Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/plasma-nm-5.19.5/kded/passworddialog.h
Examining data/plasma-nm-5.19.5/kded/passworddialog.cpp
Examining data/plasma-nm-5.19.5/kded/secretagent.cpp
Examining data/plasma-nm-5.19.5/kded/pindialog.h
Examining data/plasma-nm-5.19.5/kded/monitor.cpp
Examining data/plasma-nm-5.19.5/kded/secretagent.h
Examining data/plasma-nm-5.19.5/kded/notification.h
Examining data/plasma-nm-5.19.5/kded/portalmonitor.cpp
Examining data/plasma-nm-5.19.5/kded/bluetoothmonitor.h
Examining data/plasma-nm-5.19.5/kded/modemmonitor.cpp
Examining data/plasma-nm-5.19.5/kded/modemmonitor.h
Examining data/plasma-nm-5.19.5/kded/bluetoothmonitor.cpp
Examining data/plasma-nm-5.19.5/kded/notification.cpp
Examining data/plasma-nm-5.19.5/kded/monitor.h
Examining data/plasma-nm-5.19.5/kded/pindialog.cpp
Examining data/plasma-nm-5.19.5/kded/service.h
Examining data/plasma-nm-5.19.5/kded/portalmonitor.h
Examining data/plasma-nm-5.19.5/kded/service.cpp
Examining data/plasma-nm-5.19.5/vpn/strongswan/strongswan.h
Examining data/plasma-nm-5.19.5/vpn/strongswan/strongswanwidget.cpp
Examining data/plasma-nm-5.19.5/vpn/strongswan/strongswanwidget.h
Examining data/plasma-nm-5.19.5/vpn/strongswan/nm-strongswan-service.h
Examining data/plasma-nm-5.19.5/vpn/strongswan/strongswanauth.h
Examining data/plasma-nm-5.19.5/vpn/strongswan/strongswan.cpp
Examining data/plasma-nm-5.19.5/vpn/strongswan/strongswanauth.cpp
Examining data/plasma-nm-5.19.5/vpn/pptp/pptpauth.h
Examining data/plasma-nm-5.19.5/vpn/pptp/pptp.cpp
Examining data/plasma-nm-5.19.5/vpn/pptp/pptp.h
Examining data/plasma-nm-5.19.5/vpn/pptp/pptpwidget.cpp
Examining data/plasma-nm-5.19.5/vpn/pptp/pptpwidget.h
Examining data/plasma-nm-5.19.5/vpn/pptp/nm-pptp-service.h
Examining data/plasma-nm-5.19.5/vpn/pptp/pptpauth.cpp
Examining data/plasma-nm-5.19.5/vpn/openconnect/openconnectauthworkerthread.h
Examining data/plasma-nm-5.19.5/vpn/openconnect/openconnectwidget.cpp
Examining data/plasma-nm-5.19.5/vpn/openconnect/nm-openconnect-service.h
Examining data/plasma-nm-5.19.5/vpn/openconnect/openconnectauthworkerthread.cpp
Examining data/plasma-nm-5.19.5/vpn/openconnect/openconnectui.h
Examining data/plasma-nm-5.19.5/vpn/openconnect/openconnectui.cpp
Examining data/plasma-nm-5.19.5/vpn/openconnect/openconnectauth.h
Examining data/plasma-nm-5.19.5/vpn/openconnect/openconnectauth.cpp
Examining data/plasma-nm-5.19.5/vpn/openconnect/openconnectwidget.h
Examining data/plasma-nm-5.19.5/vpn/iodine/iodinewidget.cpp
Examining data/plasma-nm-5.19.5/vpn/iodine/iodineauth.h
Examining data/plasma-nm-5.19.5/vpn/iodine/iodineauth.cpp
Examining data/plasma-nm-5.19.5/vpn/iodine/iodinewidget.h
Examining data/plasma-nm-5.19.5/vpn/iodine/iodine.h
Examining data/plasma-nm-5.19.5/vpn/iodine/nm-iodine-service.h
Examining data/plasma-nm-5.19.5/vpn/iodine/iodine.cpp
Examining data/plasma-nm-5.19.5/vpn/fortisslvpn/fortisslvpnauth.h
Examining data/plasma-nm-5.19.5/vpn/fortisslvpn/nm-fortisslvpn-service.h
