stype = getenv("TERM")) == NULL)
data/neuron-7.6.3/src/modlunit/io.c:291:9: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
dirs = getenv("MODL_INCLUDE");
data/neuron-7.6.3/src/modlunit/units.c:142:9: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
return getenv("NEURONHOME");
data/neuron-7.6.3/src/modlunit/units.c:509:6: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
s = getenv("MODLUNIT");
data/neuron-7.6.3/src/mswin/extra/hel2mos.cpp:140:18: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
const char* n = getenv("NEURONHOME");
data/neuron-7.6.3/src/mswin/extra/mos2nrn.cpp:63:9: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
temp = getenv("TEMP");
data/neuron-7.6.3/src/mswin/rdln/history.c:447:28: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *home = (char *)getenv ("HOME");
data/neuron-7.6.3/src/mswin/rdln/readline.c:254:14: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
extern char *getenv ();
data/neuron-7.6.3/src/mswin/rdln/readline.c:584:9: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
term = getenv ("TERM");
data/neuron-7.6.3/src/mswin/rdln/readline.c:1223:22: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
running_in_emacs = getenv ("EMACS");
data/neuron-7.6.3/src/mswin/rdln/readline.c:2155:42: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
term = terminal_name ? terminal_name : getenv ("TERM");
data/neuron-7.6.3/src/mswin/windll/dll.cpp:310:8: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
bp = getenv("PATH");
data/neuron-7.6.3/src/mswin/windll/nrnmech.h:153:22: [3] (random) drand48:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
MKDLLdec("_drand48", drand48)
data/neuron-7.6.3/src/mswin/wnrnbbs/ddeclnt.c:128:37: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
sprintf(buf, "%s\\bin\\nrnbbs", getenv("NEURONHOME"));
data/neuron-7.6.3/src/neuronmusic/neuronmusic.cpp:3381:18: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (!setstate) PyErr_Clear();
data/neuron-7.6.3/src/neuronmusic/neuronmusic.cpp:3382:18: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (!setstate || __Pyx_setup_reduce_is_named(setstate, __pyx_n_s_setstate_cython)) {
data/neuron-7.6.3/src/neuronmusic/neuronmusic.cpp:3382:58: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (!setstate || __Pyx_setup_reduce_is_named(setstate, __pyx_n_s_setstate_cython)) {
data/neuron-7.6.3/src/neuronmusic/neuronmusic.cpp:3403:16: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
Py_XDECREF(setstate);
data/neuron-7.6.3/src/nmodl/io.c:359:9: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
dirs = getenv("MODL_INCLUDE");
data/neuron-7.6.3/src/nrniv/nrnbbcore_write.cpp:1784:23: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char* corenrn_lib = getenv("CORENEURONLIB");
data/neuron-7.6.3/src/nrniv/nrnmusic.cpp:202:6: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if (getenv ("_MUSIC_CONFIG_"))
data/neuron-7.6.3/src/nrniv/nrnpy.cpp:125:17: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
nrnpy_pylib = getenv("NRN_PYLIB");
data/neuron-7.6.3/src/nrniv/nrnpy.cpp:126:18: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
nrnpy_pyhome = getenv("PYTHONHOME");
data/neuron-7.6.3/src/nrniv/nrnpy.cpp:186:6: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if (getenv("PYTHONHOME") || nrnpy_nositeflag) { return; }
data/neuron-7.6.3/src/nrnjava/njvm.cpp:228:23: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
const char* ucpenv = getenv("CLASSPATH");
data/neuron-7.6.3/src/nrnjava/njvm.cpp:424:26: [3] (misc) LoadLibrary:
Ensure that the full path to the library is specified, or current directory
may be used (CWE-829, CWE-20). Use registry entry or GetWindowsDirectory to
find library path, if you aren't already.
ret = (void *) LoadLibrary (str.string());
data/neuron-7.6.3/src/nrnoc/init.c:296:21: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
strcpy(login_name, getenv("LOGNAME"));
data/neuron-7.6.3/src/nrnoc/init.c:298:6: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if (getenv("CAT_PIPE")) {
data/neuron-7.6.3/src/nrnpython/inithoc.cpp:142:14: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
} else if (getenv("NEURON_INIT_MPI")) {
data/neuron-7.6.3/src/oc/audit.c:65:6: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if (getenv("HOCAUDIT")) {
data/neuron-7.6.3/src/oc/cygwinprt.c:26:17: [3] (misc) LoadLibrary:
Ensure that the full path to the library is specified, or current directory
may be used (CWE-829, CWE-20). Use registry entry or GetWindowsDirectory to
find library path, if you aren't already.
ret = (void *) LoadLibrary(name);
data/neuron-7.6.3/src/oc/cygwinprt.c:34:63: [3] (misc) LoadLibrary:
Ensure that the full path to the library is specified, or current directory
may be used (CWE-829, CWE-20). Use registry entry or GetWindowsDirectory to
find library path, if you aren't already.
void* dlopen_noerr(const char *name, int mode) {return (void*)LoadLibrary(name);}
data/neuron-7.6.3/src/oc/fileio.c:166:12: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
cp3 = getenv(buf);
data/neuron-7.6.3/src/oc/fileio.c:728:10: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
hlp = getenv("HOC_LIBRARY_PATH");
data/neuron-7.6.3/src/oc/macprt.c:61:7: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char* getenv(const char* s) {
data/neuron-7.6.3/src/oc/mswinprt.c:81:13: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
nh_old = getenv("NEURONHOME");
data/neuron-7.6.3/src/oc/mswinprt.c:97:16: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
neuron_home = getenv("NEURONHOME");
data/neuron-7.6.3/src/oc/mswinprt.c:208:9: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
path = getenv("TEMP");
data/neuron-7.6.3/src/oc/mswinprt.c:258:13: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
nrnhome = getenv("NEURONHOME");
data/neuron-7.6.3/src/oc/ocmain.c:32:16: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
neuron_home = getenv("NEURONHOME");
data/neuron-7.6.3/src/oc/parallel.c:42:24: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *method, *getenv();
data/neuron-7.6.3/src/oc/parallel.c:52:18: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
method = getenv("NEURON_PARALLEL_METHOD");
data/neuron-7.6.3/src/oc/plot.c:1106:14: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
extern char *getenv();
data/neuron-7.6.3/src/oc/system.c:181:18: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *sh = getenv ("SH_PATH");
data/neuron-7.6.3/src/parallel/bbsdirect.cpp:376:13: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char* wd = getenv("PWD");
data/neuron-7.6.3/src/parallel/bbsdirect.cpp:377:15: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char* home = getenv("HOME");
data/neuron-7.6.3/src/readline/history.c:404:28: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *home = (char *)getenv ("HOME");
data/neuron-7.6.3/src/readline/readline.c:539:35: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *term = rl_terminal_name, *getenv ();
data/neuron-7.6.3/src/readline/readline.c:544:9: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
term = getenv ("TERM");
data/neuron-7.6.3/src/readline/readline.c:1193:9: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char* getenv();
data/neuron-7.6.3/src/readline/readline.c:1197:22: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
running_in_emacs = getenv ("EMACS");
data/neuron-7.6.3/src/readline/readline.c:2022:9: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char* getenv();
data/neuron-7.6.3/src/readline/readline.c:2023:48: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *term = (terminal_name? terminal_name : getenv ("TERM"));
data/neuron-7.6.3/src/readline/readline.c:2049:7: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if (!getenv("TERMINFO") && strcmp(term, "xterm") == 0) {
data/neuron-7.6.3/src/readline/readline.c:3967:10: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char* getenv();
data/neuron-7.6.3/src/readline/readline.c:3968:22: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *temp_home = getenv ("HOME");
data/neuron-7.6.3/src/uxnrnbbs/mos2nrn.cpp:68:14: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((tdir = getenv("TEMP")) == NULL) {
data/neuron-7.6.3/ivhines/src/bin/iclass/classbuffer.cpp:239:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filePath[MAXPATHLEN+1];
data/neuron-7.6.3/ivhines/src/bin/iclass/classbuffer.cpp:261:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filePath[MAXPATHLEN+1];
data/neuron-7.6.3/ivhines/src/bin/iclass/classbuffer.cpp:275:31: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
InputFile* f = InputFile::open(path);
data/neuron-7.6.3/ivhines/src/bin/iclass/dialogs.cpp:367:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[MAX_PATH_LENGTH];
data/neuron-7.6.3/ivhines/src/bin/iclass/dialogs.cpp:391:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[MAX_PATH_LENGTH];
data/neuron-7.6.3/ivhines/src/bin/iclass/direct.cpp:92:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAX_PATH_LENGTH+2];
data/neuron-7.6.3/ivhines/src/bin/iclass/direct.cpp:105:25: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
SysDir* d = SysDir::open(_lib_os(String)(path));
data/neuron-7.6.3/ivhines/src/bin/iclass/direct.cpp:155:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char newpath[MAX_PATH_LENGTH+1];
data/neuron-7.6.3/ivhines/src/bin/iclass/direct.cpp:164:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(newpath, "./");
data/neuron-7.6.3/ivhines/src/bin/iclass/direct.cpp:167:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(newpath, "./");
data/neuron-7.6.3/ivhines/src/bin/iclass/direct.cpp:181:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[MAX_PATH_LENGTH+1];
data/neuron-7.6.3/ivhines/src/bin/iclass/direct.cpp:202:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char newpath[MAX_PATH_LENGTH+1];
data/neuron-7.6.3/ivhines/src/bin/iclass/direct.cpp:246:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char newpath[MAX_PATH_LENGTH+1];
data/neuron-7.6.3/ivhines/src/bin/iclass/direct.cpp:262:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char realpath[MAX_PATH_LENGTH+1];
data/neuron-7.6.3/ivhines/src/bin/iclass/direct.cpp:287:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[MAX_PATH_LENGTH+1];
data/neuron-7.6.3/ivhines/src/bin/iclass/iclass.cpp:195:17: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen((char*)filename, "r");
data/neuron-7.6.3/ivhines/src/bin/iclass/iclass.cpp:698:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int line = atoi(string);
data/neuron-7.6.3/ivhines/src/bin/idemo/main.cpp:60:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
void open();
data/neuron-7.6.3/ivhines/src/bin/idemo/main.cpp:113:33: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
{ "File Chooser ...", &App::open },
data/neuron-7.6.3/ivhines/src/bin/idemo/main.cpp:394:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
void App::open() {
data/neuron-7.6.3/ivhines/src/bin/idemo/main.cpp:621:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[20];
data/neuron-7.6.3/ivhines/src/bin/idemo/main.cpp:622:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "%.2f", v);
data/neuron-7.6.3/ivhines/src/bin/idraw/idcatalog.cpp:117:23: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
ok = fbuf.open(name, IOS_OUT) != 0;
data/neuron-7.6.3/ivhines/src/bin/idraw/idcatalog.cpp:145:23: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
_valid = fbuf.open(name, IOS_IN) != 0;
data/neuron-7.6.3/ivhines/src/bin/idraw/idcatalog.cpp:164:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (fbuf.open(name, IOS_IN) != 0) {
data/neuron-7.6.3/ivhines/src/bin/idraw/idcatalog.cpp:492:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[100];
data/neuron-7.6.3/ivhines/src/bin/idraw/idcatalog.cpp:534:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[100];
data/neuron-7.6.3/ivhines/src/bin/idraw/idcatalog.cpp:572:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[CHARBUFSIZE];
data/neuron-7.6.3/ivhines/src/bin/idraw/idcatalog.cpp:573:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char printfont[CHARBUFSIZE];
data/neuron-7.6.3/ivhines/src/bin/idraw/idcatalog.cpp:574:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char printsize[CHARBUFSIZE];
data/neuron-7.6.3/ivhines/src/bin/idraw/idcatalog.cpp:917:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sbuf[sbuf_size];
data/neuron-7.6.3/ivhines/src/bin/idraw/idcatalog.cpp:1007:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[4];
data/neuron-7.6.3/ivhines/src/bin/idraw/idcatalog.h:85:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char _buf[CHARBUFSIZE]; // contains storage for reading data
data/neuron-7.6.3/ivhines/src/bin/idraw/ided.cpp:212:51: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
_brush->SetBrush(catalog->ReadBrush(brAttrib, atoi(brIndex)));
data/neuron-7.6.3/ivhines/src/bin/idraw/ided.cpp:213:50: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
_font->SetFont(catalog->ReadFont(fontAttrib, atoi(fontIndex)));
data/neuron-7.6.3/ivhines/src/bin/idraw/ided.cpp:214:58: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
_pattern->SetPattern(catalog->ReadPattern(patAttrib, atoi(patIndex)));
data/neuron-7.6.3/ivhines/src/bin/idraw/ided.cpp:216:38: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
catalog->ReadColor(fgAttrib, atoi(fgIndex)),
data/neuron-7.6.3/ivhines/src/bin/idraw/ided.cpp:217:38: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
catalog->ReadColor(bgAttrib, atoi(bgIndex))
data/neuron-7.6.3/ivhines/src/include/Dispatch/rpcwriter.h:46:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
void open(const char* path, bool fatal, bool binary);
data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/matcheditor.h:47:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pattern[100];
data/neuron-7.6.3/ivhines/src/include/IV-Mac/canvas.h:191:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[size];
data/neuron-7.6.3/ivhines/src/include/IV-Win/MWapp.h:51:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char scratch[1024]; // static heap for general use
data/neuron-7.6.3/ivhines/src/include/IV-look/menu.h:101:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
virtual void open();
data/neuron-7.6.3/ivhines/src/include/InterViews/bitmap.h:51:20: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
static Bitmap* open(const char* filename);
data/neuron-7.6.3/ivhines/src/include/InterViews/display.h:51:21: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
static Display* open(const String&);
data/neuron-7.6.3/ivhines/src/include/InterViews/display.h:52:21: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
static Display* open(const char*);
data/neuron-7.6.3/ivhines/src/include/InterViews/display.h:53:21: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
static Display* open();
data/neuron-7.6.3/ivhines/src/include/InterViews/event.h:121:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char free_store_[200];
data/neuron-7.6.3/ivhines/src/include/InterViews/event.h:151:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char keydata[sizeof(int)];
data/neuron-7.6.3/ivhines/src/include/InterViews/hit.h:77:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char free_store_[4000];
data/neuron-7.6.3/ivhines/src/include/InterViews/regexp.h:45:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *startp[NSUBEXP];
data/neuron-7.6.3/ivhines/src/include/InterViews/regexp.h:46:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *endp[NSUBEXP];
data/neuron-7.6.3/ivhines/src/include/InterViews/regexp.h:52:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char program[1]; /* Unwarranted chumminess with compiler. */
data/neuron-7.6.3/ivhines/src/include/InterViews/reqerr.h:43:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char message[256];
data/neuron-7.6.3/ivhines/src/include/OS/directory.h:40:23: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
static Directory* open(const String&);
data/neuron-7.6.3/ivhines/src/include/OS/dirent.h:60:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char d_name[MAXNAMLEN + 1]; // name of the directory entry
data/neuron-7.6.3/ivhines/src/include/OS/file.h:59:23: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
static InputFile* open(const String& name);
data/neuron-7.6.3/ivhines/src/include/OS/host.h:34:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char name_[100];
data/neuron-7.6.3/ivhines/src/include/TIFF/tiffio.h:61:23: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern const unsigned char TIFFBitRevTable[256];
data/neuron-7.6.3/ivhines/src/include/TIFF/tiffio.h:62:23: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern const unsigned char TIFFNoBitRevTable[256];
data/neuron-7.6.3/ivhines/src/include/TIFF/tiffio.h:65:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern unsigned char TIFFBitRevTable[256];
data/neuron-7.6.3/ivhines/src/include/TIFF/tiffio.h:66:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern unsigned char TIFFNoBitRevTable[256];
data/neuron-7.6.3/ivhines/src/lib/Dispatch/rpcregistry.cpp:132:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(hostname, "localhost");
data/neuron-7.6.3/ivhines/src/lib/Dispatch/rpcwriter.cpp:45:5: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
open(path, fatal, binary);
data/neuron-7.6.3/ivhines/src/lib/Dispatch/rpcwriter.cpp:98:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
void RpcWriter::open(const char* path, bool fatal, bool binary) {
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:127:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[max_filename_length+2];
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:142:31: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
Directory* d = Directory::open(path);
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:177:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char newpath[MAXPATHLEN+1];
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:186:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(newpath, "./");
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:189:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(newpath, "./");
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:203:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[MAXPATHLEN+1];
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:224:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char newpath[MAXPATHLEN+1];
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:268:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char newpath[MAXPATHLEN+1];
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:286:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char realpath[MAXPATHLEN+1];
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:311:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[max_filename_length+1];
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:354:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[MAXPATHLEN+1];
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:438:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAXPATHLEN+1];
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/matcheditor.cpp:73:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(pattern, "%*c"); /* workaround bug in Sparc sscanf */
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/matcheditor.cpp:80:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1000];
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/menu2_6.cpp:117:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
depth_ = atoi(d);
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/message.cpp:78:8: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
pad = atoi(a);
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/strbrowser.cpp:471:42: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
clickDelay = (attrib == nil) ? 250 : atoi(attrib);
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/xevent2_6.cpp:136:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[4096];
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/xpattern.cpp:44:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char p[4];
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/xpattern.cpp:54:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char p[32];
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/bitmap.cpp:63:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
Bitmap* Bitmap::open(const char* name)
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/color.cpp:97:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char rgbName[10];
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/color.cpp:134:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char stippleData[16][8] =
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/display.cpp:79:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
Display* Display::open(const String&)
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/display.cpp:81:9: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
return open((const char*) 0);
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/display.cpp:84:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
Display* Display::open()
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/display.cpp:86:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
return open(nil);
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/display.cpp:89:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
Display* Display::open(const char*)
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/font.cpp:153:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy((char*) &name[1], "monaco");
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:74:22: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
df = fopen("debugfile", "w");
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:424:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char prePath[256];
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:425:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char fullPath[256];
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:714:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:717:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((f = fopen(buf, "r")) == (FILE*)0) {
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:718:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf2[512];
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:720:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((f = fopen(buf2, "r")) == (FILE*)0) {
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:721:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf3[1024];
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:757:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char subPath[80];
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:769:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[135];
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:778:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[135];
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:787:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[135];
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:827:22: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
display_ = Display::open();
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:847:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[135];
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:1162:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[100];
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:1531:31: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
InputFile* f = InputFile::open(String(filename));
data/neuron-7.6.3/ivhines/src/lib/IV-Win/bitmap.cpp:66:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
Bitmap* Bitmap::open(const char* name)
data/neuron-7.6.3/ivhines/src/lib/IV-Win/color.cpp:476:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char rgbName[10];
data/neuron-7.6.3/ivhines/src/lib/IV-Win/color.cpp:521:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char stippleData[16][8] =
data/neuron-7.6.3/ivhines/src/lib/IV-Win/cursor.cpp:238:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/ivhines/src/lib/IV-Win/display.cpp:118:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/neuron-7.6.3/ivhines/src/lib/IV-Win/display.cpp:246:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
Display* Display::open(const String&)
data/neuron-7.6.3/ivhines/src/lib/IV-Win/display.cpp:248:9: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
return open((const char*) 0);
data/neuron-7.6.3/ivhines/src/lib/IV-Win/display.cpp:251:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
Display* Display::open()
data/neuron-7.6.3/ivhines/src/lib/IV-Win/display.cpp:253:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
return open(nil);
data/neuron-7.6.3/ivhines/src/lib/IV-Win/display.cpp:256:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
Display* Display::open(const char*)
data/neuron-7.6.3/ivhines/src/lib/IV-Win/font.cpp:119:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/neuron-7.6.3/ivhines/src/lib/IV-Win/font.cpp:762:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[256]; // name creation workspace
data/neuron-7.6.3/ivhines/src/lib/IV-Win/mprinter.cpp:144:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char szPrinter[80];
data/neuron-7.6.3/ivhines/src/lib/IV-Win/mwlib.cpp:56:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[135];
data/neuron-7.6.3/ivhines/src/lib/IV-Win/mwlib.cpp:103:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[512];
data/neuron-7.6.3/ivhines/src/lib/IV-Win/session.cpp:231:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/neuron-7.6.3/ivhines/src/lib/IV-Win/session.cpp:234:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((f = fopen(buf, "r")) == (FILE*)0) {
data/neuron-7.6.3/ivhines/src/lib/IV-Win/session.cpp:235:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf2[512];
data/neuron-7.6.3/ivhines/src/lib/IV-Win/session.cpp:237:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((f = fopen(buf2, "r")) == (FILE*)0) {
data/neuron-7.6.3/ivhines/src/lib/IV-Win/session.cpp:245:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf3[1024];
data/neuron-7.6.3/ivhines/src/lib/IV-Win/session.cpp:276:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char subPath[80];
data/neuron-7.6.3/ivhines/src/lib/IV-Win/session.cpp:287:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[135];
data/neuron-7.6.3/ivhines/src/lib/IV-Win/session.cpp:296:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[135];
data/neuron-7.6.3/ivhines/src/lib/IV-Win/session.cpp:305:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[135];
data/neuron-7.6.3/ivhines/src/lib/IV-Win/session.cpp:347:22: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
display_ = Display::open();
data/neuron-7.6.3/ivhines/src/lib/IV-Win/session.cpp:357:25: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
windows_messages_fd = open("/dev/windows", O_RDONLY);
data/neuron-7.6.3/ivhines/src/lib/IV-Win/session.cpp:378:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[135];
data/neuron-7.6.3/ivhines/src/lib/IV-Win/session.cpp:407:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[topLen];
data/neuron-7.6.3/ivhines/src/lib/IV-Win/session.cpp:895:31: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
InputFile* f = InputFile::open(String(filename));
data/neuron-7.6.3/ivhines/src/lib/IV-X11/session.cpp:224:27: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
Display* d = Display::open(display_name);
data/neuron-7.6.3/ivhines/src/lib/IV-X11/session.cpp:232:27: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
Display* d = Display::open(display_name);
data/neuron-7.6.3/ivhines/src/lib/IV-X11/session.cpp:716:22: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
default_ = Display::open(name);
data/neuron-7.6.3/ivhines/src/lib/IV-X11/session.cpp:718:22: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
default_ = Display::open();
data/neuron-7.6.3/ivhines/src/lib/IV-X11/xbitmap.cpp:48:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
Bitmap* Bitmap::open(const char* filename) {
data/neuron-7.6.3/ivhines/src/lib/IV-X11/xdrag.cpp:137:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[256];
data/neuron-7.6.3/ivhines/src/lib/IV-X11/xfont.cpp:649:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[256];
data/neuron-7.6.3/ivhines/src/lib/IV-X11/xfont.cpp:672:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char weight[100];
data/neuron-7.6.3/ivhines/src/lib/IV-X11/xfont.cpp:673:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char slant[100];
data/neuron-7.6.3/ivhines/src/lib/IV-X11/xfont.cpp:674:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char width[100];
data/neuron-7.6.3/ivhines/src/lib/IV-X11/xwindow.cpp:1741:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
Display* Display::open(const String& s) {
data/neuron-7.6.3/ivhines/src/lib/IV-X11/xwindow.cpp:1743:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
return open(ns.string());
data/neuron-7.6.3/ivhines/src/lib/IV-X11/xwindow.cpp:1746:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
Display* Display::open() {
data/neuron-7.6.3/ivhines/src/lib/IV-X11/xwindow.cpp:1747:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
return open(nil);
data/neuron-7.6.3/ivhines/src/lib/IV-X11/xwindow.cpp:1750:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
Display* Display::open(const char* device) {
data/neuron-7.6.3/ivhines/src/lib/InterViews/fbrowser.cpp:80:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
void open();
data/neuron-7.6.3/ivhines/src/lib/InterViews/fbrowser.cpp:105:39: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
{ '\r', "open", &FileBrowserImpl::open },
data/neuron-7.6.3/ivhines/src/lib/InterViews/fbrowser.cpp:306:23: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
void FileBrowserImpl::open() {
data/neuron-7.6.3/ivhines/src/lib/InterViews/fchooser.cpp:151:23: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
dir_ = Directory::open(*name_);
data/neuron-7.6.3/ivhines/src/lib/InterViews/fchooser.cpp:197:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
String open("Open");
data/neuron-7.6.3/ivhines/src/lib/InterViews/fchooser.cpp:198:31: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
s->find_attribute("open", open);
data/neuron-7.6.3/ivhines/src/lib/InterViews/fchooser.cpp:289:40: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
layout.vcenter(kit.default_button(open, accept)),
data/neuron-7.6.3/ivhines/src/lib/InterViews/fchooser.cpp:300:78: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
g->append(layout.hbox(layout.hglue(10.0),layout.vcenter(kit.push_button(open, accept_d)), layout.hglue(10.0)));
data/neuron-7.6.3/ivhines/src/lib/InterViews/fchooser.cpp:438:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(
data/neuron-7.6.3/ivhines/src/lib/InterViews/fchooser.cpp:490:31: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
Directory* d = Directory::open(name);
data/neuron-7.6.3/ivhines/src/lib/InterViews/field.cpp:624:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[2];
data/neuron-7.6.3/ivhines/src/lib/InterViews/iv3text.cpp:766:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[8]; // needs to be dynamically adjusted
data/neuron-7.6.3/ivhines/src/lib/InterViews/iv3text.cpp:1456:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[2];
data/neuron-7.6.3/ivhines/src/lib/InterViews/menu.cpp:226:2: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
open();
data/neuron-7.6.3/ivhines/src/lib/InterViews/menu.cpp:235:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
void Menu::open() {
data/neuron-7.6.3/ivhines/src/lib/InterViews/ol_kit.cpp:1087:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fontname[20];
data/neuron-7.6.3/ivhines/src/lib/InterViews/ol_kit.cpp:1088:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(fontname, "olglyph-%ld", points_);
data/neuron-7.6.3/ivhines/src/lib/InterViews/printer.cpp:423:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char g3[40];
data/neuron-7.6.3/ivhines/src/lib/InterViews/printer.cpp:454:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(g3, "\\%03lo", c);
data/neuron-7.6.3/ivhines/src/lib/InterViews/printer.cpp:492:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char g3[24];
data/neuron-7.6.3/ivhines/src/lib/InterViews/printer.cpp:530:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(g3, "%02x", byte);
data/neuron-7.6.3/ivhines/src/lib/InterViews/printer.cpp:547:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char g3[8];
data/neuron-7.6.3/ivhines/src/lib/InterViews/printer.cpp:577:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(g3, "%02x", byte);
data/neuron-7.6.3/ivhines/src/lib/InterViews/psfont.cpp:65:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE* file = fopen(metrics_file, "r");
data/neuron-7.6.3/ivhines/src/lib/InterViews/psfont.cpp:70:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[256];
data/neuron-7.6.3/ivhines/src/lib/InterViews/psfont.cpp:103:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE* f = fopen(metrics_file, "r");
data/neuron-7.6.3/ivhines/src/lib/InterViews/style.cpp:699:31: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
InputFile* f = InputFile::open(filename);
data/neuron-7.6.3/ivhines/src/lib/InterViews/winbmp.cpp:55:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *in = fopen(filename,"r");
data/neuron-7.6.3/ivhines/src/lib/InterViews/winbmp.cpp:84:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char red[256], green[256], blue[256];
data/neuron-7.6.3/ivhines/src/lib/InterViews/winbmp.cpp:101:15: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char data[32];
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:254:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
return open(".");
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:257:23: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
Directory* Directory::open(const String& name) {
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:267:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:307:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:460:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char newpath[path_buffer_size];
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:466:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(newpath, "./");
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:741:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char newpath[path_buffer_size];
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:782:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char newpath[path_buffer_size];
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:808:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char realpath[path_buffer_size];
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:830:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[path_buffer_size];
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:850:30: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
Directory* dir = Directory::open(path);
data/neuron-7.6.3/ivhines/src/lib/OS/dirent.cpp:52:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024];
data/neuron-7.6.3/ivhines/src/lib/OS/file.cpp:221:23: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
InputFile* InputFile::open(const String& name) {
data/neuron-7.6.3/ivhines/src/lib/OS/file.cpp:229:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = ::open((char*)s->string(), O_RDONLY);
data/neuron-7.6.3/ivhines/src/lib/OS/memory.cpp:42:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(from, to, nbytes);
data/neuron-7.6.3/ivhines/src/lib/TIFF/machdep.h:248:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char b[8];
data/neuron-7.6.3/ivhines/src/lib/TIFF/machdep.h:255:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char b[4];
data/neuron-7.6.3/ivhines/src/lib/TIFF/mkg3states.c:161:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef unsigned char NullModeTable[MAX_NULLPREFIX][256];
data/neuron-7.6.3/ivhines/src/lib/TIFF/mkg3states.c:163:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef unsigned char HorizModeTable[MAX_HORIZPREFIX][256];
data/neuron-7.6.3/ivhines/src/lib/TIFF/mkg3states.c:238:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char horiz_mode_color[MAX_HORIZPREFIX];
data/neuron-7.6.3/ivhines/src/lib/TIFF/mkg3states.c:241:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char bit_mask[8] =
data/neuron-7.6.3/ivhines/src/lib/TIFF/mkspans.c:17:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char runs[256];
data/neuron-7.6.3/ivhines/src/lib/TIFF/mkspans.c:36:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char runs[2][256];
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_aux.c:148:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(tf[0], tf[i], n * sizeof (u_short));
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_compat.c:114:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[256];
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_dir.c:58:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(cp, *cpp, len);
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_dir.c:69:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(wp, *wpp, n);
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_dir.c:79:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(wp, *wpp, n);
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_dir.c:89:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(wp, *wpp, n);
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_dir.c:159:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(cp[i], tab, nw);
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_dirread.c:164:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(tif->tif_base + off, &dircount, sizeof (short));
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_dirread.c:176:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(tif->tif_base + off, dir,
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_dirread.c:180:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(tif->tif_base + off, &tif->tif_nextdiroff,
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_dirread.c:636:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(tif->tif_base + dir->tdir_offset, cp, cc);
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_dirread.c:676:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(&l, cp, dir->tdir_count);
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_dirread.c:923:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c[2];
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_dirwrite.c:196:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(td->td_fieldsset, fields, sizeof (fields));
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_dirwrite.c:555:33: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
if (!TIFFWriteData(tif, dir, (char *)table[i]))
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_dirwrite.c:577:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(cp, &dir->tdir_offset, dir->tdir_count);
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_dirwrite.c:709:35: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
if (!TIFFWriteData(tif, &tdir, (char *)tab[i]))
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_dumpmode.c:89:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(pp, tif->tif_rawcp, n);
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_dumpmode.c:136:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(tif->tif_rawcp, buf, cc);
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_fax3.c:382:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(buf, sp->b.refline, sp->b.rowbytes);
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_fax3.c:1041:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(bp, sp->b.refline, sp->b.rowbytes);
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_fax4.c:91:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(buf, sp->refline, sp->rowbytes);
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_fax4.c:113:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(bp, sp->refline, sp->rowbytes);
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_machdep.c:157:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char b[8];
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_machdep.c:164:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char b[4];
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_next.c:99:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(bp, row, scanline);
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_next.c:113:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(bp+4, row+off, n);
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_packbits.c:262:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(bp, op, ++n);
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_read.c:228:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(tif->tif_base + td->td_stripoffset[strip], buf, size);
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_read.c:425:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(tif->tif_base + td->td_stripoffset[tile], buf, size);
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_swab.c:112:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const unsigned char TIFFBitRevTable[256] = {
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_swab.c:114:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char TIFFBitRevTable[256] = {
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_swab.c:150:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const unsigned char TIFFNoBitRevTable[256] = {
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_swab.c:152:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char TIFFNoBitRevTable[256] = {
data/neuron-7.6.3/ivhines/src/lib/TIFF/tiffcompat.h:103:9: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
#define bcopy(src,dst,len) memcpy((char *)dst, (char *)src, len)
data/neuron-7.6.3/ivhines/src/lib/TIFF/tiffcompat.h:103:28: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
#define bcopy(src,dst,len) memcpy((char *)dst, (char *)src, len)
data/neuron-7.6.3/ivhines/src/lib/TIFF/tiffcompat.h:123:40: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#define TIFFOpenFile(name, mode, prot) open(name, mode)
data/neuron-7.6.3/ivhines/src/lib/TIFF/tiffcompat.h:126:40: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#define TIFFOpenFile(name, mode, prot) open(name, mode|O_BINARY, prot)
data/neuron-7.6.3/ivhines/src/lib/TIFF/tiffcompat.h:128:40: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#define TIFFOpenFile(name, mode, prot) open(name, mode, prot)
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:92:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[CHARBUFSIZE];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:119:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char enc[hex_encode+1];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:156:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char enc[hex_gray_encode+1];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:385:20: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool ok = fbuf.open((char*) name, IOS_OUT) != 0;
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:448:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
ok = fbuf.open((char*) name, IOS_IN) != 0;
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:594:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char delim[CHARBUFSIZE];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:689:20: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool ok = obuf.open(_tmpfile, IOS_OUT) != 0;
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:705:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
ok = ibuf.open(_tmpfile, IOS_IN) != 0 && RetrieveObject(in, copy);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:868:20: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool ok = fbuf.open((char*) name, IOS_OUT) != 0;
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:879:20: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool ok = fbuf.open((char*) name, IOS_IN) != 0;
