Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/pd-tclpd-0.3.0/tcl_proxyinlet.c
Examining data/pd-tclpd-0.3.0/tclpd.h
Examining data/pd-tclpd-0.3.0/tcl_typemap.c
Examining data/pd-tclpd-0.3.0/hashtable.c
Examining data/pd-tclpd-0.3.0/hashtable.h
Examining data/pd-tclpd-0.3.0/tclpd.c
Examining data/pd-tclpd-0.3.0/tcl_class.c
Examining data/pd-tclpd-0.3.0/tcl_widgetbehavior.c
Examining data/pd-tclpd-0.3.0/tcl_loader.c
FINAL RESULTS:
data/pd-tclpd-0.3.0/tcl_class.c:58:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[80];
data/pd-tclpd-0.3.0/tcl_class.c:127:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char so[64];
data/pd-tclpd-0.3.0/tcl_class.c:130:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sd[64];
data/pd-tclpd-0.3.0/tcl_class.c:135:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char addmapcmd[256];
data/pd-tclpd-0.3.0/tcl_class.c:216:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char delmapcmd[256];
data/pd-tclpd-0.3.0/tcl_class.c:449:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[256];
data/pd-tclpd-0.3.0/tcl_loader.c:12:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filename[MAXPDSTRING], dirbuf[MAXPDSTRING], buf[MAXPDSTRING],
data/pd-tclpd-0.3.0/tcl_loader.c:89:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[64];
data/pd-tclpd-0.3.0/tcl_typemap.c:92:22: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int ii = atoi(str);
data/pd-tclpd-0.3.0/tcl_typemap.c:145:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dolbuf[8];
data/pd-tclpd-0.3.0/tcl_widgetbehavior.c:296:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[32];
data/pd-tclpd-0.3.0/tclpd.c:26:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[PATH_MAX];
data/pd-tclpd-0.3.0/tcl_loader.c:34:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(filename, objectname, MAXPDSTRING);
data/pd-tclpd-0.3.0/tcl_loader.c:36:5: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(filename, "/");
data/pd-tclpd-0.3.0/tcl_loader.c:37:5: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
strncat(filename, classname, MAXPDSTRING-strlen(filename));
data/pd-tclpd-0.3.0/tcl_loader.c:37:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strncat(filename, classname, MAXPDSTRING-strlen(filename));
data/pd-tclpd-0.3.0/tcl_loader.c:54:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(filename, dirbuf, MAXPDSTRING);
data/pd-tclpd-0.3.0/tcl_loader.c:56:5: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(filename, "/");
data/pd-tclpd-0.3.0/tcl_loader.c:57:5: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
strncat(filename, nameptr, MAXPDSTRING - strlen(filename));
data/pd-tclpd-0.3.0/tcl_loader.c:57:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strncat(filename, nameptr, MAXPDSTRING - strlen(filename));
data/pd-tclpd-0.3.0/tcl_typemap.c:135:75: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tcl_t_atom[1] = Tcl_NewStringObj(input->a_w.w_symbol->s_name, strlen(input->a_w.w_symbol->s_name));
data/pd-tclpd-0.3.0/tcl_widgetbehavior.c:70:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(Tcl_GetStringFromObj(o, NULL)) > 0) {
ANALYSIS SUMMARY:
Hits = 22
Lines analyzed = 1491 in approximately 0.07 seconds (22522 lines/second)
Physical Source Lines of Code (SLOC) = 1190
Hits@level = [0] 12 [1] 10 [2] 12 [3] 0 [4] 0 [5] 0
Hits@level+ = [0+] 34 [1+] 22 [2+] 12 [3+] 0 [4+] 0 [5+] 0
Hits/KSLOC@level+ = [0+] 28.5714 [1+] 18.4874 [2+] 10.084 [3+] 0 [4+] 0 [5+] 0
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.