Examining data/plasma-nm-5.19.5/vpn/fortisslvpn/fortisslvpnwidget.cpp
Examining data/plasma-nm-5.19.5/vpn/fortisslvpn/fortisslvpn.h
Examining data/plasma-nm-5.19.5/vpn/fortisslvpn/fortisslvpnwidget.h
Examining data/plasma-nm-5.19.5/vpn/fortisslvpn/fortisslvpnauth.cpp
Examining data/plasma-nm-5.19.5/vpn/fortisslvpn/fortisslvpn.cpp
Examining data/plasma-nm-5.19.5/vpn/vpnc/vpnc.h
Examining data/plasma-nm-5.19.5/vpn/vpnc/vpncauth.cpp
Examining data/plasma-nm-5.19.5/vpn/vpnc/vpncadvancedwidget.h
Examining data/plasma-nm-5.19.5/vpn/vpnc/vpncwidget.cpp
Examining data/plasma-nm-5.19.5/vpn/vpnc/vpncauth.h
Examining data/plasma-nm-5.19.5/vpn/vpnc/nm-vpnc-service.h
Examining data/plasma-nm-5.19.5/vpn/vpnc/vpncadvancedwidget.cpp
Examining data/plasma-nm-5.19.5/vpn/vpnc/vpnc.cpp
Examining data/plasma-nm-5.19.5/vpn/vpnc/vpncwidget.h
Examining data/plasma-nm-5.19.5/vpn/openswan/nm-openswan-service.h
Examining data/plasma-nm-5.19.5/vpn/openswan/openswan.h
Examining data/plasma-nm-5.19.5/vpn/openswan/openswanauth.h
Examining data/plasma-nm-5.19.5/vpn/openswan/openswanauth.cpp
Examining data/plasma-nm-5.19.5/vpn/openswan/openswan.cpp
Examining data/plasma-nm-5.19.5/vpn/openswan/openswanwidget.cpp
Examining data/plasma-nm-5.19.5/vpn/openswan/openswanwidget.h
Examining data/plasma-nm-5.19.5/vpn/openvpn/openvpn.cpp
Examining data/plasma-nm-5.19.5/vpn/openvpn/openvpnwidget.h
Examining data/plasma-nm-5.19.5/vpn/openvpn/openvpnauth.h
Examining data/plasma-nm-5.19.5/vpn/openvpn/openvpnadvancedwidget.cpp
Examining data/plasma-nm-5.19.5/vpn/openvpn/nm-openvpn-service.h
Examining data/plasma-nm-5.19.5/vpn/openvpn/openvpnwidget.cpp
Examining data/plasma-nm-5.19.5/vpn/openvpn/openvpnadvancedwidget.h
Examining data/plasma-nm-5.19.5/vpn/openvpn/openvpnauth.cpp
Examining data/plasma-nm-5.19.5/vpn/openvpn/openvpn.h
Examining data/plasma-nm-5.19.5/vpn/sstp/sstpauth.cpp
Examining data/plasma-nm-5.19.5/vpn/sstp/sstpauth.h
Examining data/plasma-nm-5.19.5/vpn/sstp/sstp.h
Examining data/plasma-nm-5.19.5/vpn/sstp/sstp.cpp
Examining data/plasma-nm-5.19.5/vpn/sstp/sstpwidget.h
Examining data/plasma-nm-5.19.5/vpn/sstp/nm-sstp-service.h
Examining data/plasma-nm-5.19.5/vpn/sstp/sstpwidget.cpp
Examining data/plasma-nm-5.19.5/vpn/l2tp/l2tp.cpp
Examining data/plasma-nm-5.19.5/vpn/l2tp/l2tp.h
Examining data/plasma-nm-5.19.5/vpn/l2tp/l2tpwidget.h
Examining data/plasma-nm-5.19.5/vpn/l2tp/l2tpauth.cpp
Examining data/plasma-nm-5.19.5/vpn/l2tp/l2tpauth.h
Examining data/plasma-nm-5.19.5/vpn/l2tp/l2tpwidget.cpp
Examining data/plasma-nm-5.19.5/vpn/l2tp/l2tppppwidget.cpp
Examining data/plasma-nm-5.19.5/vpn/l2tp/l2tpipsecwidget.h
Examining data/plasma-nm-5.19.5/vpn/l2tp/l2tppppwidget.h
Examining data/plasma-nm-5.19.5/vpn/l2tp/nm-l2tp-service.h
Examining data/plasma-nm-5.19.5/vpn/l2tp/l2tpipsecwidget.cpp
Examining data/plasma-nm-5.19.5/vpn/ssh/sshwidget.cpp
Examining data/plasma-nm-5.19.5/vpn/ssh/sshauth.cpp
Examining data/plasma-nm-5.19.5/vpn/ssh/nm-ssh-service.h
Examining data/plasma-nm-5.19.5/vpn/ssh/sshauth.h
Examining data/plasma-nm-5.19.5/vpn/ssh/ssh.cpp