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:1197:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[CHARBUFSIZE];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:1252:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[CHARBUFSIZE];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:1301:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[CHARBUFSIZE];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:1302:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char printfont[CHARBUFSIZE];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:1303:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char printsize[CHARBUFSIZE];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:1373:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pf[CHARBUFSIZE];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:1374:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ps[CHARBUFSIZE];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:1463:17: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "%02x", data[i] & 0xff);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:1469:17: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "%0*x", patternWidth/4, data[i]);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:1762:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char enc[hex_gray_encode+1];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:1819:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char enc[hex_encode+1];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:1901:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[CHARBUFSIZE];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:1902:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[CHARBUFSIZE];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:1903:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char info[CHARBUFSIZE];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catcmds.cpp:203:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[CHARBUFSIZE];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catcmds.cpp:291:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[CHARBUFSIZE];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catcmds.cpp:374:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char title[CHARBUFSIZE];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catcmds.cpp:378:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char subtitle[CHARBUFSIZE];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catcmds.cpp:427:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[CHARBUFSIZE];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catcmds.cpp:448:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[CHARBUFSIZE];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catcmds.cpp:529:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char name[20];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catcmds.cpp:530:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(name, "/tmp/XXXXXX");
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catcmds.cpp:531:12: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
int fd = mkstemp(name);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catcmds.cpp:560:23: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
ok = fbuf.open(tmpfilename, IOS_OUT) != 0;
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catcmds.cpp:562:23: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
ok = fbuf.open((char*) _dialog->Choice(), IOS_OUT) != 0;
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catcmds.cpp:587:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[CHARBUFSIZE];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/dialogs.cpp:337:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[CHARBUFSIZE];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/dialogs.cpp:533:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char spacing[CHARBUFSIZE];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/editor.cpp:118:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/import.cpp:81:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[256];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/import.cpp:106:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE* file = fopen(filename, "r");
data/neuron-7.6.3/ivhines/src/lib/Unidraw/import.cpp:110:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char creator[CHARBUFSIZE];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/import.cpp:111:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[CHARBUFSIZE];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/import.cpp:302:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE* file = fopen(filename, "r");
data/neuron-7.6.3/ivhines/src/lib/Unidraw/import.cpp:305:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[1000];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/import.cpp:357:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE* file = fopen(filename, "r");
data/neuron-7.6.3/ivhines/src/lib/Unidraw/import.cpp:362:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[1000];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/import.cpp:427:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE* file = fopen(filename, "r");
data/neuron-7.6.3/ivhines/src/lib/Unidraw/import.cpp:430:30: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
Bitmap* bm = Bitmap::open(filename);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/pspaint.cpp:95:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
_lineHt = atoi(_printsize);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/psview.cpp:842:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[CHARBUFSIZE];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/psview.cpp:849:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "%02x", data[i] & 0xff);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/psview.cpp:855:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "%0*x", patternWidth/4, data[i]);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/stateviews.cpp:210:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[CHARBUFSIZE];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/stateviews.cpp:214:13: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buf, "[part of] ");
data/neuron-7.6.3/ivhines/src/lib/Unidraw/stateviews.cpp:290:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[32];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/stateviews.cpp:293:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "mag %gx", mag);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/text.cpp:64:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char sbuf[SBUFSIZE];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/text.cpp:573:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[5];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/unidraw.cpp:226:52: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
_histlen = (attrib == nil) ? DEFAULT_HISTLEN : atoi(attrib);
data/neuron-7.6.3/share/lib/python/neuron/crxd/geometry3d/ctng.cpp:692:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ascii_chars[128];
data/neuron-7.6.3/share/lib/python/neuron/crxd/geometry3d/ctng.cpp:29067:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ctversion[4], rtversion[4];
data/neuron-7.6.3/share/lib/python/neuron/crxd/geometry3d/ctng.cpp:29071:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char message[200];
data/neuron-7.6.3/share/lib/python/neuron/crxd/geometry3d/ctng.cpp:29108:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char warning[200];
data/neuron-7.6.3/share/lib/python/neuron/crxd/geometry3d/graphicsPrimitives.cpp:688:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ascii_chars[128];
data/neuron-7.6.3/share/lib/python/neuron/crxd/geometry3d/graphicsPrimitives.cpp:34499:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ctversion[4], rtversion[4];
data/neuron-7.6.3/share/lib/python/neuron/crxd/geometry3d/graphicsPrimitives.cpp:34503:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char message[200];
data/neuron-7.6.3/share/lib/python/neuron/crxd/geometry3d/surfaces.cpp:692:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ascii_chars[128];
data/neuron-7.6.3/share/lib/python/neuron/crxd/geometry3d/surfaces.cpp:21441:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ctversion[4], rtversion[4];
data/neuron-7.6.3/share/lib/python/neuron/crxd/geometry3d/surfaces.cpp:21445:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char message[200];
data/neuron-7.6.3/share/lib/python/neuron/crxd/geometry3d/surfaces.cpp:21482:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char warning[200];
data/neuron-7.6.3/share/lib/python/neuron/rxd/geometry3d/ctng.cpp:692:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ascii_chars[128];
data/neuron-7.6.3/share/lib/python/neuron/rxd/geometry3d/ctng.cpp:29066:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ctversion[4], rtversion[4];
data/neuron-7.6.3/share/lib/python/neuron/rxd/geometry3d/ctng.cpp:29070:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char message[200];
data/neuron-7.6.3/share/lib/python/neuron/rxd/geometry3d/ctng.cpp:29107:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char warning[200];
data/neuron-7.6.3/share/lib/python/neuron/rxd/geometry3d/graphicsPrimitives.cpp:688:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ascii_chars[128];
data/neuron-7.6.3/share/lib/python/neuron/rxd/geometry3d/graphicsPrimitives.cpp:34499:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ctversion[4], rtversion[4];
data/neuron-7.6.3/share/lib/python/neuron/rxd/geometry3d/graphicsPrimitives.cpp:34503:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char message[200];
data/neuron-7.6.3/share/lib/python/neuron/rxd/geometry3d/surfaces.cpp:692:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ascii_chars[128];
data/neuron-7.6.3/share/lib/python/neuron/rxd/geometry3d/surfaces.cpp:21441:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ctversion[4], rtversion[4];
data/neuron-7.6.3/share/lib/python/neuron/rxd/geometry3d/surfaces.cpp:21445:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char message[200];
data/neuron-7.6.3/share/lib/python/neuron/rxd/geometry3d/surfaces.cpp:21482:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char warning[200];
data/neuron-7.6.3/src/Random123/features/compilerfeatures.h:274:47: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
#define R123_STATIC_ASSERT(expr, msg) typedef char static_assertion[(!!(expr))*2-1]
data/neuron-7.6.3/src/ivoc/axis.cpp:82:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/axis.cpp:89:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "save_window_.%caxis(%g,%g,%g,%d,%d,%d,%d)",
data/neuron-7.6.3/src/ivoc/axis.cpp:151:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[20];
data/neuron-7.6.3/src/ivoc/axis.cpp:162:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pform[10];
data/neuron-7.6.3/src/ivoc/axis.cpp:174:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(pform,"%%0.%.0ff",logstep+addprec);
data/neuron-7.6.3/src/ivoc/axis.cpp:176:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(pform,"%%g");
data/neuron-7.6.3/src/ivoc/axis.cpp:227:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(pform," %%0.%.0ff ",logstep+1);
data/neuron-7.6.3/src/ivoc/axis.cpp:229:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(pform," %%g ");
data/neuron-7.6.3/src/ivoc/axis.cpp:286:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[20];
data/neuron-7.6.3/src/ivoc/axis.cpp:303:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(str, "%g", x);
data/neuron-7.6.3/src/ivoc/axis.cpp:323:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(str, "%g", y);
data/neuron-7.6.3/src/ivoc/axis.cpp:411:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[20];
data/neuron-7.6.3/src/ivoc/axis.cpp:412:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "%g", val);
data/neuron-7.6.3/src/ivoc/axis.cpp:506:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[20];
data/neuron-7.6.3/src/ivoc/axis.cpp:507:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "%g", val);
data/neuron-7.6.3/src/ivoc/checkpnt.cpp:406:7: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f_ = fopen(fname, "r");
data/neuron-7.6.3/src/ivoc/checkpnt.cpp:410:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/checkpnt.cpp:483:7: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f_ = fopen(fname, "w");
data/neuron-7.6.3/src/ivoc/checkpnt.cpp:1048:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[2048], *name = buf;
data/neuron-7.6.3/src/ivoc/checkpnt.cpp:1372:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/ivoc/checkpnt.cpp:1383:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/ivoc/checkpnt.cpp:1408:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/datapath.cpp:260:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[500];
data/neuron-7.6.3/src/ivoc/datapath.cpp:312:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/ivoc/datapath.cpp:423:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/ivoc/datapath.cpp:437:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "x[%d]", i);
data/neuron-7.6.3/src/ivoc/datapath.cpp:480:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/ivoc/datapath.cpp:484:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "v(%g)", x);
data/neuron-7.6.3/src/ivoc/datapath.cpp:494:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "vext(%g)", x);
data/neuron-7.6.3/src/ivoc/datapath.cpp:496:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "vext[%d](%g)", i, x);
data/neuron-7.6.3/src/ivoc/datapath.cpp:519:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/ivoc/gifimage.cpp:170:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen(fname,"rb");
data/neuron-7.6.3/src/ivoc/gifimage.cpp:458:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[128];
data/neuron-7.6.3/src/ivoc/gifimage.cpp:464:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(str, "Unknown block type (0x%02x) at offset %ld",
data/neuron-7.6.3/src/ivoc/graph.cpp:155:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/ivoc/graph.cpp:254:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[80];
data/neuron-7.6.3/src/ivoc/graph.cpp:260:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "scene_vector_[%ld] = save_window_", i);
data/neuron-7.6.3/src/ivoc/graph.cpp:2012:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/graph.cpp:2036:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/graph.cpp:2074:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/graph.cpp:2096:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/graph.cpp:2103:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "%g", family_val_);
data/neuron-7.6.3/src/ivoc/graph.cpp:2336:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/graph.cpp:2406:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/graph.cpp:2455:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/graph.cpp:2671:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/graph.cpp:2985:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/grmanip.cpp:270:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[2];
data/neuron-7.6.3/src/ivoc/grmanip.cpp:320:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[50];
data/neuron-7.6.3/src/ivoc/grmanip.cpp:323:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(s, "crosshair x=%g y=%g", x_, y_);
data/neuron-7.6.3/src/ivoc/grmanip.cpp:326:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(s, "(%g,%g)", x_, y_);
data/neuron-7.6.3/src/ivoc/grmanip.cpp:396:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/ivoc/idraw.cpp:43:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if(!ibuf.open(name.string(), ios::in)) {
data/neuron-7.6.3/src/ivoc/idraw.cpp:45:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if(!ibuf.open(name.string(), IOS_IN)) {
data/neuron-7.6.3/src/ivoc/idraw.cpp:71:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/ivoc/idraw.cpp:72:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "[ %g %g %g %g %g %g ] concat", a00, a01, a10, a11, a20, a21);
data/neuron-7.6.3/src/ivoc/idraw.cpp:77:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[256];
data/neuron-7.6.3/src/ivoc/idraw.cpp:131:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/ivoc/idraw.cpp:138:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "%%I cfg %x%x%x\n%f %f %f SetCFg\n",
data/neuron-7.6.3/src/ivoc/idraw.cpp:294:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/ivoc/idraw.cpp:297:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "%d Poly\nEnd", count);
data/neuron-7.6.3/src/ivoc/idraw.cpp:303:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/ivoc/idraw.cpp:306:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "%d BSpl\n%%I 1\nEnd", count);
data/neuron-7.6.3/src/ivoc/idraw.cpp:312:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/ivoc/idraw.cpp:315:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "%d CBSpl\nEnd", count);
data/neuron-7.6.3/src/ivoc/idraw.cpp:347:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/ivoc/idraw.cpp:351:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "%d %d\n", int(a), int(b));
data/neuron-7.6.3/src/ivoc/idraw.cpp:417:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/ivoc/idraw.cpp:418:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "%%I\n0 0 %d %d Elli\nEnd", int(width*100), int(height*100));
data/neuron-7.6.3/src/ivoc/idraw.cpp:424:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/ivoc/idraw.cpp:437:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "%%I b %d\n%d 0 0 [", p, int(w));
data/neuron-7.6.3/src/ivoc/idraw.cpp:444:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "] 0 SetB");
data/neuron-7.6.3/src/ivoc/idraw.cpp:449:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/ivoc/idraw.cpp:456:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "%%I cfg %x%x%x\n%f %f %f SetCFg",
data/neuron-7.6.3/src/ivoc/idraw.cpp:462:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "%%I cbg %x%x%x\n%f %f %f SetCBg\n%%I p\n1 SetP",
data/neuron-7.6.3/src/ivoc/ivoc.cpp:139:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char m[1024];
data/neuron-7.6.3/src/ivoc/ivocmain.cpp:225:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cs[256];
data/neuron-7.6.3/src/ivoc/ivocmain.cpp:557:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((f = fopen(nrn_props, "r")) != (FILE*)0) {
data/neuron-7.6.3/src/ivoc/ivocmain.cpp:566:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((f = fopen(nrn_props, "r")) != (FILE*)0) {
data/neuron-7.6.3/src/ivoc/ivocmain.cpp:570:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/ivocvect.cpp:72:45: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
#define BYTEHEADER int _II__; char *_IN__; char _OUT__[16]; int BYTESWAP_FLAG=0;
data/neuron-7.6.3/src/ivoc/ivocvect.cpp:297:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/matrix.cpp:35:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/matrix.cpp:36:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "index=%d max_index=%d\n", i, j);
data/neuron-7.6.3/src/ivoc/matrix.cpp:292:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
m->bcopy(out, i0, j0, m0, n0, i1, j1);
data/neuron-7.6.3/src/ivoc/mlinedit.cpp:137:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[8]; // needs to be dynamically adjusted
data/neuron-7.6.3/src/ivoc/objcmd.cpp:72:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/ivoc/objcmd.cpp:98:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/objcmd.cpp:116:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/objcmd.cpp:141:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/objcmd.cpp:195:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/ocbox.cpp:325:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/ocbox.cpp:717:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/ocdeck.cpp:324:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/ocfile.cpp:73:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
return double(f->open(f->get_name(), "r"));
data/neuron-7.6.3/src/ivoc/ocfile.cpp:81:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
return double(f->open(f->get_name(), "w"));
data/neuron-7.6.3/src/ivoc/ocfile.cpp:89:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int err = f->open(f->get_name(), "a");
data/neuron-7.6.3/src/ivoc/ocfile.cpp:345:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool OcFile::open(const char* name, const char* type) {
data/neuron-7.6.3/src/ivoc/ocfile.cpp:351:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
file_ = fopen(expand_env_var(name), type);
data/neuron-7.6.3/src/ivoc/ocfile.cpp:356:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
file_ = fopen(expand_env_var(name), type);
data/neuron-7.6.3/src/ivoc/ocfile.cpp:495:5: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
open(fc_->selected()->string(), "w");
data/neuron-7.6.3/src/ivoc/ocfile.cpp:501:5: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
open(fc_->selected()->string(), "a");
data/neuron-7.6.3/src/ivoc/ocfile.cpp:508:5: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
open(fc_->selected()->string(), "r");
data/neuron-7.6.3/src/ivoc/ocfile.h:12:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool open(const char* filename, const char* type);
data/neuron-7.6.3/src/ivoc/ocfile.h:40:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mode_[3];
data/neuron-7.6.3/src/ivoc/ochelp.cpp:47:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/ochelp.cpp:86:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/neuron-7.6.3/src/ivoc/ochelp.cpp:112:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/ivoc/ochelp.cpp:129:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/neuron-7.6.3/src/ivoc/ochelp.cpp:147:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/neuron-7.6.3/src/ivoc/oclist.cpp:514:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/ivoc/oclist.cpp:515:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "object(%ld)", i);
data/neuron-7.6.3/src/ivoc/oclist.cpp:698:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/ocmatrix.cpp:153:20: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
void OcFullMatrix::bcopy(Matrix* out, int i0, int j0, int n0, int m0, int i1, int j1) {
data/neuron-7.6.3/src/ivoc/ocmatrix.h:58:15: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
virtual void bcopy(Matrix* mout, int i0, int j0, int n0, int m0, int i1, int j1){unimp();}
data/neuron-7.6.3/src/ivoc/ocmatrix.h:111:15: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
virtual void bcopy(Matrix* mout, int i0, int j0, int n0, int m0, int i1, int j1);
data/neuron-7.6.3/src/ivoc/ocpointer.cpp:140:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256], *d;
data/neuron-7.6.3/src/ivoc/ocpointer.cpp:147:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(d, "hoc_ac_");
data/neuron-7.6.3/src/ivoc/ocpointer.cpp:156:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(d, "=hoc_ac_");
data/neuron-7.6.3/src/ivoc/pwman.cpp:1843:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
obuf.open(name, IOS_OUT);
data/neuron-7.6.3/src/ivoc/pwman.cpp:1845:7: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
if (!tmpfile) {
data/neuron-7.6.3/src/ivoc/pwman.cpp:1849:9: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
unlink(tmpfile);
data/neuron-7.6.3/src/ivoc/pwman.cpp:1851:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
obuf.open(tmpfile, IOS_OUT);
data/neuron-7.6.3/src/ivoc/pwman.cpp:1851:12: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
obuf.open(tmpfile, IOS_OUT);
data/neuron-7.6.3/src/ivoc/pwman.cpp:1897:77: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
char* buf = new char[200 + strlen(name) + strlen(filt.string()) + 2*strlen(tmpfile)];
data/neuron-7.6.3/src/ivoc/pwman.cpp:1901:43: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
sprintf(buf, "%s %s %s", filt.string(), tmpfile,
data/neuron-7.6.3/src/ivoc/pwman.cpp:1904:56: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
sprintf(buf, "%s < %s | %s ; rm %s", filt.string(), tmpfile,
data/neuron-7.6.3/src/ivoc/pwman.cpp:1905:10: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
name, tmpfile);
data/neuron-7.6.3/src/ivoc/pwman.cpp:1909:45: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
sprintf(buf, "%s %s > %s", filt.string(), tmpfile,
data/neuron-7.6.3/src/ivoc/pwman.cpp:1912:55: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
sprintf(buf, "%s < %s > %s ; rm %s", filt.string(), tmpfile,
data/neuron-7.6.3/src/ivoc/pwman.cpp:1913:10: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
name, tmpfile);
data/neuron-7.6.3/src/ivoc/pwman.cpp:1920:9: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
unlink(tmpfile);
data/neuron-7.6.3/src/ivoc/pwman.cpp:2128:7: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
if (!tmpfile) {
data/neuron-7.6.3/src/ivoc/pwman.cpp:2132:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/neuron-7.6.3/src/ivoc/pwman.cpp:2136:31: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
if (!hoc_copyfile(filename, tmpfile)) {
data/neuron-7.6.3/src/ivoc/pwman.cpp:2141:19: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
filt.string(), tmpfile, filename);
data/neuron-7.6.3/src/ivoc/pwman.cpp:2144:14: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
filename, tmpfile,
data/neuron-7.6.3/src/ivoc/pwman.cpp:2145:19: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
filt.string(), tmpfile, filename);
data/neuron-7.6.3/src/ivoc/pwman.cpp:2148:10: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
unlink(tmpfile);
data/neuron-7.6.3/src/ivoc/pwman.cpp:2218:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[10];
data/neuron-7.6.3/src/ivoc/pwman.cpp:2219:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "%ld", i);
data/neuron-7.6.3/src/ivoc/pwman.cpp:2667:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[200];
data/neuron-7.6.3/src/ivoc/pwman.cpp:2673:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "lpr");
data/neuron-7.6.3/src/ivoc/pwman.cpp:2769:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
obuf.open(fc_print_->selected()->string(), IOS_OUT);
data/neuron-7.6.3/src/ivoc/pwman.cpp:2807:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/pwman.cpp:2809:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "BoundingBox: %g %g %g %g",
data/neuron-7.6.3/src/ivoc/pwman.cpp:2814:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "\\begin{picture}(%g, %g)",
data/neuron-7.6.3/src/ivoc/pwman.cpp:2818:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "BoundingBox: %g %g %g %g", w->left(), w->bottom(),
data/neuron-7.6.3/src/ivoc/pwman.cpp:2821:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "\\begin{picture}(%g, %g)",
data/neuron-7.6.3/src/ivoc/pwman.cpp:2914:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
obuf.open(fname, IOS_OUT);
data/neuron-7.6.3/src/ivoc/pwman.cpp:2973:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
obuf.open(fname, IOS_OUT);
data/neuron-7.6.3/src/ivoc/pwman.cpp:3074:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
obuf.open(filename, IOS_OUT);
data/neuron-7.6.3/src/ivoc/pwman.cpp:3096:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
obuf.open(filename, IOS_OUT);
data/neuron-7.6.3/src/ivoc/pwman.cpp:3119:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/ivoc/pwman.cpp:3120:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf,"{pwman_place(%d,%d,%d)}\n", w->xleft(), w->xtop(), w->is_mapped() ? 1 : 0);
data/neuron-7.6.3/src/ivoc/pwman.cpp:3140:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/ivoc/pwman.cpp:3141:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf,"{pwman_place(%d,%d)}\n", w->xleft(), w->xtop());
data/neuron-7.6.3/src/ivoc/pwman.cpp:3202:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/neuron-7.6.3/src/ivoc/pwman.cpp:3235:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/pwman.cpp:3268:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/pwman.cpp:3456:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[4];
data/neuron-7.6.3/src/ivoc/pwman.cpp:3582:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/pwman.cpp:3604:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "{PWManager[0].jwindow(ocbox_, %d, %d, %d, %d, %d)}\n",
data/neuron-7.6.3/src/ivoc/pwman.cpp:3675:8: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
char* tmpfile;
data/neuron-7.6.3/src/ivoc/pwman.cpp:3679:22: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
__temp_file_name(tmpfile, &spec);
data/neuron-7.6.3/src/ivoc/pwman.cpp:3686:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tname[L_tmpnam+1];
data/neuron-7.6.3/src/ivoc/pwman.cpp:3689:10: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
sprintf(tmpfile, "%s/%s", tdir, tname);
data/neuron-7.6.3/src/ivoc/pwman.cpp:3692:10: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
sprintf(tmpfile, "%s/nrnXXXXXX", tdir);
data/neuron-7.6.3/src/ivoc/pwman.cpp:3695:12: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
if ((fd = mkstemp(tmpfile)) == -1) {
data/neuron-7.6.3/src/ivoc/pwman.cpp:3695:20: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
if ((fd = mkstemp(tmpfile)) == -1) {
data/neuron-7.6.3/src/ivoc/pwman.cpp:3696:53: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
hoc_execerror("Could not create temporary file:", tmpfile);
data/neuron-7.6.3/src/ivoc/pwman.cpp:3700:9: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
mktemp(tmpfile);
data/neuron-7.6.3/src/ivoc/pwman.cpp:3704:29: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
tmpfile = hoc_back2forward(tmpfile);
data/neuron-7.6.3/src/ivoc/pwman.cpp:3707:9: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
return tmpfile;
data/neuron-7.6.3/src/ivoc/scene.cpp:853:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/ivoc/scene.cpp:860:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "objectvar scene_vector_[%ld]", count);
data/neuron-7.6.3/src/ivoc/scene.cpp:873:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/scene.cpp:884:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "save_window_.size(%g,%g,%g,%g)", left, right, bottom, top);
data/neuron-7.6.3/src/ivoc/scene.cpp:899:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!obuf.open(fname, IOS_OUT)) {
data/neuron-7.6.3/src/ivoc/strfun.cpp:166:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/symchoos.cpp:324:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
String open("Accept");
data/neuron-7.6.3/src/ivoc/symchoos.cpp:325:31: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
s->find_attribute("open", open);
data/neuron-7.6.3/src/ivoc/symchoos.cpp:418:40: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
layout.vcenter(kit.default_button(open, accept)),
data/neuron-7.6.3/src/ivoc/symchoos.cpp:618:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(
data/neuron-7.6.3/src/ivoc/symchoos.cpp:672:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(
data/neuron-7.6.3/src/ivoc/symdir.cpp:305:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256], *cp;
data/neuron-7.6.3/src/ivoc/symdir.cpp:396:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[50];
data/neuron-7.6.3/src/ivoc/symdir.cpp:397:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "[%d]", index);
data/neuron-7.6.3/src/ivoc/symdir.cpp:419:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[10];
data/neuron-7.6.3/src/ivoc/symdir.cpp:420:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "%d", ob->index);
data/neuron-7.6.3/src/ivoc/symdir.cpp:458:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/ivoc/symdir.cpp:546:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char xarg[20];
data/neuron-7.6.3/src/ivoc/symdir.cpp:547:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/ivoc/symdir.cpp:553:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(xarg, "( %g )", x);
data/neuron-7.6.3/src/ivoc/symdir.cpp:582:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/ivoc/utility.cpp:119:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/utility.cpp:125:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/utility.cpp:132:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (obuf.open(s, Input)) {
data/neuron-7.6.3/src/ivoc/utility.cpp:139:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (obuf.open(s, Append)) {
data/neuron-7.6.3/src/ivoc/utility.cpp:152:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (obuf.open(s, Input)) {
data/neuron-7.6.3/src/ivoc/utility.cpp:165:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/ivoc/utility.cpp:168:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "%g %g", x, y);
data/neuron-7.6.3/src/ivoc/utility.cpp:305:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/xmenu.cpp:833:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[200];
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1097:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1118:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1240:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1276:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char nu[256];
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1345:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1354:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "xpanel(%g,%g)",
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1400:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200], *c2 = buf;
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1401:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[512];
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1424:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1468:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1711:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char form[200], buf[200];
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1801:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1823:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1922:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1937:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1956:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1966:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1981:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1992:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(buf, "Doesn't exist");
data/neuron-7.6.3/src/ivoc/xmenu.cpp:1997:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "Free'd");
data/neuron-7.6.3/src/ivoc/xmenu.cpp:2005:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/ivoc/xmenu.cpp:2011:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "/* don't know the hoc path to %g", *pval_);
data/neuron-7.6.3/src/ivoc/xmenu.cpp:2014:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "/* variable freed */");
data/neuron-7.6.3/src/ivoc/xmenu.cpp:2042:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/ivoc/xmenu.cpp:2061:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[2];
data/neuron-7.6.3/src/ivoc/xmenu.cpp:2171:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char abuf[100];
data/neuron-7.6.3/src/ivoc/xmenu.cpp:2356:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[50];
data/neuron-7.6.3/src/ivoc/xmenu.cpp:2382:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "+%g", x);
data/neuron-7.6.3/src/ivoc/xmenu.cpp:2656:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/ivoc/xmenu.cpp:2661:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "// %p pointer set to %g\n",
data/neuron-7.6.3/src/ivoc/xmenu.cpp:2721:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/xmenu.cpp:2877:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/xmenu.cpp:3029:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/xyview.cpp:101:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/ivoc/xyview.cpp:104:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "\n%g setlinewidth", x);
data/neuron-7.6.3/src/ivoc/xyview.cpp:425:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/xyview.cpp:428:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "{save_window_.view(%g, %g, %g, %g, %g, %g, %g, %g)}",
data/neuron-7.6.3/src/ivoc/xyview.cpp:722:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/ivoc/xyview.cpp:726:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "scene_vector_[%ld] = save_window_", i);
data/neuron-7.6.3/src/ivoc/xyview.cpp:728:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "save_window_ = scene_vector_[%ld]", i);
data/neuron-7.6.3/src/ivoc/xyview.cpp:753:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[200];
data/neuron-7.6.3/src/ivos/InterViews/regexp.h:45:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *startp[NSUBEXP];
data/neuron-7.6.3/src/ivos/InterViews/regexp.h:46:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *endp[NSUBEXP];
data/neuron-7.6.3/src/ivos/InterViews/regexp.h:52:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char program[1]; /* Unwarranted chumminess with compiler. */
data/neuron-7.6.3/src/ivos/OS/directory.h:40:23: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
static Directory* open(const String&);
data/neuron-7.6.3/src/ivos/OS/file.h:62:23: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
static InputFile* open(const String& name);
data/neuron-7.6.3/src/ivos/OS/host.h:34:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char name_[100];
data/neuron-7.6.3/src/ivos/file.cpp:219:23: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
InputFile* InputFile::open(const String& name) {
data/neuron-7.6.3/src/ivos/file.cpp:227:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = ::open((char*)s->string(), O_RDONLY);
data/neuron-7.6.3/src/ivos/memory.cpp:42:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(from, to, nbytes);
data/neuron-7.6.3/src/memacs/bind.c:38:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char outseq[80]; /* output buffer for command sequence */
data/neuron-7.6.3/src/memacs/bind.c:139:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fname[NSTRING]; /* buffer to construct file name in */
data/neuron-7.6.3/src/memacs/bind.c:206:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char outseq[80]; /* output buffer for keystroke sequence */
data/neuron-7.6.3/src/memacs/bind.c:276:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char outseq[80]; /* output buffer for keystroke sequence */
data/neuron-7.6.3/src/memacs/bind.c:362:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char outseq[80]; /* output buffer for keystroke sequence */
data/neuron-7.6.3/src/memacs/bind.c:467:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmdstr[NSTRING]; /* string holding command to execute */
data/neuron-7.6.3/src/memacs/bind.c:500:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char token[NSTRING]; /* next token off of command line */
data/neuron-7.6.3/src/memacs/bind.c:604:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tok[NSTRING]; /* command incoming */
data/neuron-7.6.3/src/memacs/bind.c:664:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bufn[NBUFN]; /* name of buffer to execute */
data/neuron-7.6.3/src/memacs/bind.c:695:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char eline[NSTRING]; /* text of line to execute */
data/neuron-7.6.3/src/memacs/bind.c:742:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fname[NSTRING]; /* name of file to execute */
data/neuron-7.6.3/src/memacs/bind.c:767:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bname[NBUFN]; /* name of buffer */
data/neuron-7.6.3/src/memacs/bind.c:801:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fname[NSTRING]; /* buffer to construct file name in */
data/neuron-7.6.3/src/memacs/buffer.c:47:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bufn[NBUFN];
data/neuron-7.6.3/src/memacs/buffer.c:130:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bufn[NBUFN];
data/neuron-7.6.3/src/memacs/buffer.c:177:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bufn[NBUFN]; /* buffer to hold buffer name */
data/neuron-7.6.3/src/memacs/buffer.c:267:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char b[6+1];
data/neuron-7.6.3/src/memacs/buffer.c:268:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[128];
data/neuron-7.6.3/src/memacs/buffer.c:431:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *bufnum, *bufname, *cp, buf[NBUFN];
data/neuron-7.6.3/src/memacs/buffer.c:518:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
{char name[NBUFN + 10];
data/neuron-7.6.3/src/memacs/display.c:44:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char v_text[1]; /* Screen data. */
data/neuron-7.6.3/src/memacs/display.c:82:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
free((char *)vscreen[i]);
data/neuron-7.6.3/src/memacs/display.c:93:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
free((char *)pscreen[i]);
data/neuron-7.6.3/src/memacs/display.c:709:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tline[NLINE]; /* buffer for part of mode line */
data/neuron-7.6.3/src/memacs/display.c:881:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[NPAT]; /* prompt to user */
data/neuron-7.6.3/src/memacs/display.c:1269:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[NSTRING]; /* buffer to hold tentative command name */
data/neuron-7.6.3/src/memacs/edef.h:65:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pat[NPAT]; /* Search pattern */
data/neuron-7.6.3/src/memacs/edef.h:66:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rpat[NPAT]; /* replacement pattern */
data/neuron-7.6.3/src/memacs/edef.h:67:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sarg[NSTRING] = ""; /* string argument for line exec*/
data/neuron-7.6.3/src/memacs/estruct.h:222:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char b_fname[NFILEN]; /* File name */
data/neuron-7.6.3/src/memacs/estruct.h:223:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char b_bname[NBUFN]; /* Buffer name */
data/neuron-7.6.3/src/memacs/estruct.h:262:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char l_text[1]; /* A bunch of characters. */
data/neuron-7.6.3/src/memacs/file.c:44:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fname[NFILEN];
data/neuron-7.6.3/src/memacs/file.c:74:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fname[NFILEN];
data/neuron-7.6.3/src/memacs/file.c:96:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fname[NFILEN]; /* file user wishes to find */
data/neuron-7.6.3/src/memacs/file.c:108:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fname[NFILEN]; /* file user wishes to find */
data/neuron-7.6.3/src/memacs/file.c:139:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bname[NBUFN]; /* buffer name to put file */
data/neuron-7.6.3/src/memacs/file.c:205:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[NLINE];
data/neuron-7.6.3/src/memacs/file.c:334:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fname[NFILEN];
data/neuron-7.6.3/src/memacs/file.c:456:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fname[NFILEN];
data/neuron-7.6.3/src/memacs/file.c:492:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[NLINE];
data/neuron-7.6.3/src/memacs/fileio.c:33:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((ffp=fopen(fn, "r")) == NULL)
data/neuron-7.6.3/src/memacs/fileio.c:51:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((ffp=fopen(fn, "w")) == NULL) {
data/neuron-7.6.3/src/memacs/ibm.c:92:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/memacs/lock.c:33:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *lname[NLOCKS]; /* names of all locked files */
data/neuron-7.6.3/src/memacs/lock.c:113:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[NSTRING]; /* message string */
data/neuron-7.6.3/src/memacs/lock.c:165:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char obuf[NSTRING]; /* output buffer for error message */
data/neuron-7.6.3/src/memacs/main1.c:264:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bname[NBUFN]; /* buffer name of file to read */
data/neuron-7.6.3/src/memacs/main1.c:671:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mes[NFILEN + NBUFN + 50];
data/neuron-7.6.3/src/memacs/random.c:61:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/memacs/random.c:92:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "line=%d X=%d Y=%d CH=0x%x .=%ld (%d%% of %ld)",
data/neuron-7.6.3/src/memacs/random.c:285:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ichar[NSTRING]; /* buffer to hold indent of last line */
data/neuron-7.6.3/src/memacs/random.c:621:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char prompt[50]; /* string to prompt user with */
data/neuron-7.6.3/src/memacs/random.c:622:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cbuf[NPAT]; /* buffer to recieve mode name into */
data/neuron-7.6.3/src/memacs/search.c:267:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tpat[NPAT+20];
data/neuron-7.6.3/src/memacs/search.c:322:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tpat[NPAT]; /* temporary to hold search pattern */
data/neuron-7.6.3/src/memacs/spawn.c:194:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[NLINE];
data/neuron-7.6.3/src/memacs/tcap.c:58:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tcapbuf[TCAPSLEN];
data/neuron-7.6.3/src/memacs/tcap.c:85:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tcbuf[1024];
data/neuron-7.6.3/src/memacs/tcap.c:87:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char err_str[72];
data/neuron-7.6.3/src/memacs/termio.c:50:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char scrn_tmp[AMG_MAXBUF+1];
data/neuron-7.6.3/src/memacs/termio.c:65:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char obuf[NOBUF]; /* Output buffer */
data/neuron-7.6.3/src/memacs/termio.c:67:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ibuf[NIBUF]; /* Input buffer */
