Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/radare2-4.3.1+dfsg/binr/blob/main.c
Examining data/radare2-4.3.1+dfsg/binr/preload/alloc.c
Examining data/radare2-4.3.1+dfsg/binr/preload/demo.c
Examining data/radare2-4.3.1+dfsg/binr/preload/libr2.c
Examining data/radare2-4.3.1+dfsg/binr/r2agent/r2agent.c
Examining data/radare2-4.3.1+dfsg/binr/r2bb/r2bb.c
Examining data/radare2-4.3.1+dfsg/binr/rabin2/rabin2.c
Examining data/radare2-4.3.1+dfsg/binr/radare2/radare2.c
Examining data/radare2-4.3.1+dfsg/binr/radiff2/radiff2.c
Examining data/radare2-4.3.1+dfsg/binr/rafind2/rafind2.c
Examining data/radare2-4.3.1+dfsg/binr/ragg2/ragg2.c
Examining data/radare2-4.3.1+dfsg/binr/rahash2/rahash2.c
Examining data/radare2-4.3.1+dfsg/binr/rarun2/rarun2.c
Examining data/radare2-4.3.1+dfsg/binr/rasign2/rasign2.c
Examining data/radare2-4.3.1+dfsg/binr/rasm2/rasm2.c
Examining data/radare2-4.3.1+dfsg/binr/rax2/rax2.c
Examining data/radare2-4.3.1+dfsg/doc/indent-example.c
Examining data/radare2-4.3.1+dfsg/libr/anal/anal.c
Examining data/radare2-4.3.1+dfsg/libr/anal/arch/gb/gb.h
Examining data/radare2-4.3.1+dfsg/libr/anal/arch/gb/gb_makros.h
Examining data/radare2-4.3.1+dfsg/libr/anal/arch/gb/meta_gb_cmt.c
Examining data/radare2-4.3.1+dfsg/libr/anal/arch/hexagon/hexagon_anal.c
Examining data/radare2-4.3.1+dfsg/libr/anal/arch/hexagon/hexagon_anal.h
Examining data/radare2-4.3.1+dfsg/libr/anal/bb.c
Examining data/radare2-4.3.1+dfsg/libr/anal/block.c
Examining data/radare2-4.3.1+dfsg/libr/anal/cc.c
Examining data/radare2-4.3.1+dfsg/libr/anal/class.c
Examining data/radare2-4.3.1+dfsg/libr/anal/cond.c
Examining data/radare2-4.3.1+dfsg/libr/anal/cycles.c
Examining data/radare2-4.3.1+dfsg/libr/anal/data.c
Examining data/radare2-4.3.1+dfsg/libr/anal/diff.c
Examining data/radare2-4.3.1+dfsg/libr/anal/esil.c
Examining data/radare2-4.3.1+dfsg/libr/anal/esil2reil.c
Examining data/radare2-4.3.1+dfsg/libr/anal/esil_cfg.c
Examining data/radare2-4.3.1+dfsg/libr/anal/esil_dfg.c
Examining data/radare2-4.3.1+dfsg/libr/anal/esil_interrupt.c
Examining data/radare2-4.3.1+dfsg/libr/anal/esil_sources.c
Examining data/radare2-4.3.1+dfsg/libr/anal/esil_stats.c
Examining data/radare2-4.3.1+dfsg/libr/anal/esil_trace.c
Examining data/radare2-4.3.1+dfsg/libr/anal/fcn.c
Examining data/radare2-4.3.1+dfsg/libr/anal/flirt.c
Examining data/radare2-4.3.1+dfsg/libr/anal/function.c
Examining data/radare2-4.3.1+dfsg/libr/anal/hint.c
Examining data/radare2-4.3.1+dfsg/libr/anal/jmptbl.c
Examining data/radare2-4.3.1+dfsg/libr/anal/labels.c
Examining data/radare2-4.3.1+dfsg/libr/anal/meta.c
Examining data/radare2-4.3.1+dfsg/libr/anal/op.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_6502.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_6502_cs.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_8051.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_amd29k.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_arc.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_arm_cs.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_arm_gnu.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_avr.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_bf.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_chip8.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_cr16.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_cris.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_dalvik.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_ebc.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_gb.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_h8300.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_hexagon.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_i4004.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_i8080.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_java.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_m680x_cs.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_m68k_cs.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_malbolge.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_mcore.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_mips_cs.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_mips_gnu.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_msp430.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_nios2.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_null.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_or1k.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_pic.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_ppc_cs.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_ppc_gnu.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_propeller.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_riscv.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_riscv_cs.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_rsp.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_sh.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_snes.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_sparc_cs.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_sparc_gnu.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_sysz.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_tms320.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_tms320_c55x_plus.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_tms320c64x.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_v810.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_v850.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_vax.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_wasm.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_ws.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_x86_cs.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_xap.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_xcore_cs.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_xtensa.c
Examining data/radare2-4.3.1+dfsg/libr/anal/p/anal_z80.c
Examining data/radare2-4.3.1+dfsg/libr/anal/pin.c
Examining data/radare2-4.3.1+dfsg/libr/anal/reflines.c
Examining data/radare2-4.3.1+dfsg/libr/anal/rtti.c
Examining data/radare2-4.3.1+dfsg/libr/anal/rtti_itanium.c
Examining data/radare2-4.3.1+dfsg/libr/anal/rtti_msvc.c
Examining data/radare2-4.3.1+dfsg/libr/anal/session.c
Examining data/radare2-4.3.1+dfsg/libr/anal/sign.c
Examining data/radare2-4.3.1+dfsg/libr/anal/switch.c
Examining data/radare2-4.3.1+dfsg/libr/anal/type.c
Examining data/radare2-4.3.1+dfsg/libr/anal/value.c
Examining data/radare2-4.3.1+dfsg/libr/anal/var.c
Examining data/radare2-4.3.1+dfsg/libr/anal/vtable.c
Examining data/radare2-4.3.1+dfsg/libr/anal/xrefs.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/6502/6502dis.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/8051/8051_ass.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/8051/8051_ass.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/8051/8051_disas.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/8051/8051_ops.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/amd29k/amd29k.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/amd29k/amd29k.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/amd29k/amd29k_internal.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-dis.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-dis.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-ext.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-ext.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-opc-cgen.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-opc.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-opc.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-dis-2.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-dis.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-dis.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-opc-2.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-opc.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-opc.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-tbl.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/sysdep.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass16_const.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass64.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass64_const.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/arm/asm-arm.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/arm/gnu/arm-dis.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/arm/gnu/elfarm.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/arm/gnu/floatformat.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/arm/gnu/floatformat.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/arm/gnu/opcode-arm.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/arm/winedbg/be_arm.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/arm/winedbg/be_arm.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/avr/avr_disasm.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/avr/avr_disasm.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/avr/avr_instructionset.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/avr/disasm.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/avr/errorcodes.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/avr/format.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/avr/format.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/cr16/cr16_disas.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/cr16/cr16_disas.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/cris/gnu/cris-dis.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/cris/gnu/cris-opc.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/dalvik/opcode.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/dcpu16/asm.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/dcpu16/dcpu16.