Examining data/plasma-nm-5.19.5/vpn/ssh/sshwidget.h
Examining data/plasma-nm-5.19.5/vpn/ssh/ssh.h
Examining data/plasma-nm-5.19.5/libs/configuration.h
Examining data/plasma-nm-5.19.5/libs/configuration.cpp
Examining data/plasma-nm-5.19.5/libs/uiutils.h
Examining data/plasma-nm-5.19.5/libs/debug.cpp
Examining data/plasma-nm-5.19.5/libs/declarative/enabledconnections.cpp
Examining data/plasma-nm-5.19.5/libs/declarative/availabledevices.cpp
Examining data/plasma-nm-5.19.5/libs/declarative/enums.h
Examining data/plasma-nm-5.19.5/libs/declarative/qmlplugins.h
Examining data/plasma-nm-5.19.5/libs/declarative/qmlplugins.cpp
Examining data/plasma-nm-5.19.5/libs/declarative/connectionicon.cpp
Examining data/plasma-nm-5.19.5/libs/declarative/enabledconnections.h
Examining data/plasma-nm-5.19.5/libs/declarative/enums.cpp
Examining data/plasma-nm-5.19.5/libs/declarative/networkstatus.cpp
Examining data/plasma-nm-5.19.5/libs/declarative/connectionicon.h
Examining data/plasma-nm-5.19.5/libs/declarative/availabledevices.h
Examining data/plasma-nm-5.19.5/libs/declarative/networkstatus.h
Examining data/plasma-nm-5.19.5/libs/debug.h
Examining data/plasma-nm-5.19.5/libs/uiutils.cpp
Examining data/plasma-nm-5.19.5/libs/handler.cpp
Examining data/plasma-nm-5.19.5/libs/editor/wireguardkeyvalidator.cpp
Examining data/plasma-nm-5.19.5/libs/editor/simpleiplistvalidator.h
Examining data/plasma-nm-5.19.5/libs/editor/mobileproviders.cpp
Examining data/plasma-nm-5.19.5/libs/editor/widgets/delegate.cpp
Examining data/plasma-nm-5.19.5/libs/editor/widgets/ipv4routeswidget.h
Examining data/plasma-nm-5.19.5/libs/editor/widgets/settingwidget.cpp
Examining data/plasma-nm-5.19.5/libs/editor/widgets/ipv6routeswidget.h
Examining data/plasma-nm-5.19.5/libs/editor/widgets/advancedpermissionswidget.cpp
Examining data/plasma-nm-5.19.5/libs/editor/widgets/bssidcombobox.cpp
Examining data/plasma-nm-5.19.5/libs/editor/widgets/passwordfield.h
Examining data/plasma-nm-5.19.5/libs/editor/widgets/hwaddrcombobox.cpp
Examining data/plasma-nm-5.19.5/libs/editor/widgets/advancedpermissionswidget.h
Examining data/plasma-nm-5.19.5/libs/editor/widgets/intdelegate.cpp
Examining data/plasma-nm-5.19.5/libs/editor/widgets/ipv6routeswidget.cpp
Examining data/plasma-nm-5.19.5/libs/editor/widgets/ipv4delegate.h
Examining data/plasma-nm-5.19.5/libs/editor/widgets/mobileconnectionwizard.cpp
Examining data/plasma-nm-5.19.5/libs/editor/widgets/mobileconnectionwizard.h
Examining data/plasma-nm-5.19.5/libs/editor/widgets/ipv4routeswidget.cpp
Examining data/plasma-nm-5.19.5/libs/editor/widgets/editlistdialog.h
Examining data/plasma-nm-5.19.5/libs/editor/widgets/editlistdialog.cpp
Examining data/plasma-nm-5.19.5/libs/editor/widgets/delegate.h
Examining data/plasma-nm-5.19.5/libs/editor/widgets/hwaddrcombobox.h
Examining data/plasma-nm-5.19.5/libs/editor/widgets/intdelegate.h
Examining data/plasma-nm-5.19.5/libs/editor/widgets/passwordfield.cpp
Examining data/plasma-nm-5.19.5/libs/editor/widgets/ipv6delegate.h