data/neuron-7.6.3/src/memacs/termio.c:147:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char oname[40];
data/neuron-7.6.3/src/memacs/word.c:357:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char wbuf[NSTRING]; /* buffer for current word */
data/neuron-7.6.3/src/mesch/err.c:160:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
free((char *)err_list[list_num].listp);
data/neuron-7.6.3/src/mesch/ivecop.c:35:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char line[MAXLINE];
data/neuron-7.6.3/src/mesch/machine.h:129:32: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
#define MEM_COPY(from,to,size) bcopy((char *)(from),(char *)(to),(int)(size))
data/neuron-7.6.3/src/mesch/matrixio.c:39:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char line[MAXLINE];
data/neuron-7.6.3/src/mesch/otherio.c:41:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char scratch[MAXLINE+1];
data/neuron-7.6.3/src/mesch/sparseio.c:41:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char line[MAXLINE];
data/neuron-7.6.3/src/mesch/sparseio.c:250:38: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
rows[i].elt = (row_elt *)realloc((char *)rows[i].elt,
data/neuron-7.6.3/src/mesch/sparseio.c:304:38: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
rows[i].elt = (row_elt *)realloc((char *)rows[i].elt,
data/neuron-7.6.3/src/mesch/zmatio.c:38:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char line[MAXLINE];
data/neuron-7.6.3/src/modlunit/declare.c:105:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
s->u.i = atoi(STR(q2));
data/neuron-7.6.3/src/modlunit/declare.c:132:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
s->araydim = atoi(STR(q));
data/neuron-7.6.3/src/modlunit/init.c:13:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512]; /* volatile temporary buffer */
data/neuron-7.6.3/src/modlunit/io.c:23:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char inlinebuf[600], *inlinep = inlinebuf + 30, *ctp = inlinebuf + 30;
data/neuron-7.6.3/src/modlunit/io.c:239:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char finname[200];
data/neuron-7.6.3/src/modlunit/io.c:265:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf2[200];
data/neuron-7.6.3/src/modlunit/io.c:267:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
return fopen(fname, "r");
data/neuron-7.6.3/src/modlunit/io.c:273:7: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen(buf, "r"); /* first try in directory of last file */
data/neuron-7.6.3/src/modlunit/io.c:280:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen(fname, "r"); /* next try current working directory */
data/neuron-7.6.3/src/modlunit/io.c:285:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((f = fopen(buf, "r")) != NULL)
data/neuron-7.6.3/src/modlunit/io.c:307:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen(buf2, "r");
data/neuron-7.6.3/src/modlunit/io.c:321:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fname[200];
data/neuron-7.6.3/src/modlunit/lex.c:530:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char linebuf[512], *cp;
data/neuron-7.6.3/src/modlunit/model.c:38:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char finname[200]; /* filename.mod or second argument */
data/neuron-7.6.3/src/modlunit/model.c:142:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *cp, modprefix[200];
data/neuron-7.6.3/src/modlunit/model.c:157:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fin = fopen(finname, "r")) == (FILE *) 0) {
data/neuron-7.6.3/src/modlunit/model.c:159:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fin = fopen(finname, "r")) == (FILE *) 0) {
data/neuron-7.6.3/src/modlunit/parse1.c:1733:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const *yyarg[YYERROR_VERBOSE_ARGS_MAXIMUM];
data/neuron-7.6.3/src/modlunit/parse1.c:1920:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char yymsgbuf[128];
data/neuron-7.6.3/src/modlunit/parse1.c:2175:22: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
{declare_level = atoi(STR((yyvsp[0].qp)));}
data/neuron-7.6.3/src/modlunit/units.c:45:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char *unames[NDIM];
data/neuron-7.6.3/src/modlunit/units.c:64:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dim[NDIM];
data/neuron-7.6.3/src/modlunit/units.c:66:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
signed char dim[NDIM];
data/neuron-7.6.3/src/modlunit/units.c:70:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char names[NTAB*10];
data/neuron-7.6.3/src/modlunit/units.c:126:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[256];
data/neuron-7.6.3/src/modlunit/units.c:506:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/modlunit/units.c:511:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((inpfile = fopen(s, "r")) == (FILE *)0) {
data/neuron-7.6.3/src/modlunit/units.c:515:29: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!inpfile && (inpfile = fopen(dfile, "r")) == (FILE *)0) {
data/neuron-7.6.3/src/modlunit/units.c:516:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((inpfile = fopen(dfilealt, "r")) == (FILE *)0) {
data/neuron-7.6.3/src/modlunit/units.c:520:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
inpfile = fopen(buf, "r");
data/neuron-7.6.3/src/modlunit/units.c:551:17: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((inpfile = fopen(file, "r")) == NULL) {
data/neuron-7.6.3/src/modlunit/units.c:605:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[256];
data/neuron-7.6.3/src/modlunit/units.c:608:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "%g ", p->factor);
data/neuron-7.6.3/src/modlunit/units.c:637:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(ucp,"*%c*", i+'a');
data/neuron-7.6.3/src/modlunit/units.c:655:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[20];
data/neuron-7.6.3/src/modlunit/units.h:6:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dim[NDIM];
data/neuron-7.6.3/src/modlunit/units.h:8:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
signed char dim[NDIM];
data/neuron-7.6.3/src/mswin/extra/bbstest.cpp:7:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/mswin/extra/bbstest.cpp:15:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/mswin/extra/d2uenv.c:5:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/mswin/extra/d2upath.c:28:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(u, "/cygdrive/");
data/neuron-7.6.3/src/mswin/extra/hel2mos.cpp:53:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/mswin/extra/hel2mos.cpp:56:28: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
InputFile* f = InputFile::open(sf);
data/neuron-7.6.3/src/mswin/extra/hel2mos.cpp:85:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[256];
data/neuron-7.6.3/src/mswin/extra/hel2mos.cpp:109:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/mswin/extra/hel2mos.cpp:117:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "contents.html");
data/neuron-7.6.3/src/mswin/extra/hel2mos.cpp:121:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf1[256],buf2[256];
data/neuron-7.6.3/src/mswin/extra/hel2mos.cpp:153:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/mswin/extra/hel2mos.cpp:172:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf1[256];
data/neuron-7.6.3/src/mswin/extra/hel2mos.cpp:177:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((f = fopen(buf1, "r")) == (FILE*)0) {
data/neuron-7.6.3/src/mswin/extra/hel2mos.cpp:179:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((f = fopen(buf1, "r")) == (FILE*)0) {
data/neuron-7.6.3/src/mswin/extra/hel2mos.cpp:213:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf1[512];
data/neuron-7.6.3/src/mswin/extra/mos2nrn.cpp:15:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/mswin/extra/ms1.cpp:21:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char szDDEData[256]; /* Local receive data buffer */
data/neuron-7.6.3/src/mswin/extra/neuron.cpp:19:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/mswin/extra/nrnbinstr.cpp:19:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE* f = fopen(fname, "rb");
data/neuron-7.6.3/src/mswin/extra/splitnrn.c:17:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fi = fopen(buf, "rb")) == (FILE*)0) {
data/neuron-7.6.3/src/mswin/extra/splitnrn.c:25:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fo = fopen(buf, "wb")) == (FILE*)0) {
data/neuron-7.6.3/src/mswin/extra/winmain.c:10:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[1024];
data/neuron-7.6.3/src/mswin/rdln/history.c:481:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
file = open (input, O_RDONLY, 0666);
data/neuron-7.6.3/src/mswin/rdln/history.c:557:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
file = open (filename, O_RDONLY, 0666);
data/neuron-7.6.3/src/mswin/rdln/history.c:588:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
file = open (filename, O_WRONLY | O_TRUNC | O_CREAT, 0666);
data/neuron-7.6.3/src/mswin/rdln/history.c:622:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((file = open (output, mode, 0666)) == -1)
data/neuron-7.6.3/src/mswin/rdln/history.c:956:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *temp, tt[2], tbl[3];
data/neuron-7.6.3/src/mswin/rdln/history.c:1044:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fake_s[3];
data/neuron-7.6.3/src/mswin/rdln/history.c:1645:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[1024], *t;
data/neuron-7.6.3/src/mswin/rdln/history.c:1656:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (line, "quit");
data/neuron-7.6.3/src/mswin/rdln/keymaps.c:137:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
free ((char *)map[i].function);
data/neuron-7.6.3/src/mswin/rdln/readline.c:722:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char ibuffer[512];
data/neuron-7.6.3/src/mswin/rdln/readline.c:988:25: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
macro = savestring ((char *)map[key].function);
data/neuron-7.6.3/src/mswin/rdln/readline.c:1496:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg_buf[128];
data/neuron-7.6.3/src/mswin/rdln/readline.c:2295:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ScreenPrimary+r*w+c, ScreenPrimary+r*w+c+count, w-c-count);
data/neuron-7.6.3/src/mswin/rdln/readline.c:2337:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ScreenPrimary+r*w+c+count, ScreenPrimary+r*w+c, w-c-count);
data/neuron-7.6.3/src/mswin/rdln/readline.c:3226:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dummy[5];
data/neuron-7.6.3/src/mswin/rdln/readline.c:4050:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
replacement = (char *)alloca (strlen (matches[0]) + 2);
data/neuron-7.6.3/src/mswin/rdln/readline.c:4076:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp_string[16];
data/neuron-7.6.3/src/mswin/rdln/readline.c:4757:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dummy[5];
data/neuron-7.6.3/src/mswin/rdln/readline.c:4768:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (message, "[%d]", where + history_base);
data/neuron-7.6.3/src/mswin/rdln/readline.c:4774:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (message, "reverse-");
data/neuron-7.6.3/src/mswin/rdln/readline.c:4776:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (message, "i-search)`");
data/neuron-7.6.3/src/mswin/rdln/readline.c:4781:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (message, "': ");
data/neuron-7.6.3/src/mswin/rdln/readline.c:5731:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
free ((char *)map[i].function);
data/neuron-7.6.3/src/mswin/rdln/readline.c:5741:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
free ((char *)map[keys[i]].function);
data/neuron-7.6.3/src/mswin/rdln/readline.c:5865:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
(file = open (openname, O_RDONLY, 0666)) < 0)
data/neuron-7.6.3/src/mswin/rdln/readline.c:6229:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char seq[2];
data/neuron-7.6.3/src/mswin/rdln/readline.c:6242:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char seq[2];
data/neuron-7.6.3/src/mswin/rdln/readline.c:6411:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (keyname, "\\C-%c", to_lower (UNCTRL (key)));
data/neuron-7.6.3/src/mswin/rdln/readline.c:6413:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (keyname, "\\C-?");
data/neuron-7.6.3/src/mswin/rdln/readline.c:6415:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (keyname, "%c", key);
data/neuron-7.6.3/src/mswin/rdln/readline.c:6451:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (keyname, "\\e");
data/neuron-7.6.3/src/mswin/rdln/readline.c:6453:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (keyname, "\\C-%c", to_lower (UNCTRL (key)));
data/neuron-7.6.3/src/mswin/rdln/readline.c:6455:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (keyname, "\\C-?");
data/neuron-7.6.3/src/mswin/rdln/readline.c:6457:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (keyname, "%c", key);
data/neuron-7.6.3/src/mswin/windll/coff.h:80:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s_name[8]; /* section name */
data/neuron-7.6.3/src/mswin/windll/coff.h:141:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char e_name[E_SYMNMLEN];
data/neuron-7.6.3/src/mswin/windll/coff.h:182:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char x_fname[E_FILNMLEN];
data/neuron-7.6.3/src/mswin/windll/dll.cpp:289:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[PATH_MAX];
data/neuron-7.6.3/src/mswin/windll/dll.cpp:333:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
prdebug_ = fopen(PRDEBUGFILE, "wb");
data/neuron-7.6.3/src/mswin/windll/dll.cpp:364:16: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *file = fopen(loadpath, "rb");
data/neuron-7.6.3/src/mswin/windll/dll.cpp:502:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char snameb[9], *sname, *scname;
data/neuron-7.6.3/src/mswin/windll/dll.cpp:508:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(snameb, "%.8s", syment[i].e.e_name);
data/neuron-7.6.3/src/mswin/windll/nrnmech.h:159:20: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
MKDLLdec("_fopen", fopen)
data/neuron-7.6.3/src/mswin/wnrnbbs/ddeclnt.c:32:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char szDDEString[256]; /* Local allocation of data buffer */
data/neuron-7.6.3/src/mswin/wnrnbbs/ddeclnt.c:33:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char szDDEData[256]; /* Local receive data buffer */
data/neuron-7.6.3/src/mswin/wnrnbbs/ddeclnt.c:35:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf[5]; /* Temporary, to hold count */
data/neuron-7.6.3/src/mswin/wnrnbbs/ddeclnt.c:45:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(szDDEString, "%d", i);
data/neuron-7.6.3/src/mswin/wnrnbbs/ddeclnt.c:125:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/mswin/wnrnbbs/ddeclnt.c:253:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/mswin/wnrnbbs/ddesrvr.c:47:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char szScreenText[10][80]; /* Contains 10 lines of display data*/
data/neuron-7.6.3/src/mswin/wnrnbbs/ddesrvr.c:61:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char szDDEData[256]; /* Local receive buffer */
data/neuron-7.6.3/src/mswin/wnrnbbs/ddesrvr.c:62:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char szDDEString[256]; /* Local send buffer */
data/neuron-7.6.3/src/mswin/wnrnbbs/ddesrvr.c:64:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf[100]; /* Temporary buffer for count */
data/neuron-7.6.3/src/mswin/wnrnbbs/nrnbbs.cpp:62:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/mswin/wnrnbbs/nrnbbs.cpp:73:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/mswin/wnrnbbs/nrnbbs.cpp:87:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/mswin/wnrnbbs/nrnbbs.cpp:93:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/neuronmusic/neuronmusic.cpp:688:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ascii_chars[128];
data/neuron-7.6.3/src/neuronmusic/neuronmusic.cpp:4146:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ctversion[4], rtversion[4];
data/neuron-7.6.3/src/neuronmusic/neuronmusic.cpp:4150:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char message[200];
data/neuron-7.6.3/src/nmodl/deriv.c:43:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *maxerr_str, dindepname[256];
data/neuron-7.6.3/src/nmodl/deriv.c:44:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char deriv1_advance[256], deriv2_advance[256];
data/neuron-7.6.3/src/nmodl/deriv.c:45:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ssprefix[8];
data/neuron-7.6.3/src/nmodl/deriv.c:142:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf," if (secondorder) {\n"
data/neuron-7.6.3/src/nmodl/deriv.c:236:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char base_units[256]; /*base state units */
data/neuron-7.6.3/src/nmodl/deriv.c:242:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[256];
data/neuron-7.6.3/src/nmodl/deriv.c:272:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char name[256];
data/neuron-7.6.3/src/nmodl/deriv.c:289:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char name[256];
data/neuron-7.6.3/src/nmodl/deriv.c:313:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char units[256];
data/neuron-7.6.3/src/nmodl/deriv.c:428:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char units[256];
data/neuron-7.6.3/src/nmodl/diffeq.c:84:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char lbuf[4][1000];
data/neuron-7.6.3/src/nmodl/diffeq.c:862:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const *yyarg[YYERROR_VERBOSE_ARGS_MAXIMUM];
data/neuron-7.6.3/src/nmodl/diffeq.c:1049:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char yymsgbuf[128];
data/neuron-7.6.3/src/nmodl/diffeq.c:1696:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(lbuf[i], "0.0");
data/neuron-7.6.3/src/nmodl/diffeq.c:1746:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/nmodl/discrete.c:69:8: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
num = atoi(STR(q3));
data/neuron-7.6.3/src/nmodl/init.c:11:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[NRN_BUFSIZE]; /* volatile temporary buffer */
data/neuron-7.6.3/src/nmodl/io.c:75:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *cp, word[256], *wp, test[256];
data/neuron-7.6.3/src/nmodl/io.c:100:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char inlinebuf[2][NRN_BUFSIZE], *inlinep = inlinebuf[0] + 30, *ctp = inlinebuf[0] + 30;
data/neuron-7.6.3/src/nmodl/io.c:220:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[NRN_BUFSIZE];
data/neuron-7.6.3/src/nmodl/io.c:283:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fname[256];
data/neuron-7.6.3/src/nmodl/io.c:291:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen(fname, "r");
data/neuron-7.6.3/src/nmodl/io.c:307:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char finname[NRN_BUFSIZE];
data/neuron-7.6.3/src/nmodl/io.c:333:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf2[NRN_BUFSIZE];
data/neuron-7.6.3/src/nmodl/io.c:335:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
return fopen(fname, "r");
data/neuron-7.6.3/src/nmodl/io.c:341:7: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen(buf, "r"); /* first try in directory of last file */
data/neuron-7.6.3/src/nmodl/io.c:348:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen(fname, "r"); /* next try current working directory */
data/neuron-7.6.3/src/nmodl/io.c:353:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((f = fopen(buf, "r")) != NULL)
data/neuron-7.6.3/src/nmodl/io.c:375:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen(buf2, "r");
data/neuron-7.6.3/src/nmodl/io.c:389:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fname[NRN_BUFSIZE];
data/neuron-7.6.3/src/nmodl/kinetic.c:54:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *krate[2]; /* one of these is null if flux */
data/neuron-7.6.3/src/nmodl/kinetic.c:112:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf1[NRN_BUFSIZE];
data/neuron-7.6.3/src/nmodl/kinetic.c:175:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
rterm->num = atoi(STR(q2));
data/neuron-7.6.3/src/nmodl/kinetic.c:467:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf1[NRN_BUFSIZE];
data/neuron-7.6.3/src/nmodl/kinetic.c:718:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "static int _cvspth%d = %d;\n", fun->u.i, thread_data_index++);
data/neuron-7.6.3/src/nmodl/kinetic.c:720:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, " _nrn_destroy_sparseobj_thread(_thread[_cvspth%d]._pvoid);\n", fun->u.i);
data/neuron-7.6.3/src/nmodl/kinetic.c:745:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "static int _spth%d = %d;\n", fun->u.i, thread_data_index++);
data/neuron-7.6.3/src/nmodl/kinetic.c:747:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, " _nrn_destroy_sparseobj_thread(_thread[_spth%d]._pvoid);\n", fun->u.i);
data/neuron-7.6.3/src/nmodl/kinetic.c:1057:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char eqstr[NRN_BUFSIZE];
data/neuron-7.6.3/src/nmodl/kinetic.c:1081:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf1[NRN_BUFSIZE];
data/neuron-7.6.3/src/nmodl/kinetic.c:1522:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "static int _ode_spec%d() {_reset=0;{\n", fun->u.i);
data/neuron-7.6.3/src/nmodl/kinetic.c:1524:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "static int _ode_spec%d(double* _p, Datum* _ppvar, Datum* _thread, _NrnThread* _nt) {int _reset=0;{\n", fun->u.i);
data/neuron-7.6.3/src/nmodl/kinetic.c:1529:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "static int _ode_matsol%d() {_reset=0;{\n", fun->u.i);
data/neuron-7.6.3/src/nmodl/kinetic.c:1531:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "static int _ode_matsol%d(void* _so, double* _rhs, double* _p, Datum* _ppvar, Datum* _thread, _NrnThread* _nt) {int _reset=0;{\n", fun->u.i);
data/neuron-7.6.3/src/nmodl/kinetic.c:1631:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, " _nrn_single_react(%d", r1->rterm[i]->sym->varnum);
data/neuron-7.6.3/src/nmodl/kinetic.c:1637:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, ",%d", r1->rterm[(i+1)%2]->sym->varnum);
data/neuron-7.6.3/src/nmodl/kinetic.c:1648:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "static int _singlechan%d(_v, _pp, _ppd) double _v; double* _pp; Datum* _ppd;{\n\
data/neuron-7.6.3/src/nmodl/kinetic.c:1694:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "\nstatic _singlechan_declare%d() {\n\
data/neuron-7.6.3/src/nmodl/lex.c:801:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *cp, buf[256];
data/neuron-7.6.3/src/nmodl/modl.c:54:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *modprefix, prefix_[NRN_BUFSIZE]; /* the first argument */
data/neuron-7.6.3/src/nmodl/modl.c:56:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char finname[NRN_BUFSIZE]; /* filename.mod or second argument */
data/neuron-7.6.3/src/nmodl/modl.c:108:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cs[NRN_BUFSIZE], *cp;
data/neuron-7.6.3/src/nmodl/modl.c:209:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[NRN_BUFSIZE];
data/neuron-7.6.3/src/nmodl/modl.c:226:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fin = fopen(finname, "r")) == (FILE *) 0) {
data/neuron-7.6.3/src/nmodl/modl.c:228:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fin = fopen(finname, "r")) == (FILE *) 0) {
data/neuron-7.6.3/src/nmodl/modl.c:235:17: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fparout = fopen(s, "w")) == (FILE *) 0) {
data/neuron-7.6.3/src/nmodl/modl.c:240:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fcout = fopen(s, "w")) == (FILE *) 0) {
data/neuron-7.6.3/src/nmodl/modl.c:245:17: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fctlout = fopen(s, "w")) == (FILE *) 0) {
data/neuron-7.6.3/src/nmodl/modl.c:249:17: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fnumout = fopen(s, "w")) == (FILE *) 0) {
data/neuron-7.6.3/src/nmodl/nocpout.c:148:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char suffix[256];
data/neuron-7.6.3/src/nmodl/nocpout.c:524:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, " _thread[%d]._pval = (double*)ecalloc(%d, sizeof(double));\n", thread_data_index, cnt);
data/neuron-7.6.3/src/nmodl/nocpout.c:526:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, " free((void*)(_thread[%d]._pval));\n", thread_data_index);
data/neuron-7.6.3/src/nmodl/nocpout.c:564:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "static int _thread1data_inuse = 0;\nstatic double _thread1data[%d];\n#define _gth %d\n", gind, thread_data_index);
data/neuron-7.6.3/src/nmodl/nocpout.c:566:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, " if (_thread1data_inuse) {_thread[_gth]._pval = (double*)ecalloc(%d, sizeof(double));\n }else{\n _thread[_gth]._pval = _thread1data; _thread1data_inuse = 1;\n }\n", gind);
data/neuron-7.6.3/src/nmodl/nocpout.c:671:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, ", _ba%d()", i);
data/neuron-7.6.3/src/nmodl/nocpout.c:699:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "\n#define _watch_array _ppvar + %d", watch_index);
data/neuron-7.6.3/src/nmodl/nocpout.c:704:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "\n#define _fnc_index %d\n", ppvar_cnt);
data/neuron-7.6.3/src/nmodl/nocpout.c:715:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, " if (_prop) { _nrn_free_watch(_prop->dparam, %d, %d);}\n", watch_index, watch_seen_);
data/neuron-7.6.3/src/nmodl/nocpout.c:719:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, " if (_prop) { _nrn_free_fornetcon(&(_prop->dparam[_fnc_index]._pvoid));}\n");
data/neuron-7.6.3/src/nmodl/nocpout.c:977:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "static _singlechan_declare%d();\n", singlechan_);
data/neuron-7.6.3/src/nmodl/nocpout.c:987:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "\n#define _tqitem &(_ppvar[%d]._pvoid)\n", tqitem_index);
data/neuron-7.6.3/src/nmodl/nocpout.c:1067:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, " _extcall_thread = (Datum*)ecalloc(%d, sizeof(Datum));\n", thread_data_index);
data/neuron-7.6.3/src/nmodl/nocpout.c:1092:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, " hoc_register_prop_size(_mechtype, %d, %d);\n", parraycount, ppvar_cnt);
data/neuron-7.6.3/src/nmodl/nocpout.c:1130:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "hoc_reg_singlechan(_mechtype, _singlechan_declare%d);\n", singlechan_);
data/neuron-7.6.3/src/nmodl/nocpout.c:1145:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "add_nrn_artcell(_mechtype, %d);\n", tqitem_index);
data/neuron-7.6.3/src/nmodl/nocpout.c:1156:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "pnt_receive_size[_mechtype] = %d;\n", net_receive_);
data/neuron-7.6.3/src/nmodl/nocpout.c:1160:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "add_nrn_fornetcons(_mechtype, _fnc_index);\n");
data/neuron-7.6.3/src/nmodl/nocpout.c:1203:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf1[NRN_BUFSIZE];
data/neuron-7.6.3/src/nmodl/nocpout.c:1294:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "static void* _difspace%d;\nextern double nrn_nernst_coef();\n\
data/neuron-7.6.3/src/nmodl/nocpout.c:1305:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "; *_pdfcdc=0.;\n");
data/neuron-7.6.3/src/nmodl/nocpout.c:1328:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, " for (_i=0; _i < %d; ++_i) mac_difusfunc(_f, _mechtype, _difcoef%d, &_difspace%d, _i, ", s->araydim, n, n);
data/neuron-7.6.3/src/nmodl/nocpout.c:1330:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, " for (_i=0; _i < %d; ++_i) (*_f)(_mechtype, _difcoef%d, &_difspace%d, _i, ", s->araydim, n, n);
data/neuron-7.6.3/src/nmodl/nocpout.c:1334:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, " mac_difusfunc(_f,_mechtype, _difcoef%d, &_difspace%d, 0, ", n, n);
data/neuron-7.6.3/src/nmodl/nocpout.c:1336:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, " (*_f)(_mechtype, _difcoef%d, &_difspace%d, 0, ", n, n);
data/neuron-7.6.3/src/nmodl/nocpout.c:1345:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "%d, %d",
data/neuron-7.6.3/src/nmodl/nocpout.c:1348:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "%d, %d", s->varnum, d->varnum);
data/neuron-7.6.3/src/nmodl/nocpout.c:1463:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char u[NRN_BUFSIZE];
data/neuron-7.6.3/src/nmodl/nocpout.c:1624:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "static void _ba%d(Node*_nd, double* _pp, Datum* _ppd, Datum* _thread, _NrnThread* _nt) ", ++ba_index_);
data/neuron-7.6.3/src/nmodl/nocpout.c:1638:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "%d", ba);
data/neuron-7.6.3/src/nmodl/nocpout.c:1984:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ionname[256];
data/neuron-7.6.3/src/nmodl/nocpout.c:2380:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "\n\
data/neuron-7.6.3/src/nmodl/nocpout.c:2384:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "\n#define _cvode_ieq _ppvar[%d]._i\n",cvode_ieq_index);
data/neuron-7.6.3/src/nmodl/nocpout.c:2394:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf," _ode_spec%d", cvode_num_);
data/neuron-7.6.3/src/nmodl/nocpout.c:2405:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "\
data/neuron-7.6.3/src/nmodl/nocpout.c:2431:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "static void _ode_matsol_instance%d(_threadargsproto_);\n", cvode_num_);
data/neuron-7.6.3/src/nmodl/nocpout.c:2433:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "\nstatic void _ode_matsol_instance%d(_threadargsproto_) {\n", cvode_num_);
data/neuron-7.6.3/src/nmodl/nocpout.c:2437:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "_cvode_sparse(&_cvsparseobj%d, %d, _dlist%d, _p, _ode_matsol%d, &_coef%d);\n",
data/neuron-7.6.3/src/nmodl/nocpout.c:2440:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "_cvode_sparse_thread(&_thread[_cvspth%d]._pvoid, %d, _dlist%d, _p, _ode_matsol%d, _ppvar, _thread, _nt);\n",
data/neuron-7.6.3/src/nmodl/nocpout.c:2444:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "_ode_matsol%d", cvode_num_);
data/neuron-7.6.3/src/nmodl/nocpout.c:2453:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "_ode_matsol_instance%d(_threadargs_);\n", cvode_num_);
data/neuron-7.6.3/src/nmodl/nocpout.c:2465:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "_cvode_ieq + %d, &", sindex);
data/neuron-7.6.3/src/nmodl/nocpout.c:2480:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "\n\
data/neuron-7.6.3/src/nmodl/nocpout.c:2531:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(b, "if (_nt->_vcv) { _ode_spec%d(_p, _ppvar, _thread, _nt); }\n", cvode_num_);
data/neuron-7.6.3/src/nmodl/nocpout.c:2533:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(b, "if (_nt->_vcv) { _ode_spec%d(); }\n", cvode_num_);
data/neuron-7.6.3/src/nmodl/nocpout.c:2551:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char snew[256];
data/neuron-7.6.3/src/nmodl/nocpout.c:2564:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(snew, "_args[%d]", i);
data/neuron-7.6.3/src/nmodl/nocpout.c:2675:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char snew[256];
data/neuron-7.6.3/src/nmodl/nocpout.c:2681:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "{int _ifn%d, _nfn%d; double* _fnargs%d, **_fnargslist%d;\n\
data/neuron-7.6.3/src/nmodl/nocpout.c:2686:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "\t _fnargs%d = _fnargslist%d[_ifn%d];\n", i,i,i);
data/neuron-7.6.3/src/nmodl/nocpout.c:2692:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(snew, "_fnargs%d[%d]", for_netcons_, i);
data/neuron-7.6.3/src/nmodl/parsact.c:154:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[NRN_BUFSIZE];
data/neuron-7.6.3/src/nmodl/parsact.c:171:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[NRN_BUFSIZE];
data/neuron-7.6.3/src/nmodl/parsact.c:214:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[NRN_BUFSIZE];
data/neuron-7.6.3/src/nmodl/parsact.c:256:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[NRN_BUFSIZE];
data/neuron-7.6.3/src/nmodl/parsact.c:319:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[NRN_BUFSIZE], *pstr;
data/neuron-7.6.3/src/nmodl/parsact.c:358:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char nam[256], *un;
data/neuron-7.6.3/src/nmodl/parsact.c:622:9: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ntab = atoi(STR(q = q->next));
data/neuron-7.6.3/src/nmodl/parsact.c:1148:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "double _arg[%d];\n", i);
data/neuron-7.6.3/src/nmodl/parsact.c:1183:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "\nstatic double _watch%d_cond(_pnt) Point_process* _pnt; {\n",
data/neuron-7.6.3/src/nmodl/parsact.c:1187:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "\t_p = _pnt->_prop->param; _ppvar = _pnt->_prop->dparam;\n\tv = NODEV(_pnt->node);\n return ");
data/neuron-7.6.3/src/nmodl/parse1.c:1806:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const *yyarg[YYERROR_VERBOSE_ARGS_MAXIMUM];
data/neuron-7.6.3/src/nmodl/parse1.c:1993:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char yymsgbuf[128];
data/neuron-7.6.3/src/nmodl/parse1.c:2222:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
{model_level = atoi(STR((yyvsp[0].qp)));}
data/neuron-7.6.3/src/nmodl/parse1.c:2334:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
{ int i = atoi(STR((yyvsp[-3].qp)));
data/neuron-7.6.3/src/nmodl/parse1.c:2513:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
{int i = atoi(STR((yyvsp[-4].qp)));
data/neuron-7.6.3/src/nmodl/parse1.c:2531:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
{int i = atoi(STR((yyvsp[-8].qp)));
data/neuron-7.6.3/src/nmodl/parse1.c:2850:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
{(yyval.i) = atoi(STR((yyvsp[-1].qp))); lastok = (yyvsp[0].qp);}
data/neuron-7.6.3/src/nmodl/sens.c:152:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sname[256], dname[256];
data/neuron-7.6.3/src/nmodl/simultan.c:177:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "{ double* _savstate%d = _thread[_dith%d]._pval;\n\
data/neuron-7.6.3/src/nmodl/solve.c:405:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sval[256];
data/neuron-7.6.3/src/nrncvode/cvodeobj.cpp:173:6: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
d->atol(chkarg(1, 0., 1e9));
data/neuron-7.6.3/src/nrncvode/cvodeobj.cpp:176:12: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
return d->atol();
data/neuron-7.6.3/src/nrncvode/hocevent.cpp:160:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char stmt[256], objname[100], buf[200];
data/neuron-7.6.3/src/nrncvode/netcvode.cpp:335:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/nrncvode/netcvode.cpp:351:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/nrncvode/netcvode.cpp:2324:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/nrncvode/netcvode.cpp:2325:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "net_move tt-nt_t = %g", tt-PP2t(pnt));
data/neuron-7.6.3/src/nrncvode/netcvode.cpp:2344:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/nrncvode/netcvode.cpp:2345:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "artcell_net_move tt-nt_t = %g", tt - nt->_t);
data/neuron-7.6.3/src/nrncvode/netcvode.cpp:2400:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/nrncvode/netcvode.cpp:2401:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "net_send td-t = %g", td - nt->_t);
data/neuron-7.6.3/src/nrncvode/netcvode.cpp:2436:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/nrncvode/netcvode.cpp:2437:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "net_send td-t = %g", td - nt->_t);
data/neuron-7.6.3/src/nrncvode/netcvode.cpp:2462:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/nrncvode/netcvode.cpp:2463:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "net_event time-t = %g", time-PP2t(pnt));
data/neuron-7.6.3/src/nrncvode/netcvode.cpp:3282:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[300];
data/neuron-7.6.3/src/nrncvode/netcvode.cpp:3283:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ppname[200];
data/neuron-7.6.3/src/nrncvode/netcvode.cpp:4378:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[200];
data/neuron-7.6.3/src/nrncvode/netcvode.cpp:4419:16: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
void NetCvode::atol(double x) {
data/neuron-7.6.3/src/nrncvode/netcvode.cpp:4514:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/nrncvode/netcvode.cpp:4736:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/nrncvode/netcvode.cpp:4972:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/nrncvode/netcvode.cpp:5818:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/nrncvode/netcvode.h:131:7: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
void atol(double); double atol(){return atol_;}
data/neuron-7.6.3/src/nrncvode/netcvode.h:131:28: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
void atol(double); double atol(){return atol_;}
data/neuron-7.6.3/src/nrncvode/occvode.cpp:195:18: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
atv[i] = ncv_->atol();
data/neuron-7.6.3/src/nrncvode/occvode.cpp:382:18: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
atv[i] = ncv_->atol();
data/neuron-7.6.3/src/nrncvode/spdaveb.c:293:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[ 128 ];
data/neuron-7.6.3/src/nrncvode/spdaveb.c:305:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "f(%d %4.2f) i(%d %4.2f) s(%d %4.2f)",
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:358:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char dbuf[1024];
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:409:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen(fname, "w");
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:437:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen(fname, "r");
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:456:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:602:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fn[200];
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:603:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(fn, "out/tmp.%d.%d", gids[i], nrnmpi_myid);
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:619:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fname[100];
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:627:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(fname, "binbufout/global.%d", global_size);
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:628:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
assert(f = fopen(fname, "w"));
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:633:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(fname, "binbufout/global.size");
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:634:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
assert(f = fopen(fname, "w"));
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:641:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(fname, "binbufout/%d.%d", gids[i], sizes[i]);
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:642:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
assert(f = fopen(fname, "w"));
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:647:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(fname, "binbufout/%d.size", gids[i]);
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:648:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
assert(f = fopen(fname, "w"));
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:851:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fn[200];
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:852:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(fn, "in/tmp.%d", gids[i]);
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:875:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fname[100];
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:880:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(fname, "binbufin/global.size");
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:881:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
assert(f = fopen(fname, "r"));
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:887:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(fname, "binbufin/global.%d", global_size);
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:888:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen(fname, "r");
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:899:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(fname, "binbufin/%d.size", gids[i]);
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:900:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
assert(f = fopen(fname, "r"));
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:908:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(fname, "binbufin/%d.%d", gids[i], sz);
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:909:7: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen(fname, "r");
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1008:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[256];
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1393:15: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (debug) { sprintf(dbuf, "Enter core()"); PDEBUG; }
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1394:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1395:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "//core");
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1400:15: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (debug) { sprintf(dbuf, "Leave core()"); PDEBUG; }
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1527:15: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (debug) { sprintf(dbuf, "Enter gids()"); PDEBUG; }
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1529:15: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (debug) { sprintf(dbuf, "Leave gids()"); PDEBUG; }
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1541:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1544:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "begin cell");
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1551:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "end cell");
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1583:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1608:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "begin section");
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1612:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "end section");
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1621:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "begin section");
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1632:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "end section");
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1644:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1680:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1681:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "//contents");
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1695:15: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (debug) { sprintf(dbuf, "Enter node(nd)"); PDEBUG; }
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1720:15: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (debug) { sprintf(dbuf, "Leave node(nd)"); PDEBUG; }
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1725:15: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (debug) { sprintf(dbuf, "Enter node01(sec, nd)"); PDEBUG; }
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1752:15: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (debug) { sprintf(dbuf, "Leave node01(sec, nd)"); PDEBUG; }
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1756:15: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (debug) { sprintf(dbuf, "Enter mech(prop type %d)", p->type); PDEBUG; }
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1762:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1778:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "callback");
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1818:15: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (debug) { sprintf(dbuf, "Leave mech(prop type %d)", p->type); PDEBUG; }
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1822:15: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (debug) { sprintf(dbuf, "Enter netrecv_pp(pp prop type %d)", pp->prop->type); PDEBUG; }
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1823:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1000];
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1838:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "NetCon");
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1892:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "SelfEvent");
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:1929:15: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (debug) { sprintf(dbuf, "Leave netrecv_pp(pp prop type %d)", pp->prop->type); PDEBUG; }
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:2264:15: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (debug) { sprintf(dbuf, "Enter possible_presyn()"); PDEBUG; }
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:2265:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:2276:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "PreSyn");
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:2292:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "PreSyn");
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:2397:15: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (debug) { sprintf(dbuf, "Leave possible_presyn()"); PDEBUG; }
data/neuron-7.6.3/src/nrniv/bgpdmasetup.cpp:14:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fname[100];
data/neuron-7.6.3/src/nrniv/bgpdmasetup.cpp:15:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(fname, "debug.%d", nrnmpi_myid);
data/neuron-7.6.3/src/nrniv/bgpdmasetup.cpp:16:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen(fname, "a");
data/neuron-7.6.3/src/nrniv/bgpdmasetup.cpp:30:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fname[100];
data/neuron-7.6.3/src/nrniv/bgpdmasetup.cpp:31:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(fname, "debug.%d", nrnmpi_myid);
data/neuron-7.6.3/src/nrniv/bgpdmasetup.cpp:32:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen(fname, "a");
data/neuron-7.6.3/src/nrniv/bgpdmasetup.cpp:60:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fname[100];
data/neuron-7.6.3/src/nrniv/bgpdmasetup.cpp:61:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(fname, "debug.%d", nrnmpi_myid);
data/neuron-7.6.3/src/nrniv/bgpdmasetup.cpp:62:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen(fname, "a");
data/neuron-7.6.3/src/nrniv/bgpdmasetup.cpp:78:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fname[100];
data/neuron-7.6.3/src/nrniv/bgpdmasetup.cpp:79:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(fname, "debug.%d", nrnmpi_myid);
data/neuron-7.6.3/src/nrniv/bgpdmasetup.cpp:80:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen(fname, "a");
data/neuron-7.6.3/src/nrniv/cxprop.cpp:87:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[200];
data/neuron-7.6.3/src/nrniv/cxprop.cpp:88:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(line, "temp_%d_%d", nrnmpi_myid, nrnmpi_numprocs);
data/neuron-7.6.3/src/nrniv/cxprop.cpp:89:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen(line, "r");
data/neuron-7.6.3/src/nrniv/cxprop.cpp:584:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/nrniv/cxprop.cpp:591:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "temp2_%d", nrnmpi_myid);
data/neuron-7.6.3/src/nrniv/cxprop.cpp:593:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "temp_%d_%d", nrnmpi_myid, nrnmpi_numprocs);
data/neuron-7.6.3/src/nrniv/cxprop.cpp:595:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen(buf, "w");
data/neuron-7.6.3/src/nrniv/have2want.cpp:123:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/nrniv/have2want.cpp:124:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "key %lld owned by multiple ranks\n", (long long)key);
data/neuron-7.6.3/src/nrniv/have2want.cpp:154:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/nrniv/have2want.cpp:155:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "key = %lld is wanted but does not exist\n", (long long)key);
data/neuron-7.6.3/src/nrniv/hocmech.cpp:210:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/nrniv/hocmech.cpp:252:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/nrniv/hocmech.cpp:329:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/nrniv/kschan.cpp:37:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/nrniv/kschan.cpp:121:35: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
double* p, Datum* pd, double* atol, int type){
data/neuron-7.6.3/src/nrniv/kschan.cpp:124:32: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
c->map(ieq, pv, pvdot, p, pd, atol);
data/neuron-7.6.3/src/nrniv/kschan.cpp:628:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char s[20];;
data/neuron-7.6.3/src/nrniv/kschan.cpp:894:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[50];
data/neuron-7.6.3/src/nrniv/kschan.cpp:895:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "Chan%d", obj_->index);
data/neuron-7.6.3/src/nrniv/kschan.cpp:912:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/nrniv/kschan.cpp:922:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char unsuffix[100];
data/neuron-7.6.3/src/nrniv/kschan.cpp:968:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char old_suffix[100];
data/neuron-7.6.3/src/nrniv/kschan.cpp:1177:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/nrniv/kschan.cpp:1332:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/nrniv/kschan.cpp:1418:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/nrniv/kschan.cpp:1422:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(buf+strlen(buf)-1, "_ion");
data/neuron-7.6.3/src/nrniv/kschan.cpp:1912:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[20];
data/neuron-7.6.3/src/nrniv/kschan.cpp:1913:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "s%d", i);
data/neuron-7.6.3/src/nrniv/kschan.cpp:1961:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char unsuffix[100];
data/neuron-7.6.3/src/nrniv/kschan.cpp:1999:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100], buf1[100];
data/neuron-7.6.3/src/nrniv/kschan.cpp:2845:35: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
double* p, Datum* pd, double* atol){
data/neuron-7.6.3/src/nrniv/matrixmap.h:46:14: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
inline void bcopy(Matrix* mout, int i0, int j0, int n0, int m0, int i1, int j1) {
data/neuron-7.6.3/src/nrniv/matrixmap.h:47:6: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
m_.bcopy(mout, i0, j0, n0, m0, i1, j1);
data/neuron-7.6.3/src/nrniv/multisplit.cpp:409:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[100];
data/neuron-7.6.3/src/nrniv/multisplit.cpp:410:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(s, "two sid = %d at same point on tree rooted at", sid);
data/neuron-7.6.3/src/nrniv/multisplit.cpp:3322:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
FILE* f; char fname[100];
data/neuron-7.6.3/src/nrniv/multisplit.cpp:3324:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(fname, "pmat.%04d", nrnmpi_myid);
data/neuron-7.6.3/src/nrniv/multisplit.cpp:3325:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen(fname, "w");
data/neuron-7.6.3/src/nrniv/netpar.cpp:305:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/nrniv/netpar.cpp:940:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char m[200];
data/neuron-7.6.3/src/nrniv/netpar.cpp:942:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(m, "gid=%d already exists as an input port", gid);
data/neuron-7.6.3/src/nrniv/netpar.cpp:946:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(m, "gid=%d already exists on this process as an output port", gid);
data/neuron-7.6.3/src/nrniv/netpar.cpp:1058:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/nrniv/netpar.cpp:1059:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "gid=%d is in the input list. Must register prior to connecting", gid);
data/neuron-7.6.3/src/nrniv/netpar.cpp:1063:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/nrniv/netpar.cpp:1064:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "gid=%d has not been set on rank %d", gid, nrnmpi_myid);
data/neuron-7.6.3/src/nrniv/netpar.cpp:1173:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/nrniv/netpar.cpp:1174:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "gid %d owned by %d but no associated cell", gid, nrnmpi_myid);
data/neuron-7.6.3/src/nrniv/nonlinz.cpp:652:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/nrniv/nonlinz.cpp:653:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "Impedance calculation did not converge in %d iterations. Max state change on last iteration was %g (Iterations stop at %g)\n",
data/neuron-7.6.3/src/nrniv/nrnbbcore_write.cpp:198:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fname[1024];
data/neuron-7.6.3/src/nrniv/nrnbbcore_write.cpp:199:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[1024];
data/neuron-7.6.3/src/nrniv/nrnbbcore_write.cpp:840:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errmes[100];
data/neuron-7.6.3/src/nrniv/nrnbbcore_write.cpp:841:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errmes, "Unknown semantics type %d for dparam item %d of", dmap[j], j);
data/neuron-7.6.3/src/nrniv/nrnbbcore_write.cpp:852:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE* f = fopen(fname, "wb");
data/neuron-7.6.3/src/nrniv/nrnbbcore_write.cpp:901:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE* f = fopen(fname, "w");
data/neuron-7.6.3/src/nrniv/nrnbbcore_write.cpp:955:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char n[256];
data/neuron-7.6.3/src/nrniv/nrnbbcore_write.cpp:1355:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fname[1000];
data/neuron-7.6.3/src/nrniv/nrnbbcore_write.cpp:1359:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE* f = fopen(fname, "wb");
data/neuron-7.6.3/src/nrniv/nrnbbcore_write.cpp:1376:7: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen(fname, "w");
data/neuron-7.6.3/src/nrniv/nrnbbcore_write.cpp:1581:16: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp = fopen(filename.c_str(), "w");
data/neuron-7.6.3/src/nrniv/nrnbbcore_write.cpp:1720:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *f = fopen(fname.c_str(), "w");
data/neuron-7.6.3/src/nrniv/nrnbbcore_write.cpp:1800:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:88:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char suffix[100];
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:104:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:105:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char suffix[100];
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:140:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char n[50];
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:167:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:206:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf,"nseg = %d", sec->nnode-1); hoc_ivlabel(buf);
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:225:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf,"v(%g)", x); hoc_ivpvalue("v",hoc_val_pointer(buf), false, hoc_lookup("v")->extra);
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:254:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:268:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:286:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char n[50];
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:317:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf2[200];
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:338:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:344:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "nrnallpointmenu(%d)", i);
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:366:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char suffix[100];
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:380:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "nrnpointmenu(%p)", ob);
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:428:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:665:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char suffix[100];
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:728:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:769:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf2[200];
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:855:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:1240:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/nrniv/nrnpy.cpp:291:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[100];
data/neuron-7.6.3/src/nrniv/nrnpy.cpp:293:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(name, "python%c%c.dll", ver[i][0], ver[i][2]);
data/neuron-7.6.3/src/nrniv/nrnpy.cpp:333:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[2048];
data/neuron-7.6.3/src/nrniv/nrnpy.cpp:350:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[256];
data/neuron-7.6.3/src/nrniv/nrnpy.cpp:352:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(name, "libnrnpython%d", pyver10);
data/neuron-7.6.3/src/nrniv/nrnpy.cpp:355:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(name, "libnrnpython%c%c", cp[0], cp[1]);
data/neuron-7.6.3/src/nrniv/nrnpy.cpp:357:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(name, "libnrnpython27");
data/neuron-7.6.3/src/nrniv/partrans.cpp:241:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/nrniv/partrans.cpp:278:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[40];
data/neuron-7.6.3/src/nrniv/partrans.cpp:279:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(tmp, "%lld", (long long)sgid);
data/neuron-7.6.3/src/nrniv/partrans.cpp:935:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/nrniv/partrans.cpp:936:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "that is %d != %ld", ninst, targets_->count());
data/neuron-7.6.3/src/nrniv/partrans.cpp:1098:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fname[1000];
data/neuron-7.6.3/src/nrniv/partrans.cpp:1100:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE* f = fopen(fname, "wb");
data/neuron-7.6.3/src/nrniv/prcellstate.cpp:183:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/nrniv/prcellstate.cpp:185:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE* f = fopen(buf, "w");
data/neuron-7.6.3/src/nrniv/rotate3d.cpp:146:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[2];
data/neuron-7.6.3/src/nrniv/savstate.cpp:702:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!ocf->open(ocf->get_name(), "r")) {
data/neuron-7.6.3/src/nrniv/savstate.cpp:709:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/nrniv/savstate.cpp:785:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!ocf->open(ocf->get_name(), "w")) {
data/neuron-7.6.3/src/nrniv/savstate.cpp:927:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/nrniv/shape.cpp:1021:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/nrniv/shape.cpp:1448:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/nrniv/shapeplt.cpp:441:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/nrniv/shapeplt.cpp:729:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/nrniv/shapeplt.cpp:730:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "{graphItem.color(%d)}\n", spi_->colorid_);
data/neuron-7.6.3/src/nrniv/shapeplt.cpp:760:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/nrniv/shapeplt.cpp:792:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "{graphItem.size(rvp_.left(), rvp_.right(), %g, %g)}\n", cv->low(), cv->high()); oc.run(buf);
data/neuron-7.6.3/src/nrniv/shapeplt.cpp:793:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "{graphItem.addobject(rvp_, %d, 1) graphItem.yaxis()}\n", spi_->colorid_); oc.run(buf);
data/neuron-7.6.3/src/nrniv/shapeplt.cpp:838:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((f = fopen(name.string(), "r")) == 0) {
data/neuron-7.6.3/src/nrniv/shapeplt.cpp:955:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[50];
data/neuron-7.6.3/src/nrniv/shapeplt.cpp:957:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "%5g", x);
data/neuron-7.6.3/src/nrniv/spaceplt.cpp:410:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/nrniv/spaceplt.cpp:418:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "rvp_.origin(%g)", origin_);
data/neuron-7.6.3/src/nrniv/spaceplt.cpp:422:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "save_window_.addobject(rvp_, %d, %d, %g, %g)",
data/neuron-7.6.3/src/nrniv/spaceplt.cpp:431:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[256];
data/neuron-7.6.3/src/nrniv/spaceplt.cpp:477:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/nrniv/spaceplt.cpp:666:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/nrniv/spaceplt.cpp:669:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "hoc_ac_ = ");
data/neuron-7.6.3/src/nrniv/spaceplt.cpp:674:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(p2, "hoc_ac_");
data/neuron-7.6.3/src/nrniv/splitcell.cpp:80:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/nrniv/splitcell.cpp:81:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "%d and %d", nrnmpi_myid, that_host);
data/neuron-7.6.3/src/nrniv/vrecord.cpp:401:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/nrniv/vrecord.cpp:430:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/nrnjava/njvm.cpp:196:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/neuron-7.6.3/src/nrnjava/njvm.cpp:350:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char radixtest[50];
data/neuron-7.6.3/src/nrnjava/njvm.cpp:351:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(radixtest, "%g", 1.5);
data/neuron-7.6.3/src/nrnjava/njvm.cpp:485:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[256];
data/neuron-7.6.3/src/nrnjava/nrnjni.cpp:233:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sig[100];
data/neuron-7.6.3/src/nrnmpi/nrnmpi_dynam.c:69:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(pmes, "Try loading openmpi\n");
data/neuron-7.6.3/src/nrnmpi/nrnmpi_dynam.c:78:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(pmes+strlen(pmes), "Is openmpi installed? If not in default location, need a LD_LIBRARY_PATH.\n");
data/neuron-7.6.3/src/nrnmpi/nrnmpi_dynam.c:82:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(pmes, "Try loading msmpi\n");
data/neuron-7.6.3/src/nrnmpi/nrnmpi_dynam.c:93:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(pmes, "Try loading openmpi\n");
data/neuron-7.6.3/src/nrnmpi/nrnmpi_dynam.c:100:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(pmes+strlen(pmes), "Try loading mpich2\n");
data/neuron-7.6.3/src/nrnmpi/nrnmpi_dynam.c:123:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(pmes+strlen(pmes), "could not dynamically load libmpi.so or libmpich2.so\n");
data/neuron-7.6.3/src/nrnmpi/nrnrt.c:98:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[10];
data/neuron-7.6.3/src/nrnmpi/nrnrt.c:106:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "NRN%d", ++i);
data/neuron-7.6.3/src/nrnoc/cabcode.c:1766:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char name[512];
data/neuron-7.6.3/src/nrnoc/cabcode.c:1800:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[256];
data/neuron-7.6.3/src/nrnoc/cabcode.c:1827:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char name[200];
data/neuron-7.6.3/src/nrnoc/cabcode.c:1902:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf1[200];
data/neuron-7.6.3/src/nrnoc/cabcode.c:2117:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[100];
data/neuron-7.6.3/src/nrnoc/cabcode.c:2138:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/nrnoc/cabcode.c:2201:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/nrnoc/cabcode.c:2429:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *str, *cp, buf[100];
data/neuron-7.6.3/src/nrnoc/eion.c:397:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[300];
data/neuron-7.6.3/src/nrnoc/fadvance.c:945:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
batch_file = fopen(name, "w");
data/neuron-7.6.3/src/nrnoc/init.c:87:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char login_name[20]; /* store user's login for sys.c & rcs.c */
data/neuron-7.6.3/src/nrnoc/init.c:227:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen(fn, "rb");
data/neuron-7.6.3/src/nrnoc/init.c:337:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE* ff = fopen(DLL_DEFAULT_FNAME, "r");
data/neuron-7.6.3/src/nrnoc/init.c:351:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[5100];
data/neuron-7.6.3/src/nrnoc/init.c:531:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200], *cp; int indx; unsigned nsub=0;
data/neuron-7.6.3/src/nrnoc/multicore.c:462:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[50];
data/neuron-7.6.3/src/nrnoc/multicore.c:463:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "bench.%d.dat", nrnmpi_myid);
data/neuron-7.6.3/src/nrnoc/multicore.c:464:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen(buf, "w");
data/neuron-7.6.3/src/nrnoc/multicore.c:1144:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/nrnoc/multicore.c:1185:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "in thread partition %d is not a root section", it);
data/neuron-7.6.3/src/nrnoc/multicore.c:1189:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "appeared again in partition %d", it);
data/neuron-7.6.3/src/nrnoc/multicore.c:1196:1: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "The total number of cells, %d, is different than the number of user partition cells, %d\n", nrn_global_ncell, n);
data/neuron-7.6.3/src/nrnoc/nrnnemo.c:35:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[50];
data/neuron-7.6.3/src/nrnoc/nrnnemo.c:41:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fin = fopen(name, "w")) == (FILE *)0) {
data/neuron-7.6.3/src/nrnoc/nrnnemo.c:45:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fmark = fopen(name, "w")) == (FILE *)0) {
data/neuron-7.6.3/src/nrnoc/nrnnemo.c:49:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fdat = fopen(name, "w")) == (FILE *)0) {
data/neuron-7.6.3/src/nrnoc/nrnversion.c:14:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[256];
data/neuron-7.6.3/src/nrnoc/nrnversion.c:26:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char head[1024];
data/neuron-7.6.3/src/nrnoc/nrnversion.c:74:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "%d", nrn_main_launch);
data/neuron-7.6.3/src/nrnoc/osxdlfcn.c:51:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char errstr[ERR_STR_LEN];
data/neuron-7.6.3/src/nrnoc/osxdlfcn.c:214:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char undersym[257]; /* Saves calls to malloc(3) */
data/neuron-7.6.3/src/nrnoc/solve.c:279:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char direc[10];
data/neuron-7.6.3/src/nrnoc/solve.c:283:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(direc, "(%d-%d)", i, 1-i);
data/neuron-7.6.3/src/nrnoc/treeset.c:1828:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fnd = fopen(gargstr(1), "w");
data/neuron-7.6.3/src/nrnpython/inithoc.cpp:103:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/nrnpython/inithoc.cpp:166:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((f = fopen(buf, "r")) != 0) {
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:86:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char array_interface_typestr[5] = "|f8";
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:281:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512], *cp;
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:293:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(cp += strlen(cp), "[%d]", self->indices_[i]);
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:295:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(cp += strlen(cp), "[?]");
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:297:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(cp += strlen(cp), "()");
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:300:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(cp, "<hoc ref value %g>", self->u.x_);
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:306:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(cp, "<all section iterator>");
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:308:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(cp, "<pointer to hoc scalar %g>",
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:313:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(cp, "<TopLevelHocInterpreter>");
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:401:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char e[200];
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:923:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:1261:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char e[200];
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:1387:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char e[200];
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:1557:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char e[200];
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:1567:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char e[200];
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:1593:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char e[200];
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:1599:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char e[200];
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:1600:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(e, "unsubscriptable object, type %d\n", po->type_);
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:2003:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[50];
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:2004:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "item %d not a number", i);
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:2027:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[50];
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:2028:11: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "item %d not a number", i);
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:2107:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[50];
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:2108:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "%d of %d", i, size);
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:2116:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[50];
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:2117:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "%d of %d", i, size);
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:2193:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char _OUT__[16]; \
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:2261:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((char*)vector_vec(vec), datastr, len);
data/neuron-7.6.3/src/nrnpython/nrnpy_nrn.cpp:113:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[512];
data/neuron-7.6.3/src/nrnpython/nrnpy_nrn.cpp:133:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "__nrnsec_%p", sec);
data/neuron-7.6.3/src/nrnpython/nrnpy_nrn.cpp:676:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/nrnpython/nrnpy_nrn.cpp:677:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "__nrnsec_%p", self->sec_);
data/neuron-7.6.3/src/nrnpython/nrnpy_nrn.cpp:887:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/nrnpython/nrnpy_nrn.cpp:1264:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/nrnpython/nrnpy_nrn.cpp:1631:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[200];
data/neuron-7.6.3/src/nrnpython/nrnpy_nrn.cpp:1747:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/nrnpython/nrnpy_nrn.cpp:1777:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/nrnpython/nrnpy_p2h.cpp:350:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/neuron-7.6.3/src/nrnpython/nrnpython.cpp:48:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/neuron-7.6.3/src/nrnpython/nrnpython.cpp:57:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "sys.path.prepend('')");
data/neuron-7.6.3/src/nrnpython/nrnpython.cpp:106:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE* fp = fopen(fname, "r");
data/neuron-7.6.3/src/nrnpython/rxd.c:164:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(_curr_indices,curr_index, sizeof(int)*num_currents);
data/neuron-7.6.3/src/nrnpython/rxd.c:169:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(_curr_scales, curr_scale, sizeof(double)*num_currents);
data/neuron-7.6.3/src/nrnpython/rxd.c:174:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(_curr_ptrs, curr_ptrs, sizeof(PyHocObject*)*num_currents);
data/neuron-7.6.3/src/nrnpython/rxd.c:186:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(_conc_indices, conc_index, sizeof(int)*conc_count);
data/neuron-7.6.3/src/nrnpython/rxd.c:191:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(_conc_ptrs, conc_ptrs, sizeof(PyHocObject*)*conc_count);
data/neuron-7.6.3/src/nrnpython/rxd.c:225:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(_rxd_zero_volume_indices,zero_volume_indices,sizeof(long)*num_zero_volume_indices);
data/neuron-7.6.3/src/nrnpython/rxd.c:465:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(_memb_species_count,num_species,sizeof(int)*num_currents);
data/neuron-7.6.3/src/nrnpython/rxd.c:468:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(_memb_net_charges,net_charges,sizeof(int)*num_currents);
data/neuron-7.6.3/src/nrnpython/rxd.c:471:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(_rxd_flux_scale,scales,sizeof(double)*num_currents);
data/neuron-7.6.3/src/nrnpython/rxd.c:496:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(_memb_cur_charges[i], &charges[k], sizeof(int)*num_species[i]);
data/neuron-7.6.3/src/nrnpython/rxd.c:499:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(_memb_cur_ptrs[i], &ptrs[k], sizeof(PyHocObject*)*num_species[i]);
data/neuron-7.6.3/src/nrnpython/rxd.c:507:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(_memb_cur_mapped[i][j],&mapped[2*k],2*sizeof(int));
data/neuron-7.6.3/src/nrnpython/rxd.c:509:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(_memb_cur_mapped_ecs[i][j],&mapped_ecs[2*k],2*sizeof(int));
data/neuron-7.6.3/src/nrnpython/rxd.c:549:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(_cur_indices, cur_idxs, sizeof(int)*num_currents);
data/neuron-7.6.3/src/nrnpython/rxd.c:553:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(_cur_node_indices, node_idxs, sizeof(int)*num_currents);
data/neuron-7.6.3/src/nrnpython/rxd.c:802:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(react->mc_multiplier[i], (mult+i*nseg), nseg*sizeof(double));
data/neuron-7.6.3/src/nrnpython/rxd.c:930:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(list->indices,idx,sizeof(int)*len);
data/neuron-7.6.3/src/nrnpython/rxd.c:955:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(_rxd_zero_volume_indices,zvi,sizeof(long)*num_zvi);
data/neuron-7.6.3/src/nrnpython/rxd.c:1126:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(_regions,regions,sizeof(int)*_num_reactions);
data/neuron-7.6.3/src/nrnpython/rxd.c:1129:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(_num_species,num_species,sizeof(int)*_num_reactions);
data/neuron-7.6.3/src/nrnpython/rxd.c:1154:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(_mc_mult_count, mc_mult_count, sizeof(int)*_num_reactions);
data/neuron-7.6.3/src/nrnpython/rxd.c:1309:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(y,states,sizeof(double)*num_states);
data/neuron-7.6.3/src/nrnpython/rxd.c:1339:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(states,my_states,sizeof(double)*num_states); //Invalid read & write of size 8
data/neuron-7.6.3/src/nrnpython/rxd.c:1392:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ydot,rhs,sizeof(double)*num_states); //Invalid write of size 8
data/neuron-7.6.3/src/nrnpython/rxd_extracellular.c:1069:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(g->states, g->adi_dir_z->states_out, sizeof(double)*g->size_x*g->size_y*g->size_z);
data/neuron-7.6.3/src/oc/audit.c:60:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/oc/audit.c:158:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fname[200];
data/neuron-7.6.3/src/oc/audit.c:159:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[256];
data/neuron-7.6.3/src/oc/audit.c:168:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((f = fopen(fname, "w")) == (FILE*)0) {
data/neuron-7.6.3/src/oc/audit.c:194:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/oc/audit.c:201:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "hocaudit%d", n);
data/neuron-7.6.3/src/oc/audit.c:206:16: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((faudit = fopen(buf, "w")) == (FILE*)0) {
data/neuron-7.6.3/src/oc/audit.c:239:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200], *bp;
data/neuron-7.6.3/src/oc/audit.c:240:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(buf, "rm ");
data/neuron-7.6.3/src/oc/audit.c:262:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/oc/audit.c:263:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char retdir[200];
data/neuron-7.6.3/src/oc/audit.c:286:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/oc/audit.c:300:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/oc/axis.c:311:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[200];
data/neuron-7.6.3/src/oc/axis.c:322:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ss[6];
data/neuron-7.6.3/src/oc/code.c:42:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *s[2];
data/neuron-7.6.3/src/oc/code.c:1196:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[10];
data/neuron-7.6.3/src/oc/code.c:1199:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(id, "%d ", nrnmpi_myid_world);
data/neuron-7.6.3/src/oc/code.c:2244:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char name[100];
data/neuron-7.6.3/src/oc/code.c:2246:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[20];
data/neuron-7.6.3/src/oc/code.c:2356:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[50];
data/neuron-7.6.3/src/oc/code2.c:247:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *pf, *format, errbuf[100], **hoc_pgargstr();
data/neuron-7.6.3/src/oc/code2.c:363:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "arg %d must be a string", iarg+2);
data/neuron-7.6.3/src/oc/code2.c:369:17: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "arg %d must be a pointer to a number", iarg+2);
data/neuron-7.6.3/src/oc/code2.c:417:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "incomplete format specifier for arg %d", iarg + 3);
data/neuron-7.6.3/src/oc/code2.c:420:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "unknown conversion specifier for arg %d", iarg + 3);
data/neuron-7.6.3/src/oc/code2.c:423:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "missing arg %d", iarg + 2);
data/neuron-7.6.3/src/oc/code2.c:428:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(errbuf, "too many ( > %d) args", iarg + 2);
data/neuron-7.6.3/src/oc/code2.c:462:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fp = fopen(stdoutfile, "r")) == (FILE *)0) {
data/neuron-7.6.3/src/oc/code2.c:632:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[BUFSIZ];
data/neuron-7.6.3/src/oc/code2.c:664:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[BUFSIZ];
data/neuron-7.6.3/src/oc/code2.c:699:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[BUFSIZ];
data/neuron-7.6.3/src/oc/fileio.c:32:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
df = fopen("debugfile", "w");
data/neuron-7.6.3/src/oc/fileio.c:47:22: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
hoc_redir_stdout = fopen(gargstr(1), "wb");
data/neuron-7.6.3/src/oc/fileio.c:68:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f1 = fopen(gargstr(1), "wb");
data/neuron-7.6.3/src/oc/fileio.c:134:23: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
ERRCHK(if ((fout = fopen(expand_env_var(fname), "w")) == (FILE *)0)
data/neuron-7.6.3/src/oc/fileio.c:155:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/oc/fileio.c:363:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fs[256];
data/neuron-7.6.3/src/oc/fileio.c:383:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fs[256];
data/neuron-7.6.3/src/oc/fileio.c:449:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *pbuf, *pfmt, *pfrag, frag[120];
data/neuron-7.6.3/src/oc/fileio.c:560:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/neuron-7.6.3/src/oc/fileio.c:565:19: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
}else if ( (fp = fopen("hocload.tmp", "r")) == (FILE*)0) {
data/neuron-7.6.3/src/oc/fileio.c:587:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[1024];
data/neuron-7.6.3/src/oc/fileio.c:589:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[1024], *f;
data/neuron-7.6.3/src/oc/fileio.c:674:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char expname[hoc_load_file_size_];
data/neuron-7.6.3/src/oc/fileio.c:676:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[hoc_load_file_size_], old[hoc_load_file_size_];
data/neuron-7.6.3/src/oc/fileio.c:677:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fname[hoc_load_file_size_], cmd[hoc_load_file_size_];
data/neuron-7.6.3/src/oc/fileio.c:713:7: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen(name, "r");
data/neuron-7.6.3/src/oc/fileio.c:722:7: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen(base, "r"); /* cwd */
data/neuron-7.6.3/src/oc/fileio.c:750:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen(expand_env_var(fname), "r");
data/neuron-7.6.3/src/oc/fileio.c:762:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(path, "$(NEURONHOME)/lib/hoc");
data/neuron-7.6.3/src/oc/fileio.c:768:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen(expand_env_var(fname), "r");
data/neuron-7.6.3/src/oc/fileio.c:852:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[20];
data/neuron-7.6.3/src/oc/fmenu.c:394:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/oc/fmenu.c:611:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char istr[80],*istrptr; int key;
data/neuron-7.6.3/src/oc/fmenu.c:613:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[10];
data/neuron-7.6.3/src/oc/fmenu.c:619:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "%c",istr[0]);
data/neuron-7.6.3/src/oc/fmenu.c:626:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "%c",key);
data/neuron-7.6.3/src/oc/fmenu.c:673:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[100];
data/neuron-7.6.3/src/oc/fmenu.c:680:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/oc/fmenu.c:686:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "%13c", SPACE);
data/neuron-7.6.3/src/oc/getsym.c:75:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[256];
data/neuron-7.6.3/src/oc/getsym.c:163:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[256];
data/neuron-7.6.3/src/oc/hoc.c:373:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sbuf[256], *p = sbuf;
data/neuron-7.6.3/src/oc/hoc.c:950:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char *stdinonly[1];
data/neuron-7.6.3/src/oc/hoc.c:1460:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[10];
data/neuron-7.6.3/src/oc/hoc.c:1463:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(id, "%d ", nrnmpi_myid_world);
data/neuron-7.6.3/src/oc/hoc_oop.c:82:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char s[100];
data/neuron-7.6.3/src/oc/hoc_oop.c:357:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/oc/hoc_oop.c:723:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[200];
data/neuron-7.6.3/src/oc/hoc_oop.c:854:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/oc/hoc_oop.c:873:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/oc/hoc_oop.c:1552:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mname[256], signature[256], *cn, *buf;
data/neuron-7.6.3/src/oc/hoc_oop.c:1829:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/neuron-7.6.3/src/oc/hoc_oop.c:1880:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char path[512];
data/neuron-7.6.3/src/oc/hoc_oop.c:2127:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/neuron-7.6.3/src/oc/hoc_oop.c:2133:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "object type is nil instead of");
data/neuron-7.6.3/src/oc/hocedit.c:133:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[2];
data/neuron-7.6.3/src/oc/macprt.c:33:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char prePath[256];
data/neuron-7.6.3/src/oc/macprt.c:34:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char fullPath[256];
data/neuron-7.6.3/src/oc/macprt.c:62:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[200];
data/neuron-7.6.3/src/oc/macprt.c:68:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buf, ":demo:");
data/neuron-7.6.3/src/oc/mswinprt.c:37:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256]; char *s;
data/neuron-7.6.3/src/oc/mswinprt.c:66:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf1[256], *nh_old;
data/neuron-7.6.3/src/oc/mswinprt.c:71:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((f = fopen(buf1, "r")) == (FILE*)0) {
data/neuron-7.6.3/src/oc/mswinprt.c:73:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((f = fopen(buf1, "r")) == (FILE*)0) {
data/neuron-7.6.3/src/oc/mswinprt.c:154:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char s[4096] = {0};
data/neuron-7.6.3/src/oc/mswinprt.c:203:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/oc/mswinprt.c:276:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256], stin[128];
data/neuron-7.6.3/src/oc/mswinprt.c:298:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
while((fin = fopen(SEMA1, "r")) == (FILE*)0) {
data/neuron-7.6.3/src/oc/mswinprt.c:304:26: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!redirect && (fin = fopen(SEMA2, "r")) != (FILE*)0) {
data/neuron-7.6.3/src/oc/nocable.c:47:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char dummystring[1];
data/neuron-7.6.3/src/oc/nrn_vsscanf.c:201:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[513];
data/neuron-7.6.3/src/oc/nrn_vsscanf.c:245:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[513];
data/neuron-7.6.3/src/oc/nrn_vsscanf.c:386:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char b1[128], b2[128];
data/neuron-7.6.3/src/oc/nrn_vsscanf.c:387:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c1[128], c2[128];
data/neuron-7.6.3/src/oc/nrn_vsscanf.c:388:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s1[128], s2[128];
data/neuron-7.6.3/src/oc/nrn_vsscanf.c:395:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[512];
data/neuron-7.6.3/src/oc/nrn_vsscanf.c:408:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(str, " abc -12 37 101 3.4e-1 12.34 102.23 xyz %p def ghi jkl %% ",
data/neuron-7.6.3/src/oc/nrnfilewrap.c:69:7: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen(path, mode);
data/neuron-7.6.3/src/oc/nrnfilewrap.c:172:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE* f = fopen(path, mode);
data/neuron-7.6.3/src/oc/nrnfilewrap.h:49:22: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#define nrn_fw_fopen fopen
data/neuron-7.6.3/src/oc/ocmain.c:12:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hoc_console_buffer[256];
data/neuron-7.6.3/src/oc/ocmain.c:63:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *our_argv[1];
data/neuron-7.6.3/src/oc/parallel.c:69:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[10], *pnt = parallel_argv;
data/neuron-7.6.3/src/oc/parallel.c:78:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "%5d", i);
data/neuron-7.6.3/src/oc/parallel.c:168:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[20];
data/neuron-7.6.3/src/oc/parallel.c:228:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(pnt, "-parallel 0"); /* pad val with 00000 (assume max int) */
data/neuron-7.6.3/src/oc/parallel.c:234:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
parallel_val = atoi(argv[++j]);
data/neuron-7.6.3/src/oc/parse.c:1958:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const *yyarg[YYERROR_VERBOSE_ARGS_MAXIMUM];
data/neuron-7.6.3/src/oc/parse.c:2145:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char yymsgbuf[128];
data/neuron-7.6.3/src/oc/plot.c:173:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/neuron-7.6.3/src/oc/plot.c:599:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char hardplot_filename[100];
data/neuron-7.6.3/src/oc/plot.c:610:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
hpdev = fopen(s, "w");
data/neuron-7.6.3/src/oc/plot.c:642:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char fig_text_preamble[100];
data/neuron-7.6.3/src/oc/regexp.c:81:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char expbuf[ESIZE+4];
data/neuron-7.6.3/src/oc/regexp.c:86:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char *braslist[NBRA];
data/neuron-7.6.3/src/oc/regexp.c:87:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char *braelist[NBRA];
data/neuron-7.6.3/src/oc/regexp.c:103:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bracket[NBRA], *bracketp;
data/neuron-7.6.3/src/oc/system.c:134:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *argv[4];
data/neuron-7.6.3/src/oc/system.c:166:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *argv[4];
data/neuron-7.6.3/src/oc/system.c:174:14: [2] (race) vfork:
On some old systems, vfork() permits race conditions, and it's very
difficult to use correctly (CWE-362). Use fork() instead.