Examining data/plasma-nm-5.19.5/libs/editor/widgets/bssidcombobox.h
Examining data/plasma-nm-5.19.5/libs/editor/widgets/ssidcombobox.cpp
Examining data/plasma-nm-5.19.5/libs/editor/widgets/ssidcombobox.h
Examining data/plasma-nm-5.19.5/libs/editor/widgets/ipv6delegate.cpp
Examining data/plasma-nm-5.19.5/libs/editor/widgets/ipv4delegate.cpp
Examining data/plasma-nm-5.19.5/libs/editor/widgets/settingwidget.h
Examining data/plasma-nm-5.19.5/libs/editor/simpleipv4addressvalidator.h
Examining data/plasma-nm-5.19.5/libs/editor/wireguardkeyvalidator.h
Examining data/plasma-nm-5.19.5/libs/editor/connectioneditorbase.cpp
Examining data/plasma-nm-5.19.5/libs/editor/settings/wireguardpeerwidget.h
Examining data/plasma-nm-5.19.5/libs/editor/settings/ipv6widget.h
Examining data/plasma-nm-5.19.5/libs/editor/settings/pppoewidget.cpp
Examining data/plasma-nm-5.19.5/libs/editor/settings/ipv6widget.cpp
Examining data/plasma-nm-5.19.5/libs/editor/settings/bondwidget.cpp
Examining data/plasma-nm-5.19.5/libs/editor/settings/vlanwidget.h
Examining data/plasma-nm-5.19.5/libs/editor/settings/btwidget.h
Examining data/plasma-nm-5.19.5/libs/editor/settings/cdmawidget.cpp
Examining data/plasma-nm-5.19.5/libs/editor/settings/gsmwidget.cpp
Examining data/plasma-nm-5.19.5/libs/editor/settings/wireguardtabwidget.h
Examining data/plasma-nm-5.19.5/libs/editor/settings/wiredsecurity.cpp
Examining data/plasma-nm-5.19.5/libs/editor/settings/teamwidget.h
Examining data/plasma-nm-5.19.5/libs/editor/settings/teamwidget.cpp
Examining data/plasma-nm-5.19.5/libs/editor/settings/btwidget.cpp
Examining data/plasma-nm-5.19.5/libs/editor/settings/bridgewidget.h
Examining data/plasma-nm-5.19.5/libs/editor/settings/pppwidget.h
Examining data/plasma-nm-5.19.5/libs/editor/settings/bondwidget.h
Examining data/plasma-nm-5.19.5/libs/editor/settings/pppwidget.cpp
Examining data/plasma-nm-5.19.5/libs/editor/settings/security802-1x.h
Examining data/plasma-nm-5.19.5/libs/editor/settings/connectionwidget.h
Examining data/plasma-nm-5.19.5/libs/editor/settings/wificonnectionwidget.h
Examining data/plasma-nm-5.19.5/libs/editor/settings/vlanwidget.cpp
Examining data/plasma-nm-5.19.5/libs/editor/settings/wireguardpeerwidget.cpp
Examining data/plasma-nm-5.19.5/libs/editor/settings/wifisecurity.cpp
Examining data/plasma-nm-5.19.5/libs/editor/settings/wiredsecurity.h
Examining data/plasma-nm-5.19.5/libs/editor/settings/infinibandwidget.cpp
Examining data/plasma-nm-5.19.5/libs/editor/settings/wificonnectionwidget.cpp
Examining data/plasma-nm-5.19.5/libs/editor/settings/ipv4widget.h
Examining data/plasma-nm-5.19.5/libs/editor/settings/ipv4widget.cpp
Examining data/plasma-nm-5.19.5/libs/editor/settings/gsmwidget.h
Examining data/plasma-nm-5.19.5/libs/editor/settings/wireguardinterfacewidget.h
Examining data/plasma-nm-5.19.5/libs/editor/settings/bridgewidget.cpp
Examining data/plasma-nm-5.19.5/libs/editor/settings/security802-1x.cpp
Examining data/plasma-nm-5.19.5/libs/editor/settings/infinibandwidget.h