if ((pid = vfork ()) == 0)
data/neuron-7.6.3/src/oc/x.c:255:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *color_names[Ncolors] = { "black", "white", "yellow",
data/neuron-7.6.3/src/oc/xred.c:68:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char istr[80], c[2] ; double input;
data/neuron-7.6.3/src/oc/xred.c:107:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char defalt[80], **pdefalt;
data/neuron-7.6.3/src/oc/xred.c:135:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char istr[80], c[2], instring[40], *result;
data/neuron-7.6.3/src/oc/xred.c:185:19: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
((strchr_ptr = (char *)strchr(cs_ptr, ct[0]))
data/neuron-7.6.3/src/parallel/bbsdirect.cpp:318:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(sargv[3], "%d", nrnmpi_numprocs);
data/neuron-7.6.3/src/parallel/bbslsrv.cpp:199:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(m->u.s, bytes, n);
data/neuron-7.6.3/src/parallel/bbslsrv.cpp:247:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(s, unpack_->u.s, *n);
data/neuron-7.6.3/src/parallel/bbssrv.cpp:133:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key[512];
data/neuron-7.6.3/src/parallel/ocbbs.cpp:324:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key[50];
data/neuron-7.6.3/src/parallel/ocbbs.cpp:325:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(key, "%g", *getarg(1));
data/neuron-7.6.3/src/parallel/ocbbs.cpp:421:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char key[50];
data/neuron-7.6.3/src/parallel/ocbbs.cpp:425:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(key, "%g", *getarg(1));
data/neuron-7.6.3/src/readline/history.c:438:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
file = open (input, O_RDONLY, 0666);
data/neuron-7.6.3/src/readline/history.c:514:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
file = open (filename, O_RDONLY, 066);
data/neuron-7.6.3/src/readline/history.c:545:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
file = open (filename, O_WRONLY | O_TRUNC | O_CREAT, 0666);
data/neuron-7.6.3/src/readline/history.c:580:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((file = open (output, mode, 0666)) == -1)
data/neuron-7.6.3/src/readline/history.c:904:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *temp, tt[2], tbl[3];
data/neuron-7.6.3/src/readline/history.c:1013:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fake_s[3];
data/neuron-7.6.3/src/readline/history.c:1641:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[1024], *t;
data/neuron-7.6.3/src/readline/history.c:1652:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (line, "quit");
data/neuron-7.6.3/src/readline/keymaps.c:133:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
free ((char *)map[i].function);
data/neuron-7.6.3/src/readline/readline.c:688:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char ibuffer[512];
data/neuron-7.6.3/src/readline/readline.c:958:31: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *macro = savestring ((char *)map[key].function);
data/neuron-7.6.3/src/readline/readline.c:1428:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg_buf[128];
data/neuron-7.6.3/src/readline/readline.c:3689:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp_string[2];
data/neuron-7.6.3/src/readline/readline.c:4433:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (message, "[%d]", where + history_base);
data/neuron-7.6.3/src/readline/readline.c:4439:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (message, "reverse-");
data/neuron-7.6.3/src/readline/readline.c:4441:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (message, "i-search)`");
data/neuron-7.6.3/src/readline/readline.c:4446:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (message, "': ");
data/neuron-7.6.3/src/readline/readline.c:5399:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
free ((char *)map[i].function);
data/neuron-7.6.3/src/readline/readline.c:5409:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
free ((char *)map[keys[i]].function);
data/neuron-7.6.3/src/readline/readline.c:5524:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
(file = open (openname, O_RDONLY, 0666)) < 0)
data/neuron-7.6.3/src/readline/readline.c:5853:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char seq[2];
data/neuron-7.6.3/src/scopmath/abort.c:50:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpstr[4];
data/neuron-7.6.3/src/scopmath/csoda.c:1411:61: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
/* Subroutine */ int lsoda_(f, neq, y, t, tout, itol, rtol, atol, itask,
data/neuron-7.6.3/src/scopmath/csoda.c:1417:20: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
doublereal *rtol, *atol;
data/neuron-7.6.3/src/scopmath/csoda.c:2464:7: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
--atol;
data/neuron-7.6.3/src/scopmath/csoda.c:2718:13: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
atoli = atol[1];
data/neuron-7.6.3/src/scopmath/csoda.c:2725:14: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
atoli = atol[i];
data/neuron-7.6.3/src/scopmath/csoda.c:2811:42: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ewset_(&ls0001_1.n, itol, &rtol[1], &atol[1], &rwork[ls0001_1.lyh], &
data/neuron-7.6.3/src/scopmath/csoda.c:2867:13: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
atoli = atol[1];
data/neuron-7.6.3/src/scopmath/csoda.c:2871:14: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
atoli = atol[i];
data/neuron-7.6.3/src/scopmath/csoda.c:3014:42: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ewset_(&ls0001_1.n, itol, &rtol[1], &atol[1], &rwork[ls0001_1.lyh], &
data/neuron-7.6.3/src/scopmath/csoda.c:5291:44: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
/* Subroutine */ int ewset_(n, itol, rtol, atol, ycur, ewt)
data/neuron-7.6.3/src/scopmath/csoda.c:5293:20: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
doublereal *rtol, *atol, *ycur, *ewt;
data/neuron-7.6.3/src/scopmath/csoda.c:5316:7: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
--atol;
data/neuron-7.6.3/src/scopmath/csoda.c:5330:49: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ewt[i] = rtol[1] * (d_1 = ycur[i], abs(d_1)) + atol[1];
data/neuron-7.6.3/src/scopmath/csoda.c:5337:49: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ewt[i] = rtol[1] * (d_1 = ycur[i], abs(d_1)) + atol[i];
data/neuron-7.6.3/src/scopmath/csoda.c:5344:49: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ewt[i] = rtol[i] * (d_1 = ycur[i], abs(d_1)) + atol[1];
data/neuron-7.6.3/src/scopmath/csoda.c:5351:49: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ewt[i] = rtol[i] * (d_1 = ycur[i], abs(d_1)) + atol[i];
data/neuron-7.6.3/src/scopmath/csodabnc.c:49:23: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
static doublereal atol;
data/neuron-7.6.3/src/scopmath/csodabnc.c:110:51: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
lsoda_(funct, &neq, y, pt, &tout, &itol, &rtol, &atol, &itask, &istate,
data/neuron-7.6.3/src/scopmath/expfit.c:220:21: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *refdata, *fopen();
data/neuron-7.6.3/src/scopmath/expfit.c:224:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *fgets(), tmpstr[81];
data/neuron-7.6.3/src/scopmath/expfit.c:231:20: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((refdata = fopen(filename, "r")) == NULL)
data/neuron-7.6.3/src/scopmath/force.c:234:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fopen(), *pfile;
data/neuron-7.6.3/src/scopmath/force.c:236:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpstr[81];
data/neuron-7.6.3/src/scopmath/force.c:242:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((pfile = fopen(filename, "r")) != NULL)
data/neuron-7.6.3/src/scopmath/schedule.c:112:22: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *datafile, *fopen();
data/neuron-7.6.3/src/scopmath/schedule.c:114:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[81];
data/neuron-7.6.3/src/scopmath/schedule.c:121:21: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((datafile = fopen(filename, "r")) == NULL)
data/neuron-7.6.3/src/scopmath/seidel.c:173:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
free((char *) rowptr[i].colindex);
data/neuron-7.6.3/src/scopmath/simplex.c:78:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[21], valu[21], units[21];
data/neuron-7.6.3/src/sparse13/spoutput.c:420:22: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *pMatrixFile, *fopen();
data/neuron-7.6.3/src/sparse13/spoutput.c:426:24: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((pMatrixFile = fopen(File, "w")) == NULL)
data/neuron-7.6.3/src/sparse13/spoutput.c:574:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fopen();
data/neuron-7.6.3/src/sparse13/spoutput.c:580:24: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((pMatrixFile = fopen(File,"a")) == NULL)
data/neuron-7.6.3/src/sparse13/spoutput.c:696:21: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *pStatsFile, *fopen();
data/neuron-7.6.3/src/sparse13/spoutput.c:702:23: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((pStatsFile = fopen(File, "a")) == NULL)
data/neuron-7.6.3/src/sundials/ida/ida.c:224:47: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int itol, realtype *rtol, void *atol)
data/neuron-7.6.3/src/sundials/ida/ida.c:283:31: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
neg_atol = (*((realtype *)atol) < ZERO);
data/neuron-7.6.3/src/sundials/ida/ida.c:285:34: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
neg_atol = (N_VMin((N_Vector)atol) < ZERO);
data/neuron-7.6.3/src/sundials/ida/ida.c:318:23: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
IDA_mem->ida_atol = atol;
data/neuron-7.6.3/src/sundials/ida/ida.c:370:47: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int itol, realtype *rtol, void *atol)
data/neuron-7.6.3/src/sundials/ida/ida.c:428:31: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
neg_atol = (*((realtype *)atol) < ZERO);
data/neuron-7.6.3/src/sundials/ida/ida.c:430:34: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
neg_atol = (N_VMin((N_Vector)atol) < ZERO);
data/neuron-7.6.3/src/sundials/ida/ida.c:446:23: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
IDA_mem->ida_atol = atol;
data/neuron-7.6.3/src/sundials/ida/ida.c:484:9: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
#define atol (IDA_mem->ida_atol)
data/neuron-7.6.3/src/sundials/ida/ida.c:1167:23: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
atoli = (realtype *)atol;
data/neuron-7.6.3/src/sundials/ida/ida.c:1194:21: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
atoli = (N_Vector)atol;
data/neuron-7.6.3/src/sundials/ida/ida.h:245:71: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int IDASetTolerances(void *cvode_mem, int itol, realtype *rtol, void *atol);
data/neuron-7.6.3/src/sundials/ida/ida.h:299:47: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int itol, realtype *rtol, void *atol);
data/neuron-7.6.3/src/sundials/ida/ida.h:343:47: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int itol, realtype *rtol, void *atol);
data/neuron-7.6.3/src/sundials/ida/idaio.c:312:54: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int itol, realtype *rtol, void *atol)
data/neuron-7.6.3/src/sundials/ida/idaio.c:346:31: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
neg_atol = (*((realtype *)atol) < ZERO);
data/neuron-7.6.3/src/sundials/ida/idaio.c:348:34: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
neg_atol = (N_VMin((N_Vector)atol) < ZERO);
data/neuron-7.6.3/src/sundials/ida/idaio.c:357:23: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
IDA_mem->ida_atol = atol;
data/neuron-7.6.3/src/uxnrnbbs/mos2nrn.cpp:15:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/neuron-7.6.3/src/uxnrnbbs/mos2nrn.cpp:16:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dname[256];
data/neuron-7.6.3/src/uxnrnbbs/mos2nrn.cpp:22:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE* f = fopen(argv[1], "r");
data/neuron-7.6.3/src/uxnrnbbs/mos2nrn.cpp:44:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char forward[256];
data/neuron-7.6.3/src/uxnrnbbs/mos2nrn.cpp:73:7: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
fd = mkstemp(dname);
data/neuron-7.6.3/ivhines/src/bin/iclass/classbuffer.cpp:196:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int length = strlen(file);
data/neuron-7.6.3/ivhines/src/bin/iclass/classbuffer.cpp:202:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int length = strlen(file);
data/neuron-7.6.3/ivhines/src/bin/iclass/classbuffer.cpp:280:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int len = f->read(buf);
data/neuron-7.6.3/ivhines/src/bin/iclass/dialogs.cpp:221:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
_sedit->Select(0, strlen(_sedit->Text()));
data/neuron-7.6.3/ivhines/src/bin/iclass/dialogs.cpp:392:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (getcwd(path, sizeof(path) - strlen(relpath) - 1) != 0) {
data/neuron-7.6.3/ivhines/src/bin/iclass/dialogs.cpp:395:5: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(path, "/");
data/neuron-7.6.3/ivhines/src/bin/iclass/direct.cpp:174:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (IsADirectory(newpath) && newpath[strlen(newpath)-1] != '/') {
data/neuron-7.6.3/ivhines/src/bin/iclass/direct.cpp:175:9: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(newpath, "/");
data/neuron-7.6.3/ivhines/src/bin/iclass/direct.cpp:183:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int i = strlen(path);
data/neuron-7.6.3/ivhines/src/bin/iclass/direct.cpp:193:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (int i = strlen(path)-1; i > 0; --i) {
data/neuron-7.6.3/ivhines/src/bin/iclass/direct.cpp:206:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (src = path; src < &path[strlen(path)]; ++src) {
data/neuron-7.6.3/ivhines/src/bin/iclass/direct.cpp:250:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (src = path; src < &path[strlen(path)]; ++src) {
data/neuron-7.6.3/ivhines/src/bin/iclass/direct.cpp:268:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int length = (end == nil) ? strlen(beg) : end - beg;
data/neuron-7.6.3/ivhines/src/bin/iclass/direct.cpp:288:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buf, tildeName+1, length-1);
data/neuron-7.6.3/ivhines/src/bin/iclass/globals.cpp:39:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char* dup = new char[strlen(s) + 1];
data/neuron-7.6.3/ivhines/src/bin/iclass/globals.cpp:46:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(dup, s, len);
data/neuron-7.6.3/ivhines/src/bin/iclass/iclass.cpp:193:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(filename) != 0) {
data/neuron-7.6.3/ivhines/src/bin/iclass/iclass.cpp:206:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int l = strlen(b);
data/neuron-7.6.3/ivhines/src/bin/iclass/iclass.cpp:443:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
_curClass->Select(0, strlen(_curClass->Text()));
data/neuron-7.6.3/ivhines/src/bin/iclass/iclass.cpp:447:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
_curClass->Select(strlen(_curClass->Text()));
data/neuron-7.6.3/ivhines/src/bin/idraw/idcatalog.cpp:968:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n = strlen(sync_string);
data/neuron-7.6.3/ivhines/src/bin/idraw/idcatalog.cpp:1052:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int buflen = strlen(_buf) + 1;
data/neuron-7.6.3/ivhines/src/bin/idraw/iddialogs.cpp:84:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
_medit->Select(0, strlen(_medit->Text()));
data/neuron-7.6.3/ivhines/src/bin/idraw/iddialogs.cpp:181:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
_medit->Select(0, strlen(_medit->Text()));
data/neuron-7.6.3/ivhines/src/bin/idraw/iddialogs.cpp:255:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
_medit->Select(0, strlen(_medit->Text()));
data/neuron-7.6.3/ivhines/src/bin/idraw/ided.cpp:141:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new HGlue(0, 5*strlen(name), 0)
data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/world.h:83:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
virtual void read(Event&);
data/neuron-7.6.3/ivhines/src/include/IV-2_6/InterViews/world.h:84:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
virtual bool read(long sec, long usec, Event&);
data/neuron-7.6.3/ivhines/src/include/InterViews/event.h:87:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
virtual void read();
data/neuron-7.6.3/ivhines/src/include/InterViews/event.h:88:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
virtual bool read(long sec, long usec);
data/neuron-7.6.3/ivhines/src/include/InterViews/session.h:134:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
virtual void read(Event&);
data/neuron-7.6.3/ivhines/src/include/InterViews/session.h:135:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
virtual bool read(long sec, long usec, Event&);
data/neuron-7.6.3/ivhines/src/include/OS/file.h:61:17: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
virtual int read(const char*& start);
data/neuron-7.6.3/ivhines/src/include/OS/file.h:70:17: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
virtual int read(const char*& start);
data/neuron-7.6.3/ivhines/src/include/OS/math.h:90:17: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
static bool equal(float x, float y, float e);
data/neuron-7.6.3/ivhines/src/include/OS/math.h:91:17: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
static bool equal(double x, double y, double e);
data/neuron-7.6.3/ivhines/src/include/OS/math.h:108:19: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
inline bool Math::equal(float x, float y, float e) {
data/neuron-7.6.3/ivhines/src/include/OS/math.h:112:19: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
inline bool Math::equal(double x, double y, double e) {
data/neuron-7.6.3/ivhines/src/lib/Dispatch/iostreamb.cpp:113:2: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
read((char*)&value, sizeof(value));
data/neuron-7.6.3/ivhines/src/lib/Dispatch/iostreamb.cpp:130:2: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
read((char*)&value, sizeof(value));
data/neuron-7.6.3/ivhines/src/lib/Dispatch/iostreamb.cpp:147:2: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
read((char*)&value, sizeof(value));
data/neuron-7.6.3/ivhines/src/lib/Dispatch/iostreamb.cpp:164:2: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
read((char*)&value, sizeof(value));
data/neuron-7.6.3/ivhines/src/lib/Dispatch/iostreamb.cpp:181:2: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
read((char*)&value, sizeof(value));
data/neuron-7.6.3/ivhines/src/lib/Dispatch/iostreamb.cpp:198:2: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
read((char*)&value, sizeof(value));
data/neuron-7.6.3/ivhines/src/lib/Dispatch/rpcbuf.cpp:483:17: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int nread = read(_fd, egptr(), ebuf() - egptr());
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/button2_6.cpp:313:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
text = new char[strlen(str) + 1];
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/button2_6.cpp:324:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
text = new char[strlen(a) + 1];
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/compeditor.cpp:82:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
match = strlen(best);
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:101:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char* dup = new char[strlen(s) + 1];
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:192:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
} else if (IsADirectory(buf) && buf[strlen(buf)-1] != '/') {
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:194:9: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(newpath, "/");
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:205:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int i = strlen(path);
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:215:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (int i = strlen(path)-1; i > 0; --i) {
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:228:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (src = path; src < &path[strlen(path)]; ++src) {
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:272:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (src = path; src < &path[strlen(path)]; ++src) {
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:292:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int length = (end == nil) ? strlen(beg) : end - beg;
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:312:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buf, tildeName+1, length-1);
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:357:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (path[strlen(path)-1] != '/') {
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:358:9: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(buf, "/");
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:415:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
name_ok = r->Match(name, strlen(name), 0) >= 0;
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filebrowser.cpp:440:3: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(buf, "/");
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filechooser.cpp:95:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int left = strlen(browser()->ValidDirectories(path));
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/filechooser.cpp:96:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int right = strlen(path);
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/interactor.cpp:112:4: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
e.read();
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/interactor.cpp:157:4: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
e.read();
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/interactor.cpp:176:32: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while (!world->done() && e.read(sec, usec)) {
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/matcheditor.cpp:82:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buf, text->Text(), length);
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/message.cpp:56:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
text = new char[strlen(t)+1];
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/message.cpp:73:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
text = new char[strlen(a)+1];
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/painter.cpp:166:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(s);
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/painter.cpp:177:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
Text(c, s, strlen(s), x, y);
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/scroller2_6.cpp:166:12: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (Math::equal(scale, double(0.0), double(1e-6))) {
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/scroller2_6.cpp:185:12: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (Math::equal(scale, double(0.0), double(1e-6))) {
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/strbrowser.cpp:105:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
display->ReplaceText(i, strbuf[i], strlen(strbuf[i]));
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/strbrowser.cpp:183:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char* copy = new char[strlen(s)+1];
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/strbrowser.cpp:197:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
display->ReplaceText(index, s, strlen(s));
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/strbrowser.cpp:207:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char* copy = new char[strlen(s)+1];
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/strbrowser.cpp:216:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
display->ReplaceText(index, s, strlen(s));
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/strchooser.cpp:72:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
_sedit->Select(strlen(_sedit->Text()));
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/strchooser.cpp:83:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
_sedit->Select(0, strlen(_sedit->Text()));
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/streditor.cpp:71:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sample = strcpy(new char[strlen(samp) + 1], samp);
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/streditor.cpp:81:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
done = strcpy(new char[strlen(d) + 1], d);
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/streditor.cpp:151:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
text->Insert(0, t, strlen(t));
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/world.cpp:150:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
void World::read(Event& e) { session_->read(e); }
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/world.cpp:150:40: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
void World::read(Event& e) { session_->read(e); }
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/world.cpp:151:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
bool World::read(long sec, long usec, Event& e) {
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/world.cpp:152:22: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
return session_->read(sec, usec, e);
data/neuron-7.6.3/ivhines/src/lib/IV-2_6/xevent2_6.cpp:152:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(keystring, buf, len);
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/canvas.cpp:1137:17: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
|| (!Math::equal(tx, next_x, float(1.1)))) {//allow 1 pixel slop
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/carbevent.cpp:136:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
void Event::read()
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/carbevent.cpp:142:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
bool Event::read(long , long )
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/carbevent.cpp:144:9: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
Event::read();
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/color.cpp:92:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
COLORMAP_FILE = new char[ strlen(loc) + strlen(leafname) + 1];
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/color.cpp:92:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
COLORMAP_FILE = new char[ strlen(loc) + strlen(leafname) + 1];
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/event.cpp:140:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
void Event::read()
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/event.cpp:146:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
bool Event::read(long , long )
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/event.cpp:148:9: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
Event::read();
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/font.cpp:148:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
name[0] = strlen(face_name);
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/font.cpp:152:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
name[0] = strlen("monaco");
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:445:8: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(prePath, ":");
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:884:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
void Session::read(Event& e)
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:930:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
bool Session::read(long, long, Event&)
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:1236:4: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
read(e);
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:1520:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char* buff = new char[strlen(head) + strlen(tail) + 1];
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:1520:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char* buff = new char[strlen(head) + strlen(tail) + 1];
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/session.cpp:1537:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int len = f->read(start);
data/neuron-7.6.3/ivhines/src/lib/IV-Mac/window.cpp:244:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
title_ = new char[strlen(t)+1];
data/neuron-7.6.3/ivhines/src/lib/IV-Win/color.cpp:471:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
COLORMAP_FILE = new char[ strlen(loc) + strlen(leafname) + 1];
data/neuron-7.6.3/ivhines/src/lib/IV-Win/color.cpp:471:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
COLORMAP_FILE = new char[ strlen(loc) + strlen(leafname) + 1];
data/neuron-7.6.3/ivhines/src/lib/IV-Win/event.cpp:127:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
void Event::read()
data/neuron-7.6.3/ivhines/src/lib/IV-Win/event.cpp:133:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
bool Event::read(long , long )
data/neuron-7.6.3/ivhines/src/lib/IV-Win/event.cpp:135:9: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
Event::read();
data/neuron-7.6.3/ivhines/src/lib/IV-Win/font.cpp:163:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(font_.lfFaceName, face_name, LF_FACESIZE-1);
data/neuron-7.6.3/ivhines/src/lib/IV-Win/font.cpp:690:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return impl_->default_rep()->display_->to_pixels(width(s, strlen(s)));
data/neuron-7.6.3/ivhines/src/lib/IV-Win/font.cpp:699:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
index(s, strlen(s), float(offset), between)
data/neuron-7.6.3/ivhines/src/lib/IV-Win/font.cpp:729:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(name);
data/neuron-7.6.3/ivhines/src/lib/IV-Win/font.cpp:780:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(buff);
data/neuron-7.6.3/ivhines/src/lib/IV-Win/session.cpp:417:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(buff);
data/neuron-7.6.3/ivhines/src/lib/IV-Win/session.cpp:442:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(INSTALL_LOCATION, buff, len);
data/neuron-7.6.3/ivhines/src/lib/IV-Win/session.cpp:454:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
void Session::read(Event& e)
data/neuron-7.6.3/ivhines/src/lib/IV-Win/session.cpp:497:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
bool Session::read(long, long, Event&)
data/neuron-7.6.3/ivhines/src/lib/IV-Win/session.cpp:611:3: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
read(e);
data/neuron-7.6.3/ivhines/src/lib/IV-Win/session.cpp:884:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char* buff = new char[strlen(head) + strlen(tail) + 1];
data/neuron-7.6.3/ivhines/src/lib/IV-Win/session.cpp:884:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char* buff = new char[strlen(head) + strlen(tail) + 1];
data/neuron-7.6.3/ivhines/src/lib/IV-Win/session.cpp:901:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int len = f->read(start);
data/neuron-7.6.3/ivhines/src/lib/IV-Win/window.cpp:189:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
title = new char[strlen(t)+1];
data/neuron-7.6.3/ivhines/src/lib/IV-Win/window.cpp:203:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
classname = new char[strlen(nm)+1];
data/neuron-7.6.3/ivhines/src/lib/IV-X11/session.cpp:281:2: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
read(e);
data/neuron-7.6.3/ivhines/src/lib/IV-X11/session.cpp:335:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
void Session::read(Event& e) {
data/neuron-7.6.3/ivhines/src/lib/IV-X11/session.cpp:349:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
bool Session::read(long sec, long usec, Event& e) {
data/neuron-7.6.3/ivhines/src/lib/IV-X11/xcanvas.cpp:656:13: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
!Math::equal(x, tr->curx_, float(0.1))
data/neuron-7.6.3/ivhines/src/lib/IV-X11/xdrag.cpp:604:17: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (dummyEvent.read(0, 10) && drag->commit(dummyEvent)) {
data/neuron-7.6.3/ivhines/src/lib/IV-X11/xdrag.cpp:718:12: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
dragEvent.read();
data/neuron-7.6.3/ivhines/src/lib/IV-X11/xevent.cpp:118:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(keydata, e.keydata, e.len);
data/neuron-7.6.3/ivhines/src/lib/IV-X11/xevent.cpp:146:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
void Event::read() {
data/neuron-7.6.3/ivhines/src/lib/IV-X11/xevent.cpp:147:26: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
Session::instance()->read(*this);
data/neuron-7.6.3/ivhines/src/lib/IV-X11/xevent.cpp:150:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
bool Event::read(long s, long u) {
data/neuron-7.6.3/ivhines/src/lib/IV-X11/xevent.cpp:151:33: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
return Session::instance()->read(s, u, *this);
data/neuron-7.6.3/ivhines/src/lib/IV-X11/xfont.cpp:203:16: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (Math::equal(f->impl_->scale_, scale, float(0.0001))) {
data/neuron-7.6.3/ivhines/src/lib/IV-X11/xfont.cpp:228:32: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (r->display_ == d && Math::equal(r->scale_, s, float(0.0001))) {
data/neuron-7.6.3/ivhines/src/lib/IV-X11/xfont.cpp:501:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return impl_->default_rep()->display_->to_pixels(width(s, strlen(s)));
data/neuron-7.6.3/ivhines/src/lib/IV-X11/xfont.cpp:510:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
index(s, strlen(s), float(offset), between)
data/neuron-7.6.3/ivhines/src/lib/IV-X11/xfont.cpp:543:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int sublength = strlen(substring);
data/neuron-7.6.3/ivhines/src/lib/IV-X11/xfont.cpp:544:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int length = strlen(string) - sublength;
data/neuron-7.6.3/ivhines/src/lib/IV-X11/xfont.cpp:618:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
impl_->name = new char[strlen(familyname) + 1];
data/neuron-7.6.3/ivhines/src/lib/IV-X11/xfont.cpp:669:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
r->names_[i] = new char[strlen(fonts[i]) + 1];
data/neuron-7.6.3/ivhines/src/lib/IV-X11/xwindow.cpp:215:30: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (!w.placed_ || !Math::equal(left, w.left_, float(1e-3)) ||
data/neuron-7.6.3/ivhines/src/lib/IV-X11/xwindow.cpp:216:9: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
!Math::equal(bottom, w.bottom_, float(1e-3))
data/neuron-7.6.3/ivhines/src/lib/IV-X11/xwindow.cpp:236:31: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (!w.aligned_ || !Math::equal(x, w.xalign_, float(1e-3)) ||
data/neuron-7.6.3/ivhines/src/lib/IV-X11/xwindow.cpp:237:9: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
!Math::equal(y, w.yalign_, float(1e-3))
data/neuron-7.6.3/ivhines/src/lib/InterViews/adjust.cpp:110:15: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (Math::equal(s, float(0), float(1e-4))) {
data/neuron-7.6.3/ivhines/src/lib/InterViews/alloctbl.cpp:56:17: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
static bool equal(const Allocation&, const Allocation&);
data/neuron-7.6.3/ivhines/src/lib/InterViews/alloctbl.cpp:71:34: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
inline bool AllocationTableImpl::equal(
data/neuron-7.6.3/ivhines/src/lib/InterViews/alloctbl.cpp:81:8: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
Math::equal(a1.span(), a2.span(), epsilon_) &&
data/neuron-7.6.3/ivhines/src/lib/InterViews/alloctbl.cpp:82:8: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
Math::equal(a1.alignment(), a2.alignment(), epsilon_)
data/neuron-7.6.3/ivhines/src/lib/InterViews/alloctbl.cpp:105:27: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
AllocationTableImpl::equal(info->allocation_, a)
data/neuron-7.6.3/ivhines/src/lib/InterViews/comption.cpp:235:9: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
!Math::equal(stretch, Coord(0), float(1e-4)) ||
data/neuron-7.6.3/ivhines/src/lib/InterViews/comption.cpp:236:9: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
!Math::equal(shrink, Coord(0), float(1e-4))
data/neuron-7.6.3/ivhines/src/lib/InterViews/comption.cpp:255:13: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (!Math::equal(size, span_, float(1e-4))) {
data/neuron-7.6.3/ivhines/src/lib/InterViews/dialogs.cpp:264:5: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
s->read(e);
data/neuron-7.6.3/ivhines/src/lib/InterViews/dialogs.cpp:267:5: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
s->read(e);