Examining data/plasma-nm-5.19.5/libs/editor/settings/connectionwidget.cpp
Examining data/plasma-nm-5.19.5/libs/editor/settings/cdmawidget.h
Examining data/plasma-nm-5.19.5/libs/editor/settings/wiredconnectionwidget.h
Examining data/plasma-nm-5.19.5/libs/editor/settings/pppoewidget.h
Examining data/plasma-nm-5.19.5/libs/editor/settings/wireguardinterfacewidget.cpp
Examining data/plasma-nm-5.19.5/libs/editor/settings/wiredconnectionwidget.cpp
Examining data/plasma-nm-5.19.5/libs/editor/settings/wifisecurity.h
Examining data/plasma-nm-5.19.5/libs/editor/settings/wireguardtabwidget.cpp
Examining data/plasma-nm-5.19.5/libs/editor/connectioneditortabwidget.cpp
Examining data/plasma-nm-5.19.5/libs/editor/vpnuiplugin.h
Examining data/plasma-nm-5.19.5/libs/editor/connectioneditorbase.h
Examining data/plasma-nm-5.19.5/libs/editor/simpleipv6addressvalidator.h
Examining data/plasma-nm-5.19.5/libs/editor/vpnuiplugin.cpp
Examining data/plasma-nm-5.19.5/libs/editor/connectioneditortabwidget.h
Examining data/plasma-nm-5.19.5/libs/editor/listvalidator.cpp
Examining data/plasma-nm-5.19.5/libs/editor/mobileproviders.h
Examining data/plasma-nm-5.19.5/libs/editor/simpleiplistvalidator.cpp
Examining data/plasma-nm-5.19.5/libs/editor/listvalidator.h
Examining data/plasma-nm-5.19.5/libs/editor/connectioneditordialog.cpp
Examining data/plasma-nm-5.19.5/libs/editor/simpleipv4addressvalidator.cpp
Examining data/plasma-nm-5.19.5/libs/editor/connectioneditordialog.h
Examining data/plasma-nm-5.19.5/libs/editor/simpleipv6addressvalidator.cpp
Examining data/plasma-nm-5.19.5/libs/handler.h
Examining data/plasma-nm-5.19.5/libs/models/appletproxymodel.h
Examining data/plasma-nm-5.19.5/libs/models/editorproxymodel.h
Examining data/plasma-nm-5.19.5/libs/models/networkmodelitem.h
Examining data/plasma-nm-5.19.5/libs/models/mobileproxymodel.cpp
Examining data/plasma-nm-5.19.5/libs/models/mobileproxymodel.h
Examining data/plasma-nm-5.19.5/libs/models/networkmodel.h
Examining data/plasma-nm-5.19.5/libs/models/networkitemslist.cpp
Examining data/plasma-nm-5.19.5/libs/models/appletproxymodel.cpp
Examining data/plasma-nm-5.19.5/libs/models/creatableconnectionsmodel.cpp
Examining data/plasma-nm-5.19.5/libs/models/kcmidentitymodel.h
Examining data/plasma-nm-5.19.5/libs/models/kcmidentitymodel.cpp
Examining data/plasma-nm-5.19.5/libs/models/creatableconnectionsmodel.h
Examining data/plasma-nm-5.19.5/libs/models/networkmodel.cpp
Examining data/plasma-nm-5.19.5/libs/models/editorproxymodel.cpp
Examining data/plasma-nm-5.19.5/libs/models/networkmodelitem.cpp
Examining data/plasma-nm-5.19.5/libs/models/networkitemslist.h
Examining data/plasma-nm-5.19.5/tests/simpleiplisttest.cpp
Examining data/plasma-nm-5.19.5/tests/simpleipv6test.cpp
Examining data/plasma-nm-5.19.5/tests/simpleipv4test.cpp
Examining data/plasma-nm-5.19.5/kcm/kcm.cpp
Examining data/plasma-nm-5.19.5/kcm/kcm.h
Examining data/plasma-nm-5.19.5/mobile/hotspot/hotspotsettings.cpp
Examining data/plasma-nm-5.19.5/mobile/hotspot/hotspotsettings.h