data/neuron-7.6.3/ivhines/src/lib/InterViews/geometry.cpp:74:16: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (!Math::equal(natural_, r.natural_, epsilon)) {
data/neuron-7.6.3/ivhines/src/lib/InterViews/geometry.cpp:76:23: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
} else if (!Math::equal(stretch_, r.stretch_, epsilon)) {
data/neuron-7.6.3/ivhines/src/lib/InterViews/geometry.cpp:78:23: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
} else if (!Math::equal(shrink_, r.shrink_, epsilon)) {
data/neuron-7.6.3/ivhines/src/lib/InterViews/geometry.cpp:80:23: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
} else if (!Math::equal(alignment_, r.alignment_, epsilon)) {
data/neuron-7.6.3/ivhines/src/lib/InterViews/geometry.cpp:141:16: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (!Math::equal(origin_, a.origin_, epsilon)) {
data/neuron-7.6.3/ivhines/src/lib/InterViews/geometry.cpp:143:23: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
} else if (!Math::equal(span_, a.span_, epsilon)) {
data/neuron-7.6.3/ivhines/src/lib/InterViews/geometry.cpp:145:23: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
} else if (!Math::equal(alignment_, a.alignment_, epsilon)) {
data/neuron-7.6.3/ivhines/src/lib/InterViews/ol_kit.cpp:2657:9: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
queued.read();
data/neuron-7.6.3/ivhines/src/lib/InterViews/printer.cpp:433:16: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (!Math::equal(y, p->text_cury_, epsilon)) {
data/neuron-7.6.3/ivhines/src/lib/InterViews/printer.cpp:436:16: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (!Math::equal(x, p->text_curx_, epsilon)) {
data/neuron-7.6.3/ivhines/src/lib/InterViews/psfont.cpp:118:2: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(dir) + strlen("/") + strlen(name) + strlen(".afm") + 1
data/neuron-7.6.3/ivhines/src/lib/InterViews/psfont.cpp:118:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(dir) + strlen("/") + strlen(name) + strlen(".afm") + 1
data/neuron-7.6.3/ivhines/src/lib/InterViews/psfont.cpp:118:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(dir) + strlen("/") + strlen(name) + strlen(".afm") + 1
data/neuron-7.6.3/ivhines/src/lib/InterViews/psfont.cpp:118:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(dir) + strlen("/") + strlen(name) + strlen(".afm") + 1
data/neuron-7.6.3/ivhines/src/lib/InterViews/regexp.cpp:78:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int length = strlen(pat);
data/neuron-7.6.3/ivhines/src/lib/InterViews/regexp.cpp:80:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(pattern_, pat, length);
data/neuron-7.6.3/ivhines/src/lib/InterViews/regexp.cpp:91:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(pattern_, pat, length);
data/neuron-7.6.3/ivhines/src/lib/InterViews/regexp.cpp:153:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
endAnchored = pattern_[strlen(pattern_)-1] == '$';
data/neuron-7.6.3/ivhines/src/lib/InterViews/regexp.cpp:464:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (OP(scan) == EXACTLY && strlen(OPERAND(scan)) >= len) {
data/neuron-7.6.3/ivhines/src/lib/InterViews/regexp.cpp:466:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(OPERAND(scan));
data/neuron-7.6.3/ivhines/src/lib/InterViews/regexp.cpp:1002:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(opnd);
data/neuron-7.6.3/ivhines/src/lib/InterViews/regexp.cpp:1160:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
count = strlen(scan);
data/neuron-7.6.3/ivhines/src/lib/InterViews/scrbox.cpp:381:17: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (!Math::equal(span, Coord(0), float(1e-2))) {
data/neuron-7.6.3/ivhines/src/lib/InterViews/slider.cpp:301:15: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (Math::equal(length, float(0.0), float(1e-3)) ||
data/neuron-7.6.3/ivhines/src/lib/InterViews/slider.cpp:302:8: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
Math::equal(length, cur_length, float(1e-3))
data/neuron-7.6.3/ivhines/src/lib/InterViews/style.cpp:704:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int len = f->read(start);
data/neuron-7.6.3/ivhines/src/lib/InterViews/tformsetter.cpp:65:15: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (Math::equal(natural, float(0), float(1e-3))) {
data/neuron-7.6.3/ivhines/src/lib/InterViews/tformsetter.cpp:170:16: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (!Math::equal(natural_x.span(), Coord(0), float(1e-2)) &&
data/neuron-7.6.3/ivhines/src/lib/InterViews/tformsetter.cpp:171:9: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
!Math::equal(natural_y.span(), Coord(0), float(1e-2))
data/neuron-7.6.3/ivhines/src/lib/InterViews/xymarker.cpp:110:24: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (!Math::equal(left_, left, e)) {
data/neuron-7.6.3/ivhines/src/lib/InterViews/xymarker.cpp:113:24: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (!Math::equal(right_, right, e)) {
data/neuron-7.6.3/ivhines/src/lib/InterViews/xymarker.cpp:116:24: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (!Math::equal(bottom_, bottom, e)) {
data/neuron-7.6.3/ivhines/src/lib/InterViews/xymarker.cpp:119:24: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (!Math::equal(top_, top, e)) {
data/neuron-7.6.3/ivhines/src/lib/InterViews/xymarker.cpp:122:24: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (!Math::equal(top_, top, e) && !Math::equal(left_, left, e)) {
data/neuron-7.6.3/ivhines/src/lib/InterViews/xymarker.cpp:122:54: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (!Math::equal(top_, top, e) && !Math::equal(left_, left, e)) {
data/neuron-7.6.3/ivhines/src/lib/InterViews/xymarker.cpp:125:24: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (!Math::equal(top_, top, e) && !Math::equal(right_, right, e)) {
data/neuron-7.6.3/ivhines/src/lib/InterViews/xymarker.cpp:125:54: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (!Math::equal(top_, top, e) && !Math::equal(right_, right, e)) {
data/neuron-7.6.3/ivhines/src/lib/InterViews/xymarker.cpp:128:24: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (!Math::equal(bottom_, bottom, e) &&
data/neuron-7.6.3/ivhines/src/lib/InterViews/xymarker.cpp:129:10: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
!Math::equal(left_, left, e)
data/neuron-7.6.3/ivhines/src/lib/InterViews/xymarker.cpp:133:24: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (!Math::equal(bottom_, bottom, e) &&
data/neuron-7.6.3/ivhines/src/lib/InterViews/xymarker.cpp:134:10: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
!Math::equal(right_, right, e)
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:104:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
# define NAMLEN(dirent) strlen((dirent)->d_name)
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:283:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s[0] = strlen(d->impl_->name_->string());
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:473:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
} else if ((DirectoryImpl::ifdir(s) && s[strlen(s) - 1] != '/')
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:474:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
|| s[strlen(s) -1] == ':'
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:675:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char * buf = new char[strlen(name_->string()) + 3];
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:745:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char* end = &path[strlen(path)];
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:786:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char* end = &path[strlen(path)];
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:799:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (int i = strlen(path) - 1; i > 0; --i) {
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:813:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int length = (end == nil) ? strlen(beg) : (end - beg);
data/neuron-7.6.3/ivhines/src/lib/OS/directory.cpp:831:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buf, tilde + 1, length - 1);
data/neuron-7.6.3/ivhines/src/lib/OS/dirent.cpp:108:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dirp->conversion.d_namlen = strlen(dirp->data.ff_name);
data/neuron-7.6.3/ivhines/src/lib/OS/file.cpp:63:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
return read(fd, buf, count);
data/neuron-7.6.3/ivhines/src/lib/OS/file.cpp:102:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
extern int read(int, void*, unsigned int);
data/neuron-7.6.3/ivhines/src/lib/OS/file.cpp:247:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int InputFile::read(const char*& start) {
data/neuron-7.6.3/ivhines/src/lib/OS/file.cpp:273:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
len = ::read(i->fd_, i->buf_, len);
data/neuron-7.6.3/ivhines/src/lib/OS/file.cpp:293:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int StdInput::read(const char*& start) {
data/neuron-7.6.3/ivhines/src/lib/OS/file.cpp:308:20: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int nbytes = ::read(i->fd_, (char*)i->buf_, i->limit_);
data/neuron-7.6.3/ivhines/src/lib/OS/string.cpp:59:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
length_ = strlen(s);
data/neuron-7.6.3/ivhines/src/lib/OS/string.cpp:102:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
length_ = strlen(s);
data/neuron-7.6.3/ivhines/src/lib/OS/string.cpp:214:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
length_ = strlen(s);
data/neuron-7.6.3/ivhines/src/lib/OS/string.cpp:330:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
set_value(s, strlen(s));
data/neuron-7.6.3/ivhines/src/lib/OS/string.cpp:340:23: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
String::set_value(strncpy(ns, s, len), len);
data/neuron-7.6.3/ivhines/src/lib/OS/string.cpp:380:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
String::set_value(s, strlen(s));
data/neuron-7.6.3/ivhines/src/lib/OS/string.cpp:395:20: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
String::set_value(strncpy(ns, s.string(), len), len);
data/neuron-7.6.3/ivhines/src/lib/OS/ustring.cpp:133:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(s->data, str, len);
data/neuron-7.6.3/ivhines/src/lib/OS/ustring.cpp:154:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(r, str, len);
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_compat.c:135:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fab.fab$b_fns = strlen(name);
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_dir.c:56:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(cp)+1;
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_dirwrite.c:572:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dir->tdir_count = strlen(cp) + 1; /* includes \0 byte */
data/neuron-7.6.3/ivhines/src/lib/TIFF/tif_open.c:177:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tif = (TIFF *)malloc(sizeof (TIFF) + strlen(name) + 1);
data/neuron-7.6.3/ivhines/src/lib/TIFF/tiffcompat.h:177:32: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#define ReadOK(fd, buf, size) (read(fd, (char *)buf, size) == size)
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:641:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n_delim = strlen(delim);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:922:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(MARK);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:1350:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char* spc = &string[strlen(string)];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:1359:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char* spc = &string[strlen(string)];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:1626:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
istrstream in(definition, strlen(definition) + 1);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/catalog.cpp:1674:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
out << strlen(string) << "\"" << string << "\"";
data/neuron-7.6.3/ivhines/src/lib/Unidraw/dialogs.cpp:492:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
_medit->Select(0, strlen(_medit->Text()));
data/neuron-7.6.3/ivhines/src/lib/Unidraw/globals.cpp:142:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char* dup = new char[strlen(s) + 1];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/import.cpp:180:17: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while ((c = getc(file)) == ' ' || c == '\n') { }
data/neuron-7.6.3/ivhines/src/lib/Unidraw/import.cpp:181:38: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
return (hexmap[c] << 4) + hexmap[getc(file)];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/manips.cpp:451:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(_buf, sample, samplen);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/manips.cpp:513:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(new_buf, _buf, _textlen);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/pspaint.cpp:91:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
_printfontandsize = new char[strlen(_printfont)+1 + strlen(_printsize)+1];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/pspaint.cpp:91:57: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
_printfontandsize = new char[strlen(_printfont)+1 + strlen(_printsize)+1];
data/neuron-7.6.3/ivhines/src/lib/Unidraw/pspaint.cpp:93:5: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(_printfontandsize, " ");
data/neuron-7.6.3/ivhines/src/lib/Unidraw/psview.cpp:932:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int linelen = strlen(comment);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/psview.cpp:938:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (linelen + strlen(font->GetPrintFont()) + 2 <= MAXLINELEN) {
data/neuron-7.6.3/ivhines/src/lib/Unidraw/psview.cpp:943:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
linelen = strlen("%%+ ");
data/neuron-7.6.3/ivhines/src/lib/Unidraw/psview.cpp:946:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
linelen += strlen(font->GetPrintFont());
data/neuron-7.6.3/ivhines/src/lib/Unidraw/text.cpp:225:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int size = strlen(text);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/text.cpp:323:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int tgcount = strlen(tgstring);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/text.cpp:324:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int count = strlen(_string);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/text.cpp:340:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int count = strlen(_string);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/text.cpp:374:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int size = strlen(s);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/text.cpp:393:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int size = strlen(s);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/text.cpp:412:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int size = strlen(s);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/text.cpp:441:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int size = strlen(s);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/text.cpp:466:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int size = strlen(s);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/text.cpp:512:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int count = strlen(text);
data/neuron-7.6.3/ivhines/src/lib/Unidraw/unidraw.cpp:269:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
session->read(e);
data/neuron-7.6.3/share/lib/python/neuron/crxd/geometry3d/ctng.cpp:617:87: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define __Pyx_PyByteArray_FromString(s) PyByteArray_FromStringAndSize((const char*)s, strlen((const char*)s))
data/neuron-7.6.3/share/lib/python/neuron/crxd/geometry3d/ctng.cpp:737:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
__PYX_DEFAULT_STRING_ENCODING = (char*) malloc(strlen(default_encoding_c));
data/neuron-7.6.3/share/lib/python/neuron/crxd/geometry3d/ctng.cpp:29198:65: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return __Pyx_PyUnicode_FromStringAndSize(c_str, (Py_ssize_t)strlen(c_str));
data/neuron-7.6.3/share/lib/python/neuron/crxd/geometry3d/graphicsPrimitives.cpp:613:87: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define __Pyx_PyByteArray_FromString(s) PyByteArray_FromStringAndSize((const char*)s, strlen((const char*)s))
data/neuron-7.6.3/share/lib/python/neuron/crxd/geometry3d/graphicsPrimitives.cpp:733:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
__PYX_DEFAULT_STRING_ENCODING = (char*) malloc(strlen(default_encoding_c));
data/neuron-7.6.3/share/lib/python/neuron/crxd/geometry3d/graphicsPrimitives.cpp:34547:65: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return __Pyx_PyUnicode_FromStringAndSize(c_str, (Py_ssize_t)strlen(c_str));
data/neuron-7.6.3/share/lib/python/neuron/crxd/geometry3d/surfaces.cpp:617:87: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define __Pyx_PyByteArray_FromString(s) PyByteArray_FromStringAndSize((const char*)s, strlen((const char*)s))
data/neuron-7.6.3/share/lib/python/neuron/crxd/geometry3d/surfaces.cpp:737:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
__PYX_DEFAULT_STRING_ENCODING = (char*) malloc(strlen(default_encoding_c));
data/neuron-7.6.3/share/lib/python/neuron/crxd/geometry3d/surfaces.cpp:21572:65: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return __Pyx_PyUnicode_FromStringAndSize(c_str, (Py_ssize_t)strlen(c_str));
data/neuron-7.6.3/share/lib/python/neuron/rxd/geometry3d/ctng.cpp:617:87: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define __Pyx_PyByteArray_FromString(s) PyByteArray_FromStringAndSize((const char*)s, strlen((const char*)s))
data/neuron-7.6.3/share/lib/python/neuron/rxd/geometry3d/ctng.cpp:737:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
__PYX_DEFAULT_STRING_ENCODING = (char*) malloc(strlen(default_encoding_c));
data/neuron-7.6.3/share/lib/python/neuron/rxd/geometry3d/ctng.cpp:29197:65: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return __Pyx_PyUnicode_FromStringAndSize(c_str, (Py_ssize_t)strlen(c_str));
data/neuron-7.6.3/share/lib/python/neuron/rxd/geometry3d/graphicsPrimitives.cpp:613:87: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define __Pyx_PyByteArray_FromString(s) PyByteArray_FromStringAndSize((const char*)s, strlen((const char*)s))
data/neuron-7.6.3/share/lib/python/neuron/rxd/geometry3d/graphicsPrimitives.cpp:733:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
__PYX_DEFAULT_STRING_ENCODING = (char*) malloc(strlen(default_encoding_c));
data/neuron-7.6.3/share/lib/python/neuron/rxd/geometry3d/graphicsPrimitives.cpp:34547:65: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return __Pyx_PyUnicode_FromStringAndSize(c_str, (Py_ssize_t)strlen(c_str));
data/neuron-7.6.3/share/lib/python/neuron/rxd/geometry3d/surfaces.cpp:617:87: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define __Pyx_PyByteArray_FromString(s) PyByteArray_FromStringAndSize((const char*)s, strlen((const char*)s))
data/neuron-7.6.3/share/lib/python/neuron/rxd/geometry3d/surfaces.cpp:737:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
__PYX_DEFAULT_STRING_ENCODING = (char*) malloc(strlen(default_encoding_c));
data/neuron-7.6.3/share/lib/python/neuron/rxd/geometry3d/surfaces.cpp:21572:65: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return __Pyx_PyUnicode_FromStringAndSize(c_str, (Py_ssize_t)strlen(c_str));
data/neuron-7.6.3/src/ivoc/apwindow.cpp:265:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy((char*)&st[1], s, 254);
data/neuron-7.6.3/src/ivoc/apwindow.cpp:266:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
st[0] = strlen(s);
data/neuron-7.6.3/src/ivoc/checkpnt.cpp:312:7: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
bool read();
data/neuron-7.6.3/src/ivoc/checkpnt.cpp:421:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
b = rdckpt_->read();
data/neuron-7.6.3/src/ivoc/checkpnt.cpp:560:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int l1 = strlen(s->name);
data/neuron-7.6.3/src/ivoc/checkpnt.cpp:595:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
b = b && xdr(s->u.cstr, strlen(s->u.cstr));
data/neuron-7.6.3/src/ivoc/checkpnt.cpp:920:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
b = b && xdr(cp, strlen(cp));
data/neuron-7.6.3/src/ivoc/checkpnt.cpp:999:20: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
bool OcReadChkPnt::read() {
data/neuron-7.6.3/src/ivoc/checkpnt.cpp:1406:4: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s[strlen(s)-1] = '\0';
data/neuron-7.6.3/src/ivoc/checkpnt.cpp:1413:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf[strlen(buf)-1] = '\0';
data/neuron-7.6.3/src/ivoc/checkpnt.cpp:1414:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s = new char[strlen(buf) + 1];
data/neuron-7.6.3/src/ivoc/gifimage.cpp:314:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cmt1 = (byte *) malloc(strlen(pinfo->comment) + cmtlen + 2);
data/neuron-7.6.3/src/ivoc/graph.cpp:2002:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (cp && strlen(cp) > 0) {
data/neuron-7.6.3/src/ivoc/idraw.cpp:332:12: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (Math::equal(x1, x2, float(.0001))) {
data/neuron-7.6.3/src/ivoc/idraw.cpp:337:12: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (Math::equal(y1, y2, float(.0001))) {
data/neuron-7.6.3/src/ivoc/idraw.cpp:378:12: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (Math::equal(x1, x2, float(.0001))) {
data/neuron-7.6.3/src/ivoc/idraw.cpp:383:12: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (Math::equal(y1, y2, float(.0001))) {
data/neuron-7.6.3/src/ivoc/ivoc.cpp:436:12: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
session->read(e);
data/neuron-7.6.3/src/ivoc/ivocmain.cpp:226:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(cs, s, 256);
data/neuron-7.6.3/src/ivoc/ivocmain.cpp:481:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
static char* buffer = new char[strlen(NEURON_DATA_DIR) + 12];
data/neuron-7.6.3/src/ivoc/ivocmain.cpp:552:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nrn_props = new char[strlen(neuron_home) + 20];
data/neuron-7.6.3/src/ivoc/ivocmain.cpp:728:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char* buf = new char[strlen(neuron_home) + 20];
data/neuron-7.6.3/src/ivoc/ivocvect.cpp:162:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
label_ = new char[strlen(label) + 1];
data/neuron-7.6.3/src/ivoc/ivocvect.cpp:1401:22: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (Math::equal(x->elem(i), g, hoc_epsilon)) return 1.;
data/neuron-7.6.3/src/ivoc/ivocvect.cpp:1655:16: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (Math::equal(x->elem(i), value, hoc_epsilon)) {
data/neuron-7.6.3/src/ivoc/ivocvect.cpp:1662:17: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (!Math::equal(x->elem(i), value, hoc_epsilon)) {
data/neuron-7.6.3/src/ivoc/ivocvect.cpp:1752:16: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (Math::equal(x->elem(i), value, hoc_epsilon)) {
data/neuron-7.6.3/src/ivoc/ivocvect.cpp:1758:17: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (!Math::equal(x->elem(i), value, hoc_epsilon)) {
data/neuron-7.6.3/src/ivoc/ivocvect.cpp:1839:16: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (Math::equal(x->elem(i), value, hoc_epsilon)) {
data/neuron-7.6.3/src/ivoc/ivocvect.cpp:1846:17: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (!Math::equal(x->elem(i), value, hoc_epsilon)) {
data/neuron-7.6.3/src/ivoc/ivocvect.cpp:2374:15: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (!Math::equal(x->elem(i), y->elem(i), hoc_epsilon)) {
data/neuron-7.6.3/src/ivoc/mlinedit.cpp:65:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tb->Insert(0, s, strlen(s));
data/neuron-7.6.3/src/ivoc/mlinedit.cpp:113:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
txt_ = new OcText(row, col, new TextBuffer(buf,strlen(buf),1000));
data/neuron-7.6.3/src/ivoc/mymath.cpp:120:12: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (Math::equal(x, x1, epsilon) && Math::equal(y, y1, epsilon)) {
data/neuron-7.6.3/src/ivoc/mymath.cpp:120:43: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (Math::equal(x, x1, epsilon) && Math::equal(y, y1, epsilon)) {
data/neuron-7.6.3/src/ivoc/mymath.cpp:123:12: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (Math::equal(x1, x2, epsilon) && Math::equal(y1, y2, epsilon)) {
data/neuron-7.6.3/src/ivoc/mymath.cpp:123:44: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (Math::equal(x1, x2, epsilon) && Math::equal(y1, y2, epsilon)) {
data/neuron-7.6.3/src/ivoc/mymath.h:82:62: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
static bool eq(double x, double y, double e) { return Math::equal(x,y,e);}
data/neuron-7.6.3/src/ivoc/ocfile.cpp:117:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return double(strlen(buf));
data/neuron-7.6.3/src/ivoc/ocfile.cpp:136:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return double(strlen(buf));
data/neuron-7.6.3/src/ivoc/ocfile.cpp:378:6: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
c = getc(file());
data/neuron-7.6.3/src/ivoc/ochelp.cpp:48:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buf, s+4, 256);
data/neuron-7.6.3/src/ivoc/ocjump.cpp:27:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char* s = new char[strlen(stmt)+2];
data/neuron-7.6.3/src/ivoc/ocjump.cpp:29:2: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(s, "\n");
data/neuron-7.6.3/src/ivoc/ocpointer.cpp:33:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s_ = new char[strlen(st)+1];
data/neuron-7.6.3/src/ivoc/pwman.cpp:1897:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char* buf = new char[200 + strlen(name) + strlen(filt.string()) + 2*strlen(tmpfile)];
data/neuron-7.6.3/src/ivoc/pwman.cpp:1897:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char* buf = new char[200 + strlen(name) + strlen(filt.string()) + 2*strlen(tmpfile)];
data/neuron-7.6.3/src/ivoc/pwman.cpp:1897:70: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char* buf = new char[200 + strlen(name) + strlen(filt.string()) + 2*strlen(tmpfile)];
data/neuron-7.6.3/src/ivoc/pwman.cpp:3491:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
title = new char[strlen(s) + 1];
data/neuron-7.6.3/src/ivoc/pwman.cpp:3595:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char* b2 = new char[strlen(fname)+1];
data/neuron-7.6.3/src/ivoc/pwman.cpp:3688:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tmpfile = new char[strlen(tdir) + 1 + strlen(tname) + 1];
data/neuron-7.6.3/src/ivoc/pwman.cpp:3688:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tmpfile = new char[strlen(tdir) + 1 + strlen(tname) + 1];
data/neuron-7.6.3/src/ivoc/pwman.cpp:3691:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tmpfile = new char[strlen(tdir) + 1 + 9 + 1];
data/neuron-7.6.3/src/ivoc/strfun.cpp:42:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return double(strlen(gargstr(1)));
data/neuron-7.6.3/src/ivoc/strfun.cpp:54:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buf, text.string(), i);
data/neuron-7.6.3/src/ivoc/strfun.cpp:80:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CopyString newtext = text.left(int(chkarg(2,0,strlen(gargstr(1)))));
data/neuron-7.6.3/src/ivoc/strfun.cpp:87:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
CopyString newtext = text.right(int(chkarg(2,0,strlen(gargstr(1)))));
data/neuron-7.6.3/src/ivoc/strfun.cpp:363:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sp->name = (char*)emalloc(strlen(name)+1);
data/neuron-7.6.3/src/ivoc/symdir.cpp:35:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int l1 = strlen(s1);
data/neuron-7.6.3/src/ivoc/symdir.cpp:36:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int l2 = strlen(s2);
data/neuron-7.6.3/src/ivoc/xmenu.cpp:2122:12: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (Math::equal(x_, xnew, float(RES)) && Math::equal(y_, ynew, float(RES))) {
data/neuron-7.6.3/src/ivoc/xmenu.cpp:2122:49: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (Math::equal(x_, xnew, float(RES)) && Math::equal(y_, ynew, float(RES))) {
data/neuron-7.6.3/src/ivoc/xmenu.cpp:2174:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (i == strlen(buf)) {
data/neuron-7.6.3/src/ivoc/xyview.cpp:566:13: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (!Math::equal(ax.begin(), x1, 1) || !Math::equal(ay.begin(), y1, 1)) {
data/neuron-7.6.3/src/ivoc/xyview.cpp:566:48: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (!Math::equal(ax.begin(), x1, 1) || !Math::equal(ay.begin(), y1, 1)) {
data/neuron-7.6.3/src/ivos/OS/file.h:64:17: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
virtual int read(const char*& start);
data/neuron-7.6.3/src/ivos/OS/file.h:73:17: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
virtual int read(const char*& start);
data/neuron-7.6.3/src/ivos/OS/math.h:90:17: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
static bool equal(float x, float y, float e);
data/neuron-7.6.3/src/ivos/OS/math.h:91:17: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
static bool equal(double x, double y, double e);
data/neuron-7.6.3/src/ivos/OS/math.h:108:19: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
inline bool Math::equal(float x, float y, float e) {
data/neuron-7.6.3/src/ivos/OS/math.h:112:19: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
inline bool Math::equal(double x, double y, double e) {
data/neuron-7.6.3/src/ivos/file.cpp:102:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
extern int read(int, void*, unsigned int);
data/neuron-7.6.3/src/ivos/file.cpp:245:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int InputFile::read(const char*& start) {
data/neuron-7.6.3/src/ivos/file.cpp:269:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
len = ::read(i->fd_, i->buf_, len);
data/neuron-7.6.3/src/ivos/file.cpp:289:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int StdInput::read(const char*& start) {
data/neuron-7.6.3/src/ivos/file.cpp:302:20: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int nbytes = ::read(i->fd_, (char*)i->buf_, i->limit_);
data/neuron-7.6.3/src/ivos/regexp.cpp:78:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int length = strlen(pat);
data/neuron-7.6.3/src/ivos/regexp.cpp:80:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(pattern_, pat, length);
data/neuron-7.6.3/src/ivos/regexp.cpp:91:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(pattern_, pat, length);
data/neuron-7.6.3/src/ivos/regexp.cpp:153:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
endAnchored = pattern_[strlen(pattern_)-1] == '$';
data/neuron-7.6.3/src/ivos/regexp.cpp:464:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (OP(scan) == EXACTLY && strlen(OPERAND(scan)) >= len) {
data/neuron-7.6.3/src/ivos/regexp.cpp:466:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(OPERAND(scan));
data/neuron-7.6.3/src/ivos/regexp.cpp:1002:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(opnd);
data/neuron-7.6.3/src/ivos/regexp.cpp:1160:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
count = strlen(scan);
data/neuron-7.6.3/src/ivos/string.cpp:59:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
length_ = strlen(s);
data/neuron-7.6.3/src/ivos/string.cpp:102:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
length_ = strlen(s);
data/neuron-7.6.3/src/ivos/string.cpp:214:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
length_ = strlen(s);
data/neuron-7.6.3/src/ivos/string.cpp:330:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
set_value(s, strlen(s));
data/neuron-7.6.3/src/ivos/string.cpp:340:23: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
String::set_value(strncpy(ns, s, len), len);
data/neuron-7.6.3/src/ivos/string.cpp:380:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
String::set_value(s, strlen(s));
data/neuron-7.6.3/src/ivos/string.cpp:395:20: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
String::set_value(strncpy(ns, s.string(), len), len);
data/neuron-7.6.3/src/ivos/ustring.cpp:133:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(s->data, str, len);
data/neuron-7.6.3/src/ivos/ustring.cpp:154:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(r, str, len);
data/neuron-7.6.3/src/memacs/bind.c:406:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cpos = strlen(outseq);
data/neuron-7.6.3/src/memacs/buffer.c:385:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ntext = strlen(text);
data/neuron-7.6.3/src/memacs/buffer.c:433:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buf, string, NBUFN);
data/neuron-7.6.3/src/memacs/display.c:1247:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = strlen(buf);
data/neuron-7.6.3/src/memacs/display.c:1343:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncmp(buf, ffp->n_name, strlen(buf)) == 0) {
data/neuron-7.6.3/src/memacs/display.c:1346:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(strncmp(buf, (ffp+1)->n_name, strlen(buf)) != 0)) {
data/neuron-7.6.3/src/memacs/display.c:1360:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncmp(buf, (lffp+1)->n_name, strlen(buf)) != 0)
data/neuron-7.6.3/src/memacs/display.c:1412:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (kbdmip+strlen(buf) > &kbdm[NKBDM-4]) {
data/neuron-7.6.3/src/memacs/edef.h:159:27: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
#define Strncat cplint = strncat
data/neuron-7.6.3/src/memacs/edef.h:161:27: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
#define Strncpy cplint = strncpy
data/neuron-7.6.3/src/memacs/edef.h:167:18: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
#define Strncat strncat
data/neuron-7.6.3/src/memacs/edef.h:169:18: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
#define Strncpy strncpy
data/neuron-7.6.3/src/memacs/estruct.h:121:8: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#undef fgetc
data/neuron-7.6.3/src/memacs/estruct.h:123:9: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#define fgetc agetc
data/neuron-7.6.3/src/memacs/file.c:216:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((int)strlen(fname) > 1) { /* check if a 'C' file */
data/neuron-7.6.3/src/memacs/file.c:217:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sptr = fname + strlen(fname) - 2;
data/neuron-7.6.3/src/memacs/file.c:236:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nbytes = strlen(line);
data/neuron-7.6.3/src/memacs/file.c:516:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nbytes = strlen(line);
data/neuron-7.6.3/src/memacs/fileio.c:119:21: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while ((c = fgetc(ffp)) != EOF && c != '\n') {
data/neuron-7.6.3/src/memacs/lock.c:67:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
lname[++numlocks - 1] = (char *)malloc(strlen(fname) + 1);
data/neuron-7.6.3/src/memacs/search.c:271:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
IGNORE(expandp(&pat[0], &tpat[strlen(tpat)], NPAT/2)); /* add old pattern */
data/neuron-7.6.3/src/memacs/search.c:347:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
slength = strlen(&pat[0]);
data/neuron-7.6.3/src/memacs/search.c:348:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
rlength = strlen(&rpat[0]);
data/neuron-7.6.3/src/memacs/search.c:357:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
IGNORE(expandp(&pat[0], &tpat[strlen(tpat)], NPAT/3));
data/neuron-7.6.3/src/memacs/search.c:359:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
IGNORE(expandp(&rpat[0], &tpat[strlen(tpat)], NPAT/3));
data/neuron-7.6.3/src/memacs/spawn.c:285:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cdsc.dsc$w_length = strlen(cmd);
data/neuron-7.6.3/src/memacs/termio.c:152:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
odsc.dsc$w_length = strlen(odsc.dsc$a_pointer);
data/neuron-7.6.3/src/memacs/termio.c:472:22: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
return(127 & fgetc(stdin));
data/neuron-7.6.3/src/mesch/matlab.c:59:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
mat.namlen = (name == (char *)NULL) ? 1 : strlen(name)+1;
data/neuron-7.6.3/src/mesch/matlab.c:99:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
mat.namlen = (name == (char *)NULL) ? 1 : strlen(name)+1;
data/neuron-7.6.3/src/mesch/matlab.c:129:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
mat.namlen = (name == (char *)NULL) ? 1 : strlen(name)+1;
data/neuron-7.6.3/src/mesch/matrixio.c:56:13: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
c = getc(fp);
data/neuron-7.6.3/src/mesch/matrixio.c:62:20: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while ( (c=getc(fp)) != '\n' )