Examining data/plasma-nm-5.19.5/mobile/wifi/wifisettings.cpp
Examining data/plasma-nm-5.19.5/mobile/wifi/wifisettings.h
Examining data/plasma-nm-5.19.5/mobile/broadband/mobilebroadbandsettings.h
Examining data/plasma-nm-5.19.5/mobile/broadband/mobilebroadbandsettings.cpp
FINAL RESULTS:
data/plasma-nm-5.19.5/libs/editor/settings/wificonnectionwidget.cpp:131:18: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
mac[i] = random;
data/plasma-nm-5.19.5/libs/editor/settings/wiredconnectionwidget.cpp:158:18: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
mac[i] = random;
data/plasma-nm-5.19.5/libs/editor/mobileproviders.cpp:56:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (file2.open(QIODevice::ReadOnly)) {
data/plasma-nm-5.19.5/libs/editor/settings/teamwidget.cpp:241:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (file.open(QIODevice::ReadOnly | QIODevice::Text)) {
data/plasma-nm-5.19.5/libs/editor/settings/wireguardinterfacewidget.cpp:399:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!impFile.open(QFile::ReadOnly|QFile::Text)) {
data/plasma-nm-5.19.5/vpn/openconnect/openconnectauth.cpp:393:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fingerprint[41];
data/plasma-nm-5.19.5/vpn/openconnect/openconnectauthworkerthread.cpp:175:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fingerprint[41];
data/plasma-nm-5.19.5/vpn/openvpn/openvpn.cpp:139:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!inFile.open(QFile::ReadOnly)) {
data/plasma-nm-5.19.5/vpn/openvpn/openvpn.cpp:188:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!impFile.open(QFile::ReadOnly|QFile::Text)) {
data/plasma-nm-5.19.5/vpn/openvpn/openvpn.cpp:326:35: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (httpProxyFile.open(QFile::ReadOnly|QFile::Text)) {
data/plasma-nm-5.19.5/vpn/openvpn/openvpn.cpp:677:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!outFile.open(QFile::WriteOnly | QFile::Text)) {
data/plasma-nm-5.19.5/vpn/openvpn/openvpn.cpp:716:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (! expFile.open(QIODevice::WriteOnly | QIODevice::Text) ) {
data/plasma-nm-5.19.5/vpn/openvpn/openvpn.cpp:839:30: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (authFile.open(QFile::WriteOnly | QFile::Text)) {
data/plasma-nm-5.19.5/vpn/openconnect/openconnectauth.cpp:239:65: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
openconnect_set_xmlsha1 (d->vpninfo, (char *)sha1_text, strlen(sha1_text)+1);
data/plasma-nm-5.19.5/vpn/openconnect/openconnectauth.cpp:343:12: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while (read(d->cancelPipes[0], &buf, 1) == 1) {
ANALYSIS SUMMARY:
Hits = 15
Lines analyzed = 35221 in approximately 1.01 seconds (34901 lines/second)
Physical Source Lines of Code (SLOC) = 24576
Hits@level = [0] 0 [1] 2 [2] 11 [3] 2 [4] 0 [5] 0
Hits@level+ = [0+] 15 [1+] 15 [2+] 13 [3+] 2 [4+] 0 [5+] 0
Hits/KSLOC@level+ = [0+] 0.610352 [1+] 0.610352 [2+] 0.528971 [3+] 0.0813802 [4+] 0 [5+] 0
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.