data/neuron-7.6.3/src/mesch/zmatlab.c:60:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
mat.namlen = (name == (char *)NULL) ? 1 : strlen(name)+1;
data/neuron-7.6.3/src/mesch/zmatlab.c:108:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
mat.namlen = (name == (char *)NULL) ? 1 : strlen(name)+1;
data/neuron-7.6.3/src/mesch/zmatlab.c:139:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
mat.namlen = (name == (char *)NULL) ? 1 : strlen(name)+1;
data/neuron-7.6.3/src/modlunit/declare.c:225:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf[strlen(buf) - nprime(s->name)] = '\0';
data/neuron-7.6.3/src/modlunit/declare.c:227:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
} else if (s->name[strlen(s->name) - 1] == '0') {
data/neuron-7.6.3/src/modlunit/declare.c:228:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf[strlen(buf) - 1] = '\0';
data/neuron-7.6.3/src/modlunit/declare.c:248:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return strlen(s) - (cp - s);
data/neuron-7.6.3/src/modlunit/io.c:30:7: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
c = getc(f);
data/neuron-7.6.3/src/modlunit/io.c:41:13: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int c2 = getc(f);
data/neuron-7.6.3/src/modlunit/io.c:249:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (cp = prefix + strlen(prefix); cp+1 != prefix; --cp) {
data/neuron-7.6.3/src/modlunit/io.c:305:4: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(buf2, "/");
data/neuron-7.6.3/src/modlunit/io.c:327:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fname[strlen(fname)-1] = '\0';
data/neuron-7.6.3/src/modlunit/lex.c:655:14: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
(c = getc( yyin )) != EOF && c != '\n'; ++n ) \
data/neuron-7.6.3/src/modlunit/lex.c:1850:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return yy_scan_bytes( yystr, (int) strlen(yystr) );
data/neuron-7.6.3/src/modlunit/list.c:232:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s = (char *)emalloc((unsigned)(strlen(buf) + 1));
data/neuron-7.6.3/src/modlunit/parse1.c:1633:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
# define yystrlen strlen
data/neuron-7.6.3/src/modlunit/units.c:107:11: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int c = getc(inp);
data/neuron-7.6.3/src/modlunit/units.c:111:10: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
return getc(inp);
data/neuron-7.6.3/src/modlunit/units.c:128:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i=strlen(buf); i >= 0 && buf[i] != '\\'; --i) {;}
data/neuron-7.6.3/src/modlunit/units.c:131:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i=strlen(buf); i >= 0 && buf[i] != '\\'; --i) {;}
data/neuron-7.6.3/src/modlunit/units.c:635:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ucp += strlen(ucp);
data/neuron-7.6.3/src/modlunit/units.c:638:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ucp += strlen(ucp);
data/neuron-7.6.3/src/modlunit/units.c:759:12: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
static int equal(s1, s2)
data/neuron-7.6.3/src/modlunit/units.c:963:5: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if(equal(name, tp->name))
data/neuron-7.6.3/src/mswin/extra/d2upath.c:20:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
u = new char[strlen(d) + 12];
data/neuron-7.6.3/src/mswin/extra/d2upath.c:22:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
u = (char*)malloc(strlen(d) + 12);
data/neuron-7.6.3/src/mswin/extra/d2upath.c:29:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
i = strlen(u);
data/neuron-7.6.3/src/mswin/extra/hel2mos.cpp:63:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int flen = f->read(st);
data/neuron-7.6.3/src/mswin/extra/hel2mos.cpp:99:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(val, shelp->string() + i, j-i);
data/neuron-7.6.3/src/mswin/extra/hel2mos.cpp:160:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i=strlen(buf); i >= 0 && buf[i] != '\\'; --i) {;}
data/neuron-7.6.3/src/mswin/extra/hel2mos.cpp:163:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (j=strlen(buf); j >= 0 && buf[j] != '\\'; --j) {;}
data/neuron-7.6.3/src/mswin/extra/mos2nrn.cpp:17:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i=strlen(buf); i >= 0 && buf[i] != '\\'; --i) {;}
data/neuron-7.6.3/src/mswin/extra/mos2nrn.cpp:19:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i=strlen(buf); i >= 0 && buf[i] != '\\'; --i) {;}
data/neuron-7.6.3/src/mswin/extra/mos2nrn.cpp:21:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nrnhome = new char[strlen(buf)+1];
data/neuron-7.6.3/src/mswin/extra/mos2nrn.cpp:33:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cnt += strlen(argv[i])+20;
data/neuron-7.6.3/src/mswin/extra/mos2nrn.cpp:66:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf = new char[strlen(args) + 3*strlen(nh) + 200 + strlen(temp)];
data/neuron-7.6.3/src/mswin/extra/mos2nrn.cpp:66:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf = new char[strlen(args) + 3*strlen(nh) + 200 + strlen(temp)];
data/neuron-7.6.3/src/mswin/extra/mos2nrn.cpp:66:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf = new char[strlen(args) + 3*strlen(nh) + 200 + strlen(temp)];
data/neuron-7.6.3/src/mswin/extra/mos2nrn.cpp:78:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg = new char[strlen(buf) + 100];
data/neuron-7.6.3/src/mswin/extra/neuron.cpp:21:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i=strlen(buf); i >= 0 && buf[i] != '\\'; --i) {;}
data/neuron-7.6.3/src/mswin/extra/neuron.cpp:23:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i=strlen(buf); i >= 0 && buf[i] != '\\'; --i) {;}
data/neuron-7.6.3/src/mswin/extra/neuron.cpp:25:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nrnhome = new char[strlen(buf)+1];
data/neuron-7.6.3/src/mswin/extra/neuron.cpp:37:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cnt += strlen(argv[i]) + 20;
data/neuron-7.6.3/src/mswin/extra/neuron.cpp:76:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf = new char[strlen(args) + 6*strlen(nh) + 200];
data/neuron-7.6.3/src/mswin/extra/neuron.cpp:76:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf = new char[strlen(args) + 6*strlen(nh) + 200];
data/neuron-7.6.3/src/mswin/extra/neuron.cpp:90:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg = new char[strlen(buf) + 100];
data/neuron-7.6.3/src/mswin/extra/nrnbinstr.cpp:31:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int lenpat = strlen(pat);
data/neuron-7.6.3/src/mswin/rdln/chardefs.h:5:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define savestring(x) (char *)strcpy (xmalloc (1 + strlen (x)), (x))
data/neuron-7.6.3/src/mswin/rdln/history.c:67:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define savestring(x) (char *)strcpy (xmalloc (1 + strlen (x)), (x))
data/neuron-7.6.3/src/mswin/rdln/history.c:155:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
result += strlen (the_history[i]->line);
data/neuron-7.6.3/src/mswin/rdln/history.c:275:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int string_len = strlen (string);
data/neuron-7.6.3/src/mswin/rdln/history.c:295:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
index = strlen (line);
data/neuron-7.6.3/src/mswin/rdln/history.c:449:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return_val = (char *)xmalloc (2 + strlen (home) + strlen (".history"));
data/neuron-7.6.3/src/mswin/rdln/history.c:449:57: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return_val = (char *)xmalloc (2 + strlen (home) + strlen (".history"));
data/neuron-7.6.3/src/mswin/rdln/history.c:489:7: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read (file, buffer, finfo.st_size) != finfo.st_size)
data/neuron-7.6.3/src/mswin/rdln/history.c:563:3: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
read (file, buffer, finfo.st_size);
data/neuron-7.6.3/src/mswin/rdln/history.c:637:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buffer_size += 1 + strlen (the_history[i]->line);
data/neuron-7.6.3/src/mswin/rdln/history.c:645:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
j += strlen (the_history[i]->line);
data/neuron-7.6.3/src/mswin/rdln/history.c:880:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (temp, &string[index], (i - index));
data/neuron-7.6.3/src/mswin/rdln/history.c:943:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
register int j, l = strlen (string);
data/neuron-7.6.3/src/mswin/rdln/history.c:976:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *format_string = (char *)alloca (10 + strlen (string));
data/neuron-7.6.3/src/mswin/rdln/history.c:1071:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (temp, string + starting_index, l);
data/neuron-7.6.3/src/mswin/rdln/history.c:1100:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
temp = (char *)alloca (1 + strlen (word_spec));
data/neuron-7.6.3/src/mswin/rdln/history.c:1166:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int si, l_this, l_that, l_temp = strlen (temp);
data/neuron-7.6.3/src/mswin/rdln/history.c:1168:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (i + 2 < strlen (string))
data/neuron-7.6.3/src/mswin/rdln/history.c:1180:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (this, string + i, l_this);
data/neuron-7.6.3/src/mswin/rdln/history.c:1191:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (that, string + i, l_that);
data/neuron-7.6.3/src/mswin/rdln/history.c:1208:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (new_event, temp, si);
data/neuron-7.6.3/src/mswin/rdln/history.c:1209:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (new_event + si, that, l_that);
data/neuron-7.6.3/src/mswin/rdln/history.c:1210:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (new_event + si + l_that,
data/neuron-7.6.3/src/mswin/rdln/history.c:1219:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
l_temp = strlen (temp);
data/neuron-7.6.3/src/mswin/rdln/history.c:1245:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
temp = (char *)alloca (1 + strlen (result));
data/neuron-7.6.3/src/mswin/rdln/history.c:1272:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
j += strlen (temp);
data/neuron-7.6.3/src/mswin/rdln/history.c:1276:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strcpy (result + (j - strlen (temp)), temp);
data/neuron-7.6.3/src/mswin/rdln/history.c:1447:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int l = strlen (list[i]);
data/neuron-7.6.3/src/mswin/rdln/history.c:1457:8: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy (result + offset, " ");
data/neuron-7.6.3/src/mswin/rdln/history.c:1578:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (result[result_index], string + start, len);
data/neuron-7.6.3/src/mswin/rdln/history.c:1689:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncmp (line, "delete", strlen ("delete")) == 0)
data/neuron-7.6.3/src/mswin/rdln/history.c:1692:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((sscanf (line + strlen ("delete"), "%d", &which)) == 1)
data/neuron-7.6.3/src/mswin/rdln/readline.c:828:21: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
chars_avail = read (tty, &input, 1);
data/neuron-7.6.3/src/mswin/rdln/readline.c:1588:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (line + out, prompt_this_line, strlen (prompt_this_line));
data/neuron-7.6.3/src/mswin/rdln/readline.c:1588:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strncpy (line + out, prompt_this_line, strlen (prompt_this_line));
data/neuron-7.6.3/src/mswin/rdln/readline.c:1589:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
out += strlen (prompt_this_line);
data/neuron-7.6.3/src/mswin/rdln/readline.c:1685:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen (tt) : screenwidth);
data/neuron-7.6.3/src/mswin/rdln/readline.c:2868:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (copy, the_line + from, length);
data/neuron-7.6.3/src/mswin/rdln/readline.c:2901:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
register int i, l = strlen (string);
data/neuron-7.6.3/src/mswin/rdln/readline.c:2907:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (the_line + rl_point, string, l);
data/neuron-7.6.3/src/mswin/rdln/readline.c:2913:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((strlen (string) == 1) &&
data/neuron-7.6.3/src/mswin/rdln/readline.c:2943:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (the_line + from, the_line + to, rl_end - to);
data/neuron-7.6.3/src/mswin/rdln/readline.c:4050:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
replacement = (char *)alloca (strlen (matches[0]) + 2);
data/neuron-7.6.3/src/mswin/rdln/readline.c:4181:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen (temp) > max)
data/neuron-7.6.3/src/mswin/rdln/readline.c:4182:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
max = strlen (temp);
data/neuron-7.6.3/src/mswin/rdln/readline.c:4252:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (k = 0; k < max - strlen (temp); k++)
data/neuron-7.6.3/src/mswin/rdln/readline.c:4322:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
namelen = strlen (username);
data/neuron-7.6.3/src/mswin/rdln/readline.c:4339:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *value = (char *)xmalloc (2 + strlen (entry->pw_name));
data/neuron-7.6.3/src/mswin/rdln/readline.c:4569:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line_len = strlen (saved_line_for_history->line);
data/neuron-7.6.3/src/mswin/rdln/readline.c:4578:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
rl_end = rl_point = strlen (the_line);
data/neuron-7.6.3/src/mswin/rdln/readline.c:4646:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line_len = strlen (temp->line);
data/neuron-7.6.3/src/mswin/rdln/readline.c:4653:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
rl_end = rl_point = strlen (the_line);
data/neuron-7.6.3/src/mswin/rdln/readline.c:4705:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line_len = strlen (temp->line);
data/neuron-7.6.3/src/mswin/rdln/readline.c:4762:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(char *)alloca (1 + (search_string ? strlen (search_string) : 0) + 30);
data/neuron-7.6.3/src/mswin/rdln/readline.c:4771:3: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat (message, "(");
data/neuron-7.6.3/src/mswin/rdln/readline.c:4843:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
alloced_line = (char *)alloca (1 + strlen (the_line));
data/neuron-7.6.3/src/mswin/rdln/readline.c:4907:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
rl_end = strlen (the_line);
data/neuron-7.6.3/src/mswin/rdln/readline.c:4933:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (index != strlen (sline))
data/neuron-7.6.3/src/mswin/rdln/readline.c:4955:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(strlen (sline) - search_string_index) + 1;
data/neuron-7.6.3/src/mswin/rdln/readline.c:4977:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
index = strlen (sline);
data/neuron-7.6.3/src/mswin/rdln/readline.c:4983:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (search_string_index > strlen (sline))
data/neuron-7.6.3/src/mswin/rdln/readline.c:5004:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line_len = strlen (lines[i]);
data/neuron-7.6.3/src/mswin/rdln/readline.c:5040:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
index = strlen (the_line);
data/neuron-7.6.3/src/mswin/rdln/readline.c:5146:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *new = (char *)xmalloc (1 + strlen (old) + strlen (text));
data/neuron-7.6.3/src/mswin/rdln/readline.c:5146:55: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *new = (char *)xmalloc (1 + strlen (old) + strlen (text));
data/neuron-7.6.3/src/mswin/rdln/readline.c:5276:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
l = strlen (rl_kill_ring[rl_kill_index]);
data/neuron-7.6.3/src/mswin/rdln/readline.c:5443:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (match_list[0], match_list[1], low);
data/neuron-7.6.3/src/mswin/rdln/readline.c:5494:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy (dirname, ".");
data/neuron-7.6.3/src/mswin/rdln/readline.c:5511:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
filename_len = strlen (filename);
data/neuron-7.6.3/src/mswin/rdln/readline.c:5561:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
xmalloc (1 + strlen (users_dirname) + strlen (entry->d_name));
data/neuron-7.6.3/src/mswin/rdln/readline.c:5561:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
xmalloc (1 + strlen (users_dirname) + strlen (entry->d_name));
data/neuron-7.6.3/src/mswin/rdln/readline.c:5681:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
macro_keys = (char *)xmalloc ((2 * strlen (macro)) + 1);
data/neuron-7.6.3/src/mswin/rdln/readline.c:5715:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
keys = (char *)alloca (1 + (2 * strlen (keyseq)));
data/neuron-7.6.3/src/mswin/rdln/readline.c:5877:7: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
i = read (file, buffer, finfo.st_size);
data/neuron-7.6.3/src/mswin/rdln/readline.c:6182:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *seq = (char *)alloca (1 + strlen (string));
data/neuron-7.6.3/src/mswin/rdln/readline.c:6197:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
j = strlen (funname);
data/neuron-7.6.3/src/mswin/rdln/readline.c:6230:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int fl = strlen (funname);
data/neuron-7.6.3/src/mswin/rdln/readline.c:6448:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *keyname = (char *)xmalloc (6 + strlen (seqs[i]));
data/neuron-7.6.3/src/mswin/rdln/readline.c:6605:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
register int i, l = strlen (s2);
data/neuron-7.6.3/src/mswin/rdln/readline.c:6606:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
register int len = strlen (s1);
data/neuron-7.6.3/src/mswin/rdln/readline.c:6639:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
result = read (fileno (stream), &c, sizeof (char));
data/neuron-7.6.3/src/mswin/windll/dll.cpp:40:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char* p = new char[strlen(s) + 1];
data/neuron-7.6.3/src/mswin/windll/nrnmech.h:157:20: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
MKDLLdec("_fgetc", fgetc)
data/neuron-7.6.3/src/mswin/windll/nrnmech.h:182:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
MKDLLdec("_strlen", strlen)
data/neuron-7.6.3/src/mswin/windll/nrnmech.h:183:22: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
MKDLLdec("_strncat", strncat)
data/neuron-7.6.3/src/mswin/windll/nrnmech.h:185:22: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
MKDLLdec("_strncpy", strncpy)
data/neuron-7.6.3/src/mswin/wnrnbbs/ddeclnt.c:41:2: [1] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source is a constant character.
sprintf(szDDEString, "");
data/neuron-7.6.3/src/mswin/wnrnbbs/nrnbbs.cpp:24:7: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
bool equal(const char*);
data/neuron-7.6.3/src/mswin/wnrnbbs/nrnbbs.cpp:99:3: [1] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source is a constant character.
sprintf(value, "0");
data/neuron-7.6.3/src/mswin/wnrnbbs/nrnbbs.cpp:120:3: [1] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source is a constant character.
sprintf(value, "0");
data/neuron-7.6.3/src/mswin/wnrnbbs/nrnbbs.cpp:136:20: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if (ml_.item(i)->equal(name)) {
data/neuron-7.6.3/src/mswin/wnrnbbs/nrnbbs.cpp:151:18: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
bool NrnMessage::equal(const char* name) {
data/neuron-7.6.3/src/neuronmusic/neuronmusic.cpp:613:87: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define __Pyx_PyByteArray_FromString(s) PyByteArray_FromStringAndSize((const char*)s, strlen((const char*)s))
data/neuron-7.6.3/src/neuronmusic/neuronmusic.cpp:733:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
__PYX_DEFAULT_STRING_ENCODING = (char*) malloc(strlen(default_encoding_c));
data/neuron-7.6.3/src/neuronmusic/neuronmusic.cpp:4194:65: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return __Pyx_PyUnicode_FromStringAndSize(c_str, (Py_ssize_t)strlen(c_str));
data/neuron-7.6.3/src/nmodl/cout.c:283:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
RCS_version[strlen(RCS_version) - 2] = '\0';
data/neuron-7.6.3/src/nmodl/cout.c:284:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
RCS_date[strlen(RCS_date) - 11] = '\0';
data/neuron-7.6.3/src/nmodl/cout.c:604:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
RCS_version[strlen(RCS_version) - 2] = '\0';
data/neuron-7.6.3/src/nmodl/cout.c:605:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
RCS_date[strlen(RCS_date) - 11] = '\0';
data/neuron-7.6.3/src/nmodl/deriv.c:301:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cp = name + strlen(name);
data/neuron-7.6.3/src/nmodl/deriv.c:665:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (s->name[strlen(s->name) - 1] == '0') {
data/neuron-7.6.3/src/nmodl/deriv.c:667:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf[strlen(buf) - 1] = '\0';
data/neuron-7.6.3/src/nmodl/deriv.c:1063:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
assert(b[strlen(b) - 9] == '/');
data/neuron-7.6.3/src/nmodl/deriv.c:1064:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
b[strlen(b) - 9] = '\0';
data/neuron-7.6.3/src/nmodl/diffeq.c:762:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
# define yystrlen strlen
data/neuron-7.6.3/src/nmodl/diffeq.c:1726:3: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(buf, "[");
data/neuron-7.6.3/src/nmodl/io.c:30:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
i = strlen(buf);
data/neuron-7.6.3/src/nmodl/io.c:107:7: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
c = getc(f);
data/neuron-7.6.3/src/nmodl/io.c:118:13: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int c2 = getc(f);
data/neuron-7.6.3/src/nmodl/io.c:317:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (cp = prefix + strlen(prefix); cp+1 != prefix; --cp) {
data/neuron-7.6.3/src/nmodl/io.c:373:4: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(buf2, "/");
data/neuron-7.6.3/src/nmodl/io.c:395:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fname[strlen(fname)-1] = '\0';
data/neuron-7.6.3/src/nmodl/lex.c:631:14: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
(c = getc( yyin )) != EOF && c != '\n'; ++n ) \
data/neuron-7.6.3/src/nmodl/lex.c:810:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
i = strlen(yytext) - (cp - yytext);
data/neuron-7.6.3/src/nmodl/lex.c:1787:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return yy_scan_bytes( yystr, (int) strlen(yystr) );
data/neuron-7.6.3/src/nmodl/list.c:264:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s = emalloc((unsigned)(strlen(buf) + 1));
data/neuron-7.6.3/src/nmodl/modl.c:109:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(cs, argv[1], NRN_BUFSIZE);
data/neuron-7.6.3/src/nmodl/netrec_discon.c:65:56: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
static void general_discon_adjust(Item* varname, Item* equal, Item* expr, Item* lastok);
data/neuron-7.6.3/src/nmodl/netrec_discon.c:71:39: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
void netrec_asgn(Item* varname, Item* equal, Item* expr, Item* lastok) {
data/neuron-7.6.3/src/nmodl/netrec_discon.c:78:23: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
lappenditem(info, equal);
data/neuron-7.6.3/src/nmodl/netrec_discon.c:84:49: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
static void netrec_discon1(Item* varname, Item* equal, Item* expr, Item* lastok) {
data/neuron-7.6.3/src/nmodl/netrec_discon.c:123:44: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
char* state = items_as_string(varname, equal);
data/neuron-7.6.3/src/nmodl/netrec_discon.c:138:36: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
general_discon_adjust(varname, equal, expr, lastok);
data/neuron-7.6.3/src/nmodl/netrec_discon.c:150:31: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
netrec_discon1(varname, equal, expr, lastok);
data/neuron-7.6.3/src/nmodl/netrec_discon.c:155:56: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
static void general_discon_adjust(Item* varname, Item* equal, Item* expr, Item* lastok) {
data/neuron-7.6.3/src/nmodl/netrec_discon.c:171:42: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
char* state = items_as_string(varname, equal);
data/neuron-7.6.3/src/nmodl/nmodlfunc.h:141:39: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
void netrec_asgn(Item* varname, Item* equal, Item* expr, Item* lastok);
data/neuron-7.6.3/src/nmodl/noccout.c:563:7: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(buf, " ");
data/neuron-7.6.3/src/nmodl/nocpout.c:243:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (modbase = modprefix + strlen(modprefix); modbase != modprefix;
data/neuron-7.6.3/src/nmodl/parsact.c:322:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!type && strlen(abstol)>0) {
data/neuron-7.6.3/src/nmodl/parse1.c:1706:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
# define yystrlen strlen
data/neuron-7.6.3/src/nrncvode/hocevent.cpp:167:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
stmt[strlen(stmt)-1] = '\0';
data/neuron-7.6.3/src/nrncvode/netcvode.cpp:1015:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = strlen(s);
data/neuron-7.6.3/src/nrncvode/netcvode.cpp:1032:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = strlen(s);
data/neuron-7.6.3/src/nrncvode/netcvode.cpp:1061:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = strlen(s);
data/neuron-7.6.3/src/nrncvode/netcvode.cpp:1077:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = strlen(s);
data/neuron-7.6.3/src/nrncvode/netcvode.cpp:4387:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char* buf = new char[strlen(name)+1];
data/neuron-7.6.3/src/nrncvode/netcvode.cpp:5039:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(stmt) > 0) {
data/neuron-7.6.3/src/nrncvode/netcvode.cpp:5847:15: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
assert(Math::equal(t_->elem(j), tt, 1e-8));
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:391:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
void BBSS_Cnt::s(char* cp, int chk) { ns += strlen(cp) + 1; }
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:465:3: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
fgetc(f);
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:489:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
void BBSS_BufferOut::s(char* cp, int chk) {cpy(strlen(cp)+1, cp);}
data/neuron-7.6.3/src/nrniv/bbsavestate.cpp:524:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cpy(strlen(p)+1, cp);
data/neuron-7.6.3/src/nrniv/hocmech.cpp:220:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
parnames = new char[strlen(gargstr(3)) + 1];
data/neuron-7.6.3/src/nrniv/hocmech.cpp:259:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
parnames = new char[strlen(gargstr(2)) + 1];
data/neuron-7.6.3/src/nrniv/hocmech.cpp:348:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(cc, "0"); m[i] = cc;
data/neuron-7.6.3/src/nrniv/hocmech.cpp:351:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cc = new char[strlen(mname)+1];
data/neuron-7.6.3/src/nrniv/hocmech.cpp:390:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cc = new char[strlen(cp) + strlen(m[1]) + 20];
data/neuron-7.6.3/src/nrniv/hocmech.cpp:390:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cc = new char[strlen(cp) + strlen(m[1]) + 20];
data/neuron-7.6.3/src/nrniv/hocmech.cpp:423:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cc = new char[strlen(buf) + 20];
data/neuron-7.6.3/src/nrniv/kschan.cpp:633:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(s, kst->ks_->ligands_[kst->ligand_index_]->name, 20);
data/neuron-7.6.3/src/nrniv/kschan.cpp:634:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s[strlen(s) - 4] = (kst->type_==3) ? 'i' : 'o';
data/neuron-7.6.3/src/nrniv/kschan.cpp:635:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s[strlen(s) - 3] = '\0';
data/neuron-7.6.3/src/nrniv/kschan.cpp:995:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n = nbase + strlen(suffix) + 2;
data/neuron-7.6.3/src/nrniv/kschan.cpp:997:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(s1, sp->name, nbase);
data/neuron-7.6.3/src/nrniv/kschan.cpp:1172:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(s) == 0) {
data/neuron-7.6.3/src/nrniv/kschan.cpp:1190:5: [1] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source is a constant character.
sprintf(buf, "e");
data/neuron-7.6.3/src/nrniv/kschan.cpp:1422:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strcpy(buf+strlen(buf)-1, "_ion");
data/neuron-7.6.3/src/nrniv/kschan.cpp:2010:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(buf1) > 0) {
data/neuron-7.6.3/src/nrniv/kssingle.h:57:47: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
bool vsame(double x, double y) {return Math::equal(x, y, vres_);}
data/neuron-7.6.3/src/nrniv/nrnbbcore_write.cpp:200:3: [1] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source is a constant character.
sprintf(path, ".");
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:126:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&& s[strlen(suffix)] == '\0'){
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:138:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&& s[strlen(suffix)] == '\0'){
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:672:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&& s[strlen(suffix)] == '\0'){
data/neuron-7.6.3/src/nrniv/nrnmenu.cpp:681:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&& s[strlen(suffix)] == '\0'){
data/neuron-7.6.3/src/nrniv/nrnmusic.cpp:193:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(argv[0]) >= 5 &&
data/neuron-7.6.3/src/nrniv/nrnmusic.cpp:194:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strcmp(argv[0] + strlen(argv[0]) - 5, "music") == 0) {
data/neuron-7.6.3/src/nrniv/nrnpy.cpp:133:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int linesz = 1024 + (nrnpy_pyexe ? strlen(nrnpy_pyexe) : 0);
data/neuron-7.6.3/src/nrniv/nrnpy.cpp:135:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
linesz += 3*strlen(neuron_home);
data/neuron-7.6.3/src/nrniv/nrnpy.cpp:142:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(nrnpy_pyexe && strlen(nrnpy_pyexe) > 0) ? nrnpy_pyexe : "",
data/neuron-7.6.3/src/nrniv/nrnpy.cpp:148:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(nrnpy_pyexe && strlen(nrnpy_pyexe) > 0) ? nrnpy_pyexe : "");
data/neuron-7.6.3/src/nrniv/nrnpy.cpp:159:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cp[strlen(cp) - 2] = '\0';
data/neuron-7.6.3/src/nrniv/nrnpy.cpp:164:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cp[strlen(cp) - 2] = '\0';
data/neuron-7.6.3/src/nrniv/nrnpy.cpp:201:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n = strlen(p);
data/neuron-7.6.3/src/nrniv/savstate.cpp:42:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
virtual void read(OcFile*, bool close);
data/neuron-7.6.3/src/nrniv/savstate.cpp:701:17: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
void SaveState::read(OcFile* ocf, bool close) {
data/neuron-7.6.3/src/nrniv/savstate.cpp:1171:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ss->read(f, close);
data/neuron-7.6.3/src/nrniv/shape.cpp:1527:9: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
Math::equal(xmin_, a.left(), e) &&
data/neuron-7.6.3/src/nrniv/shape.cpp:1528:9: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
Math::equal(xmax_, a.right(), e) &&
data/neuron-7.6.3/src/nrniv/shape.cpp:1529:9: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
Math::equal(ymin_, a.bottom(), e) &&
data/neuron-7.6.3/src/nrniv/shape.cpp:1530:9: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
Math::equal(ymax_, a.top(), e)
data/neuron-7.6.3/src/nrniv/shape.cpp:1634:15: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
assert(Math::equal(xend, sec_->pt3d[sec_->npt3d-1].arc, 1e-6));
data/neuron-7.6.3/src/nrniv/spaceplt.cpp:670:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
p2 = buf + strlen(buf);
data/neuron-7.6.3/src/nrnjava/njvm.cpp:215:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
classpath = new char[strlen(args.classpath) + 2*strlen(neuron_home) + 100];
data/neuron-7.6.3/src/nrnjava/njvm.cpp:215:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
classpath = new char[strlen(args.classpath) + 2*strlen(neuron_home) + 100];
data/neuron-7.6.3/src/nrnjava/njvm.cpp:235:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(args.classpath) + strlen(ucpenv) + 2*strlen(neuron_home) + 100;
data/neuron-7.6.3/src/nrnjava/njvm.cpp:235:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(args.classpath) + strlen(ucpenv) + 2*strlen(neuron_home) + 100;
data/neuron-7.6.3/src/nrnjava/njvm.cpp:235:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(args.classpath) + strlen(ucpenv) + 2*strlen(neuron_home) + 100;
data/neuron-7.6.3/src/nrnjava/njvm.cpp:279:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(neuron_home) + 100;
data/neuron-7.6.3/src/nrnjava/nrnjava.cpp:228:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *mangledstr = new char[strlen(s) + 1];
data/neuron-7.6.3/src/nrnjava/nrnjava.cpp:240:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *mangledstr = new char[strlen(s) + 1];
data/neuron-7.6.3/src/nrnjava/nrnjava.cpp:334:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n = strlen(method->name);
data/neuron-7.6.3/src/nrnjava/nrnjava.cpp:384:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cs[i] = new char[strlen(jc) + 1];
data/neuron-7.6.3/src/nrnjava/nrnjni.cpp:427:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cs[i] = new char[strlen(jc + 1)];
data/neuron-7.6.3/src/nrnmpi/bbsmpipack.c:251:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(s);
data/neuron-7.6.3/src/nrnmpi/mpispike.c:325:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sz = *pstr ? (strlen(*pstr) + 1) : 0;
data/neuron-7.6.3/src/nrnmpi/nrnmpi_dynam.c:55:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sprintf(mes+strlen(mes), "load_nrnmpi: %s\n", dlerror());
data/neuron-7.6.3/src/nrnmpi/nrnmpi_dynam.c:70:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
void* handle = load_mpi("libmpi.dylib", pmes+strlen(pmes));
data/neuron-7.6.3/src/nrnmpi/nrnmpi_dynam.c:73:57: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!load_nrnmpi("@loader_path/libnrnmpi.dylib", pmes+strlen(pmes))) {
data/neuron-7.6.3/src/nrnmpi/nrnmpi_dynam.c:78:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sprintf(pmes+strlen(pmes), "Is openmpi installed? If not in default location, need a LD_LIBRARY_PATH.\n");
data/neuron-7.6.3/src/nrnmpi/nrnmpi_dynam.c:83:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
void* handle = load_mpi("msmpi.dll", pmes+strlen(pmes));
data/neuron-7.6.3/src/nrnmpi/nrnmpi_dynam.c:85:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!load_nrnmpi("libnrnmpi.dll", pmes+strlen(pmes))){
data/neuron-7.6.3/src/nrnmpi/nrnmpi_dynam.c:94:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
void* handle = load_mpi("libmpi.so", pmes+strlen(pmes));
data/neuron-7.6.3/src/nrnmpi/nrnmpi_dynam.c:96:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!load_nrnmpi("libnrnmpi.so", pmes+strlen(pmes))){
data/neuron-7.6.3/src/nrnmpi/nrnmpi_dynam.c:100:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sprintf(pmes+strlen(pmes), "Try loading mpich2\n");
data/neuron-7.6.3/src/nrnmpi/nrnmpi_dynam.c:101:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
handle = load_mpi("libmpl.so", pmes+strlen(pmes));
data/neuron-7.6.3/src/nrnmpi/nrnmpi_dynam.c:102:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
handle = load_mpi("libmpich.so", pmes+strlen(pmes));
data/neuron-7.6.3/src/nrnmpi/nrnmpi_dynam.c:116:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(!load_nrnmpi("libnrnmpi.so", pmes+strlen(pmes))){
data/neuron-7.6.3/src/nrnmpi/nrnmpi_dynam.c:123:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sprintf(pmes+strlen(pmes), "could not dynamically load libmpi.so or libmpich2.so\n");
data/neuron-7.6.3/src/nrnoc/cabcode.c:743:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = strlen(s);
data/neuron-7.6.3/src/nrnoc/eion.c:67:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf = emalloc(strlen(name) + 10);
data/neuron-7.6.3/src/nrnoc/eion.c:112:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
{int n = strlen(name) + 10;
data/neuron-7.6.3/src/nrnoc/eion.c:399:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(int)strlen(memb_func[pion->type].sym->name)-4,
data/neuron-7.6.3/src/nrnoc/init.c:354:5: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings. Risk is low because the source is a
constant character.
strncat(buf, "\\", 100);
data/neuron-7.6.3/src/nrnoc/init.c:355:5: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
strncat(buf, nrn_mech_dll, 100);
data/neuron-7.6.3/src/nrnoc/multicore.c:139:11: [1] (free) memalign:
On some systems (though not Linux-based systems) an attempt to free()
results from memalign() may fail. This may, on a few systems, be
exploitable. Also note that memalign() may not check that the boundary
parameter is correct (CWE-676). Use posix_memalign instead (defined in
POSIX's 1003.1d). Don't switch to valloc(); it is marked as obsolete in BSD
4.3, as legacy in SUSv2, and is no longer defined in SUSv3. In some cases,
malloc()'s alignment may be sufficient.
result = memalign(alignment, size);
data/neuron-7.6.3/src/nrnoc/nrnversion.c:60:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size += strlen(nrn_global_argv[j]) + 1;
data/neuron-7.6.3/src/nrnoc/nrnversion.c:67:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
c = c + strlen(c);
data/neuron-7.6.3/src/nrnoc/osxdlfcn.c:62:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy(errstr, "dlsimple: ", ERR_STR_LEN);
data/neuron-7.6.3/src/nrnoc/osxdlfcn.c:69:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (dylderrstr && strlen(dylderrstr))
data/neuron-7.6.3/src/nrnoc/osxdlfcn.c:70:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(errstr,dylderrstr,ERR_STR_LEN);
data/neuron-7.6.3/src/nrnoc/osxdlfcn.c:215:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int sym_len = strlen(symbol);
data/neuron-7.6.3/src/nrnpython/inithoc.cpp:169:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
argv[argc - 1] = new char[strlen(buf) + 1];
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:293:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sprintf(cp += strlen(cp), "[%d]", self->indices_[i]);
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:295:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sprintf(cp += strlen(cp), "[?]");
data/neuron-7.6.3/src/nrnpython/nrnpy_hoc.cpp:297:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sprintf(cp += strlen(cp), "()");
data/neuron-7.6.3/src/nrnpython/nrnpy_nrn.cpp:128:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char* cp = buf + strlen(buf);
data/neuron-7.6.3/src/nrnpython/nrnpy_nrn.cpp:228:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t n = strlen(name) + 1; // include terminator
data/neuron-7.6.3/src/nrnpython/nrnpy_nrn.cpp:240:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n += strlen(cp) + 1; // include dot
data/neuron-7.6.3/src/nrnpython/nrnpy_nrn.cpp:665:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char* name = new char[strlen(sname) + 100];
data/neuron-7.6.3/src/nrnpython/nrnpy_nrn.cpp:1664:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int nlen = strlen(n);
data/neuron-7.6.3/src/nrnpython/nrnpy_nrn.cpp:1665:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int mlen = strlen(m);
data/neuron-7.6.3/src/nrnpython/nrnpy_nrn.cpp:1671:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buf, n, sz);
data/neuron-7.6.3/src/nrnpython/nrnpy_nrn.cpp:1691:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int bufsz = strlen(n) + 6;
data/neuron-7.6.3/src/nrnpython/nrnpy_nrn.cpp:1719:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int mnamelen = strlen(mname);
data/neuron-7.6.3/src/nrnpython/nrnpy_nrn.cpp:1956:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char* s2 = new char[strlen(s) + 1];
data/neuron-7.6.3/src/nrnpython/nrnpy_p2h.cpp:462:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buf, str.c_str(), size);
data/neuron-7.6.3/src/nrnpython/nrnpy_p2h.cpp:613:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*cpp = new char[strlen(cp) + 1];
data/neuron-7.6.3/src/nrnpython/nrnpython.cpp:49:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!augmented && strlen(neuronhome_forward()) > 0) {
data/neuron-7.6.3/src/nrnpython/nrnpython.cpp:67:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char* cmd = new char[strlen(fname) + 40];
data/neuron-7.6.3/src/nrnpython/nrnpython.cpp:123:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t argsize = strlen(argv[i]);
data/neuron-7.6.3/src/nrnpython/nrnpython.cpp:191:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t argsize = strlen(argv[i]);
data/neuron-7.6.3/src/nrnpython/nrnpython.cpp:226:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
} else if (strlen(arg) > 3 && strcmp(arg + strlen(arg) - 3, ".py") == 0) {
data/neuron-7.6.3/src/nrnpython/nrnpython.cpp:226:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
} else if (strlen(arg) > 3 && strcmp(arg + strlen(arg) - 3, ".py") == 0) {
data/neuron-7.6.3/src/nrnpython/nrnpython.cpp:272:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t n = strlen(hoc_cbufstr->buf) + 1;
data/neuron-7.6.3/src/oc/audit.c:241:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
bp = buf + strlen(buf);
data/neuron-7.6.3/src/oc/audit.c:245:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
bp[strlen(bp) - 1] = '\0';
data/neuron-7.6.3/src/oc/audit.c:289:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf[strlen(buf)-1] = '\0';
data/neuron-7.6.3/src/oc/audit.c:290:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strncmp(buf, fname, strlen(fname)) != 0) {
data/neuron-7.6.3/src/oc/axis.c:404:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
offset = width*(int)strlen(s)/2;
data/neuron-7.6.3/src/oc/axis.c:427:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
offset = width*(int)strlen(s) + width;
data/neuron-7.6.3/src/oc/code.c:420:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return strlen(parsestr);
data/neuron-7.6.3/src/oc/code.c:424:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(cbuf, parsestr, nc);
data/neuron-7.6.3/src/oc/code.c:1220:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(s) > 15) {
data/neuron-7.6.3/src/oc/code.c:2228:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*cpp = (char *)emalloc((unsigned)(strlen(buf) + 1));
data/neuron-7.6.3/src/oc/code.c:2262:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n1 = strlen(buf);
data/neuron-7.6.3/src/oc/code.c:2357:3: [1] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source is a constant character.
sprintf(buf, "\t");
data/neuron-7.6.3/src/oc/code.c:2358:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
grx_output_some_chars(buf, strlen(buf));
data/neuron-7.6.3/src/oc/code.c:2387:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hocstr_resize(s, strlen(ss) + 1);
data/neuron-7.6.3/src/oc/code.c:2414:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hocstr_resize(s, strlen(*cpp)+10);
data/neuron-7.6.3/src/oc/code2.c:46:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf = emalloc(strlen(name)+1);
data/neuron-7.6.3/src/oc/code2.c:133:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sym->extra->units = (char*)emalloc(strlen(units)+1);
data/neuron-7.6.3/src/oc/code2.c:192:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf = emalloc(strlen(neuron_home)+1);
data/neuron-7.6.3/src/oc/code2.c:341:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
arg[iarg].u.s = (char*)emalloc(strlen(buf) + 1);
data/neuron-7.6.3/src/oc/code2.c:457:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = strlen(gargstr(1)) + strlen(stdoutfile);
data/neuron-7.6.3/src/oc/code2.c:457:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = strlen(gargstr(1)) + strlen(stdoutfile);
data/neuron-7.6.3/src/oc/code2.c:485:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
i += strlen(line->buf);
data/neuron-7.6.3/src/oc/code2.c:643:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(str) > BUFSIZ - 20) {
data/neuron-7.6.3/src/oc/code2.c:645:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s = hocstr_create(strlen(str) + 20);
data/neuron-7.6.3/src/oc/code2.c:675:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(str) > BUFSIZ - 10) {
data/neuron-7.6.3/src/oc/code2.c:677:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s = hocstr_create(strlen(str) + 10);
data/neuron-7.6.3/src/oc/code2.c:701:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(s) > BUFSIZ - 20) {
data/neuron-7.6.3/src/oc/code2.c:703:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf = hocstr_create(strlen(s) + 20);
data/neuron-7.6.3/src/oc/fileio.c:151:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hocstr_resize(hs, strlen(s) + 2);
data/neuron-7.6.3/src/oc/fileio.c:170:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hocstr_resize(hs, n + strlen(cp3) + strlen(s) + 2);
data/neuron-7.6.3/src/oc/fileio.c:170:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hocstr_resize(hs, n + strlen(cp3) + strlen(s) + 2);
data/neuron-7.6.3/src/oc/fileio.c:238:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int sz = 2*(strlen(rcs) + strlen(name)) + 20;
data/neuron-7.6.3/src/oc/fileio.c:238:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int sz = 2*(strlen(rcs) + strlen(name)) + 20;
data/neuron-7.6.3/src/oc/fileio.c:287:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(fname) >= hoc_xopen_file_size_) {
data/neuron-7.6.3/src/oc/fileio.c:288:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hoc_xopen_file_size_ = strlen(fname) + 100;
data/neuron-7.6.3/src/oc/fileio.c:340:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
d = (int)strlen(buf);
data/neuron-7.6.3/src/oc/fileio.c:366:7: [1] (buffer) fscanf:
It's unclear if the %s limit in the format string is small enough
(CWE-120). Check that the limit is sufficiently small, or use a different
input function.
if (fscanf(fi, "%255s", fs) == EOF) {
data/neuron-7.6.3/src/oc/fileio.c:443:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pushx((double)strlen(buf));
data/neuron-7.6.3/src/oc/fileio.c:509:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hocstr_resize(hs, n + strlen(cp) + 100);
data/neuron-7.6.3/src/oc/fileio.c:529:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hocstr_resize(hs, n + strlen(frag) + 100);
data/neuron-7.6.3/src/oc/fileio.c:561:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
assert(strlen(cmd) + 20 < 1024);
data/neuron-7.6.3/src/oc/fileio.c:596:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
assert(strlen(stype) + strlen(s) + 50 < 1024);
data/neuron-7.6.3/src/oc/fileio.c:596:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
assert(strlen(stype) + strlen(s) + 50 < 1024);
data/neuron-7.6.3/src/oc/fileio.c:602:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
f[strlen(f)-1] = '\0';
data/neuron-7.6.3/src/oc/fileio.c:703:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(expname, expand_env_var(name), hoc_load_file_size_);
data/neuron-7.6.3/src/oc/fileio.c:707:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(path, name, base-name);
data/neuron-7.6.3/src/oc/fileio.c:735:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cp = hlp + strlen(hlp);
data/neuron-7.6.3/src/oc/fileio.c:738:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(path, hlp, cp-hlp);
data/neuron-7.6.3/src/oc/fileio.c:763:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
assert(strlen(path) + strlen(base) + 1 < hoc_load_file_size_);
data/neuron-7.6.3/src/oc/fileio.c:763:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
assert(strlen(path) + strlen(base) + 1 < hoc_load_file_size_);
data/neuron-7.6.3/src/oc/fileio.c:800:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
assert(strlen(base) + 50 < hoc_load_file_size_);
data/neuron-7.6.3/src/oc/fileio.c:831:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(buf);
data/neuron-7.6.3/src/oc/fmenu.c:401:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
item->command = (char *)emalloc((unsigned)(strlen(command) + 1));
data/neuron-7.6.3/src/oc/fmenu.c:407:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(buf);
data/neuron-7.6.3/src/oc/fmenu.c:410:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(buf);
data/neuron-7.6.3/src/oc/fmenu.c:421:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
item->prompt = (char *)emalloc((unsigned)(strlen(prompt) + 1));
data/neuron-7.6.3/src/oc/fmenu.c:423:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
item->command = (char *)emalloc((unsigned)(strlen(command) + 1));
data/neuron-7.6.3/src/oc/hoc.c:213:2: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
fgetc(stdin);
data/neuron-7.6.3/src/oc/hoc.c:288:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char* s = buf + strlen(buf);
data/neuron-7.6.3/src/oc/hoc.c:465:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(yylval.sym)->u.cstr = (char *)emalloc((unsigned)(strlen(sbuf->buf)+1));
data/neuron-7.6.3/src/oc/hoc.c:874:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hocstr_resize(hs, strlen(buf)+1);
data/neuron-7.6.3/src/oc/hoc.c:952:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(stdinonly[0], "-");
data/neuron-7.6.3/src/oc/hoc.c:996:5: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
read(fileno(stdin), &c, 1);
data/neuron-7.6.3/src/oc/hoc.c:1027:5: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
read(fileno(stdin), &c, 1);
data/neuron-7.6.3/src/oc/hoc.c:1072:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf = malloc(strlen(neuron_home) + 30);
data/neuron-7.6.3/src/oc/hoc.c:1113:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf = (char*)emalloc(strlen(infile) + 1);
data/neuron-7.6.3/src/oc/hoc.c:1205:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(infile) < 4 || strcmp(infile+strlen(infile)-4, ".hoc") != 0) {
data/neuron-7.6.3/src/oc/hoc.c:1205:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(infile) < 4 || strcmp(infile+strlen(infile)-4, ".hoc") != 0) {
data/neuron-7.6.3/src/oc/hoc.c:1227:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hs = hocstr_create(strlen(infile) + 2);
data/neuron-7.6.3/src/oc/hoc.c:1240:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
} else if (strlen(infile) > 3 && strcmp(infile+strlen(infile) -3, ".py") == 0) {
data/neuron-7.6.3/src/oc/hoc.c:1240:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
} else if (strlen(infile) > 3 && strcmp(infile+strlen(infile) -3, ".py") == 0) {
data/neuron-7.6.3/src/oc/hoc.c:1259:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(infile) >= hoc_xopen_file_size_) {
data/neuron-7.6.3/src/oc/hoc.c:1260:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hoc_xopen_file_size_ = strlen(infile) + 100;
data/neuron-7.6.3/src/oc/hoc.c:1436:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hocstr_resize(hoc_cbufstr, strlen(buf) + 10);
data/neuron-7.6.3/src/oc/hoc.c:1477:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = strlen(cbuf);
data/neuron-7.6.3/src/oc/hoc.c:1636:3: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(10000);
data/neuron-7.6.3/src/oc/hoc.c:1804:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = strlen(line);
data/neuron-7.6.3/src/oc/hoc.c:1835:4: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(cbuf, "\n");
data/neuron-7.6.3/src/oc/hoc.c:1864:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ctp = cbuf + strlen(cbuf) - 1;
data/neuron-7.6.3/src/oc/hoc_oop.c:363:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(cmd) > 256 - 10) {
data/neuron-7.6.3/src/oc/hoc_oop.c:364:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hs = hocstr_create(strlen(cmd) + 10);
data/neuron-7.6.3/src/oc/hoc_oop.c:1665:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sprintf(mname + strlen(mname), "%ld%s",
data/neuron-7.6.3/src/oc/hoc_oop.c:1666:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(signature), signature);
data/neuron-7.6.3/src/oc/hoc_oop.c:1693:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
i += strlen(s->name) + 1;
data/neuron-7.6.3/src/oc/hoc_oop.c:1694:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (i >= 80) { printf("\n"); i = strlen(s->name) + 1; }
data/neuron-7.6.3/src/oc/hocdec.h:307:34: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
#define Strncat cplint = strncat
data/neuron-7.6.3/src/oc/hocdec.h:309:34: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
#define Strncpy cplint = strncpy
data/neuron-7.6.3/src/oc/hocdec.h:322:25: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
#define Strncat strncat
data/neuron-7.6.3/src/oc/hocdec.h:324:25: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
#define Strncpy strncpy
data/neuron-7.6.3/src/oc/list.c:208:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s = (char*)emalloc((unsigned)(strlen(buf) + 1));
data/neuron-7.6.3/src/oc/macprt.c:48:8: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(prePath, ":");
data/neuron-7.6.3/src/oc/macprt.c:57:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
neuron_home[strlen(neuron_home)-1] = '\0';
data/neuron-7.6.3/src/oc/mswinprt.c:49:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i=strlen(buf); i >= 0 && buf[i] != '\\'; --i) {;}
data/neuron-7.6.3/src/oc/mswinprt.c:52:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (j=strlen(buf); j >= 0 && buf[j] != '\\'; --j) {;}
data/neuron-7.6.3/src/oc/mswinprt.c:54:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
neuron_home_dos = emalloc(strlen(buf) + 1);
data/neuron-7.6.3/src/oc/mswinprt.c:91:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s = emalloc(strlen(buf1)+1);
data/neuron-7.6.3/src/oc/mswinprt.c:259:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dnrnhome = (char*)emalloc(strlen(nrnhome) + 1);
data/neuron-7.6.3/src/oc/nrnfilewrap.c:127:7: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
c = getc(fw->f);
data/neuron-7.6.3/src/oc/nrnfilewrap.h:51:25: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#define nrn_fw_getc(fw) getc(fw)
data/neuron-7.6.3/src/oc/ocmain.c:36:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buffer = malloc(strlen(NEURON_DATA_DIR) + 12);
data/neuron-7.6.3/src/oc/parse.c:1858:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
# define yystrlen strlen
data/neuron-7.6.3/src/oc/plot.c:175:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (text && s[strlen(s) - 1] == '\n') {
data/neuron-7.6.3/src/oc/plot.c:178:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf[strlen(s)-1] = '\0';
data/neuron-7.6.3/src/oc/plot.c:225:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (hardplot && hpdev && text && strlen(s)) {
data/neuron-7.6.3/src/oc/plot.c:612:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(hardplot_filename, s, 99);
data/neuron-7.6.3/src/oc/symbol.c:103:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sp->name = (char *)emalloc((unsigned)(strlen(s)+1)); /* +1 for '\0' */
data/neuron-7.6.3/src/oc/x.c:170:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
XDrawString(display, win, gc, xold, yold, s, strlen(s));
data/neuron-7.6.3/src/oc/xred.c:73:4: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(istr, "\n");
data/neuron-7.6.3/src/oc/xred.c:82:8: [1] (buffer) sscanf:
It's unclear if the %s limit in the format string is small enough
(CWE-120). Check that the limit is sufficiently small, or use a different
input function.
if (sscanf(istr,"%lf%1s",&input,c) == 1)
data/neuron-7.6.3/src/oc/xred.c:144:4: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(istr, "\n");
data/neuron-7.6.3/src/oc/xred.c:151:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
istr[strlen(istr)-1]='\0'; /* if real input, strip return */
data/neuron-7.6.3/src/oc/xred.c:182:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ct_len = strlen(ct);
data/neuron-7.6.3/src/oc/xred.c:186:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&& (ct_len <= strlen(strchr_ptr)));
data/neuron-7.6.3/src/parallel/bbsdirect.cpp:138:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(s);
data/neuron-7.6.3/src/parallel/bbsdirect.cpp:378:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int nh = strlen(home);
data/neuron-7.6.3/src/parallel/bbsdirect.cpp:385:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char* rel = new char[strlen(wd) - nh + 1];
data/neuron-7.6.3/src/parallel/bbslocal.cpp:112:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ( !posting_ || posting_->pkint(strlen(s))) { perror("pkstr length"); }
data/neuron-7.6.3/src/parallel/bbslsrv.cpp:58:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char* s1 = new char[strlen(s) + 1];
data/neuron-7.6.3/src/parallel/bbslsrv.cpp:189:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
m->u.s = new char[strlen(str)+1];
data/neuron-7.6.3/src/parallel/bbslsrv2.cpp:68:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char* s1 = new char[strlen(s) + 1];
data/neuron-7.6.3/src/parallel/bbsrcli.cpp:112:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(s);
data/neuron-7.6.3/src/parallel/bbssrv2mpi.cpp:70:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char* s1 = new char[strlen(s) + 1];
data/neuron-7.6.3/src/parallel/ocbbs.cpp:826:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cnt = strlen(s) + 1;
data/neuron-7.6.3/src/parallel/ocbbs.cpp:853:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cnt = strlen(gargstr(1));
data/neuron-7.6.3/src/parallel/ocbbs.cpp:1109:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int size = strlen(s) + 1;
data/neuron-7.6.3/src/parallel/ocbbs.cpp:1165:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int size = strlen(s) + 1;
data/neuron-7.6.3/src/parallel/ocbbs.cpp:1195:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int size = strlen(sarg[ns]) + 1;
data/neuron-7.6.3/src/readline/chardefs.h:5:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define savestring(x) (char *)strcpy (xmalloc (1 + strlen (x)), (x))
data/neuron-7.6.3/src/readline/history.c:69:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define savestring(x) (char *)strcpy (xmalloc (1 + strlen (x)), (x))
data/neuron-7.6.3/src/readline/history.c:151:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
result += strlen (the_history[i]->line);
data/neuron-7.6.3/src/readline/history.c:264:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int string_len = strlen (string);
data/neuron-7.6.3/src/readline/history.c:284:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
index = strlen (line);
data/neuron-7.6.3/src/readline/history.c:406:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return_val = (char *)xmalloc (2 + strlen (home) + strlen (".history"));
data/neuron-7.6.3/src/readline/history.c:406:57: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return_val = (char *)xmalloc (2 + strlen (home) + strlen (".history"));
data/neuron-7.6.3/src/readline/history.c:446:7: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read (file, buffer, finfo.st_size) != finfo.st_size)
data/neuron-7.6.3/src/readline/history.c:520:3: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
read (file, buffer, finfo.st_size);
data/neuron-7.6.3/src/readline/history.c:588:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (write (file, the_history[i]->line, strlen (the_history[i]->line)) < 0)
data/neuron-7.6.3/src/readline/history.c:821:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (temp, &string[index], (i - index));
data/neuron-7.6.3/src/readline/history.c:845:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen (temp)) == 0))
data/neuron-7.6.3/src/readline/history.c:891:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
register int j, l = strlen (string);
data/neuron-7.6.3/src/readline/history.c:942:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *format_string = (char *)Alloca (10 + strlen (string));
data/neuron-7.6.3/src/readline/history.c:1043:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (temp, string + starting_index, l);
data/neuron-7.6.3/src/readline/history.c:1075:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
temp = (char *)Alloca (1 + strlen (word_spec));
data/neuron-7.6.3/src/readline/history.c:1144:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int si, l_this, l_that, l_temp = strlen (temp);
data/neuron-7.6.3/src/readline/history.c:1146:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (i + 2 < strlen (string))
data/neuron-7.6.3/src/readline/history.c:1161:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (this, string + i, l_this);
data/neuron-7.6.3/src/readline/history.c:1175:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (that, string + i, l_that);
data/neuron-7.6.3/src/readline/history.c:1195:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (new_event, temp, si);
data/neuron-7.6.3/src/readline/history.c:1196:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (new_event + si, that, l_that);
data/neuron-7.6.3/src/readline/history.c:1197:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (new_event + si + l_that,
data/neuron-7.6.3/src/readline/history.c:1206:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
l_temp = strlen (temp);
data/neuron-7.6.3/src/readline/history.c:1232:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
temp = (char *)Alloca (1 + strlen (result));
data/neuron-7.6.3/src/readline/history.c:1262:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
j += strlen (temp);
data/neuron-7.6.3/src/readline/history.c:1266:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strcpy (result + (j - strlen (temp)), temp);
data/neuron-7.6.3/src/readline/history.c:1443:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int l = strlen (list[i]);
data/neuron-7.6.3/src/readline/history.c:1453:8: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy (result + offset, " ");
data/neuron-7.6.3/src/readline/history.c:1574:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (result[result_index], string + start, len);
data/neuron-7.6.3/src/readline/history.c:1685:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncmp (line, "delete", strlen ("delete")) == 0)
data/neuron-7.6.3/src/readline/history.c:1688:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((sscanf (line + strlen ("delete"), "%d", &which)) == 1)
data/neuron-7.6.3/src/readline/readline.c:773:21: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
chars_avail = read (tty, &input, 1);
data/neuron-7.6.3/src/readline/readline.c:1520:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (line + out, prompt_this_line, strlen (prompt_this_line));
data/neuron-7.6.3/src/readline/readline.c:1520:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strncpy (line + out, prompt_this_line, strlen (prompt_this_line));
data/neuron-7.6.3/src/readline/readline.c:1521:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
out += strlen (prompt_this_line);
data/neuron-7.6.3/src/readline/readline.c:1611:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen (tt) : screenwidth);
data/neuron-7.6.3/src/readline/readline.c:2632:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (copy, the_line + from, length);
data/neuron-7.6.3/src/readline/readline.c:2651:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
register int i, l = strlen (string);
data/neuron-7.6.3/src/readline/readline.c:2662:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (the_line + rl_point, string, l);
data/neuron-7.6.3/src/readline/readline.c:2668:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((strlen (string) == 1) &&
data/neuron-7.6.3/src/readline/readline.c:2698:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (the_line + from, the_line + to, rl_end - to);
data/neuron-7.6.3/src/readline/readline.c:3790:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen (temp) > max)
data/neuron-7.6.3/src/readline/readline.c:3791:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
max = strlen (temp);
data/neuron-7.6.3/src/readline/readline.c:3861:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (k = 0; k < max - strlen (temp); k++)
data/neuron-7.6.3/src/readline/readline.c:3917:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
namelen = strlen (username);
data/neuron-7.6.3/src/readline/readline.c:3934:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *value = (char *)xmalloc (2 + strlen (entry->pw_name));
data/neuron-7.6.3/src/readline/readline.c:3970:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
temp_name = (char *)Alloca (1 + strlen (&dirname[1])
data/neuron-7.6.3/src/readline/readline.c:3971:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
+ (temp_home? strlen (temp_home) : 0));
data/neuron-7.6.3/src/readline/readline.c:4008:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
temp_name = (char *)Alloca (1 + strlen (expansion)
data/neuron-7.6.3/src/readline/readline.c:4009:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
+ strlen (&dirname[i]));
data/neuron-7.6.3/src/readline/readline.c:4022:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
temp_name = (char *)Alloca (1 + strlen (user_entry->pw_dir)
data/neuron-7.6.3/src/readline/readline.c:4023:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
+ strlen (&dirname[i]));
data/neuron-7.6.3/src/readline/readline.c:4259:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
rl_end = rl_point = strlen (the_line);
data/neuron-7.6.3/src/readline/readline.c:4327:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
rl_end = rl_point = strlen (the_line);
data/neuron-7.6.3/src/readline/readline.c:4375:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
rl_end = rl_point = strlen (the_line);
data/neuron-7.6.3/src/readline/readline.c:4427:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(char *)Alloca (1 + (search_string ? strlen (search_string) : 0) + 30);
data/neuron-7.6.3/src/readline/readline.c:4436:3: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat (message, "(");
data/neuron-7.6.3/src/readline/readline.c:4511:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cp = (char *)Alloca (1 + strlen (the_line));
data/neuron-7.6.3/src/readline/readline.c:4515:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
lines[i] = (char *)Alloca (1 + strlen (the_line));
data/neuron-7.6.3/src/readline/readline.c:4571:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
rl_end = strlen (the_line);
data/neuron-7.6.3/src/readline/readline.c:4603:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (index != strlen (sline))
data/neuron-7.6.3/src/readline/readline.c:4626:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(strlen (sline) - search_string_index) + 1;
data/neuron-7.6.3/src/readline/readline.c:4648:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
index = strlen (sline);
data/neuron-7.6.3/src/readline/readline.c:4654:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (search_string_index > strlen (sline))
data/neuron-7.6.3/src/readline/readline.c:4674:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
rl_end = strlen (the_line);
data/neuron-7.6.3/src/readline/readline.c:4702:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
index = strlen (the_line);
data/neuron-7.6.3/src/readline/readline.c:4814:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *new = (char *)xmalloc (1 + strlen (old) + strlen (text));
data/neuron-7.6.3/src/readline/readline.c:4814:55: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *new = (char *)xmalloc (1 + strlen (old) + strlen (text));
data/neuron-7.6.3/src/readline/readline.c:4944:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
l = strlen (rl_kill_ring[rl_kill_index]);
data/neuron-7.6.3/src/readline/readline.c:5107:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (match_list[0], match_list[1], low);
data/neuron-7.6.3/src/readline/readline.c:5157:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy (dirname, ".");
data/neuron-7.6.3/src/readline/readline.c:5172:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
filename_len = strlen (filename);
data/neuron-7.6.3/src/readline/readline.c:5199:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((strlen(entry->d_name) >= filename_len) &&
data/neuron-7.6.3/src/readline/readline.c:5225:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
temp = (char *)xmalloc (1 + strlen (users_dirname)
data/neuron-7.6.3/src/readline/readline.c:5227:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
+ strlen(entry->d_name));
data/neuron-7.6.3/src/readline/readline.c:5345:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *macro_keys = (char *)xmalloc (2 * (strlen (macro)));
data/neuron-7.6.3/src/readline/readline.c:5378:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
keys = (char *)Alloca (1 + (2 * strlen (keyseq)));
data/neuron-7.6.3/src/readline/readline.c:5541:7: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
i = read (file, buffer, size);
data/neuron-7.6.3/src/readline/readline.c:5804:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *seq = (char *)Alloca (1 + strlen (string));
data/neuron-7.6.3/src/readline/readline.c:5819:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
j = strlen (funname);
data/neuron-7.6.3/src/readline/readline.c:5854:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int fl = strlen (funname);
data/neuron-7.6.3/src/readline/readline.c:6009:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
register int i, l = strlen (s2);
data/neuron-7.6.3/src/readline/readline.c:6010:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
register int len = strlen (s1);
data/neuron-7.6.3/src/readline/readline.c:6036:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
result = read (fileno (stream), &c, sizeof (char));
data/neuron-7.6.3/src/scopmath/force.c:352:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
newspline->name = malloc((unsigned) strlen(filename) + 1);
data/neuron-7.6.3/src/uxnrnbbs/mos2nrn.cpp:57:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (cp = path + strlen(path) - 1; cp >= path; --cp) {
ANALYSIS SUMMARY:
Hits = 3990
Lines analyzed = 686092 in approximately 17.88 seconds (38383 lines/second)
Physical Source Lines of Code (SLOC) = 502592
Hits@level = [0] 2517 [1] 913 [2] 1468 [3] 124 [4] 1473 [5] 12
Hits@level+ = [0+] 6507 [1+] 3990 [2+] 3077 [3+] 1609 [4+] 1485 [5+] 12
Hits/KSLOC@level+ = [0+] 12.9469 [1+] 7.93885 [2+] 6.12226 [3+] 3.2014 [4+] 2.95468 [5+] 0.0238762
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.