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/dcpu16/dis.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/dcpu16/main.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/ebc/ebc_disas.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/ebc/ebc_disas.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/gb/gb_op_table.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/gb/gbasm.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/gb/gbdis.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/h8300/h8300_disas.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/h8300/h8300_disas.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-dis.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/opcode/hexagon.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/opcode/hexagon_asm_maps.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/opcode/hexagon_iset_v2.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/opcode/hexagon_iset_v3.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/opcode/hexagon_iset_v4.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/opcode/hexagon_iset_v5.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/safe-ctype.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_insn.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/hppa/gnu/hppa-dis.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/i4004/i4004dis.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/i8080/i8080dis.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/i8080/i8080dis.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/include/ansidecl.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/include/bfdlink.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/include/disas-asm.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf-bfd.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/common.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/internal.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/reloc-macros.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/xtensa.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/include/libhppa.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/include/libiberty.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/include/mybfd.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/include/opcode/cris.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/include/opcode/hexagon.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/include/opcode/hppa.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/include/opcode/lanai.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/include/opcode/mips.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/include/opcode/nios2.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/include/opcode/ppc.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/include/opcode/sparc.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/include/opcode/tricore.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/include/opintl.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/include/safe-ctype.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/include/symcat.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/include/sysdep.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/include/wine-arm.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/include/xtensa-isa-internal.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/include/xtensa-isa.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/lanai/gnu/lanai-dis.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/lanai/gnu/lanai-opc.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/lh5801/lh5801.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/lh5801/lh5801.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/lm32/lm32_isa.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/mcore/mcore.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/mcore/mcore.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/mcs96/mcs96.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/mips/gnu/mips-dis.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/mips/gnu/mips-opc.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/mips/gnu/mips16-opc.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/mips/mipsasm.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/msp430/msp430_disas.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/msp430/msp430_disas.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/nios/gnu/nios2-dis.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/nios/gnu/nios2-opc.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/or1k/or1k_disas.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/or1k/or1k_disas.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/pic/pic_baseline.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/pic/pic_baseline.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/pic/pic_midrange.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/pic/pic_midrange.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/pic/pic_pic18.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/pic/pic_pic18.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/ppc/gnu/ppc-dis.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/ppc/gnu/ppc-opc.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/ppc/libps/libps.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/ppc/libps/libps.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/ppc/libps/libps_internal.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/ppc/libvle/vle.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/ppc/libvle/vle.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/ppc/libvle/vle_internal.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/propeller/propeller_disas.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/propeller/propeller_disas.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv-opc.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv-opc.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/rsp/rsp_idec.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/rsp/rsp_idec.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/sh/gnu/sh-dis.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/sh/gnu/sh-opc.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/snes/snes_op_table.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/snes/snesdis.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/sparc/gnu/sparc-dis.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/sparc/gnu/sparc-opc.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/spc700/spc700_opcode_table.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/spc700/spc700dis.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x/table.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/c55plus.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/c55plus.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/c55plus_decode.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/hashtable.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/hashtable.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/hashvector.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/hashvector.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/ins.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/ins.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/utils.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/utils.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/tms320_dasm.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/tms320_dasm.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/tms320_p.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/tricore/gnu/cpu-tricore.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/tricore/gnu/tricore-dis.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/tricore/gnu/tricore-opc.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/v810/v810_disas.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/v810/v810_disas.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/v850/v850_disas.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/v850/v850_disas.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/vax/vax-dis.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/vax/vax.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/wasm/wasm.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/wasm/wasm.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/whitespace/wsdis.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/xap/dis.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/xap/dis.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/elf32-xtensa.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-dis.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-modules.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/z80/expressions.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/z80/z80.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/z80/z80_tab.h
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/z80/z80asm.c
Examining data/radare2-4.3.1+dfsg/libr/asm/arch/z80/z80asm.h
Examining data/radare2-4.3.1+dfsg/libr/asm/asm.c
Examining data/radare2-4.3.1+dfsg/libr/asm/code.c
Examining data/radare2-4.3.1+dfsg/libr/asm/op.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_6502.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_6502_cs.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_8051.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_amd29k.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_arc.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_arm_as.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_arm_cs.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_arm_gnu.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_arm_winedbg.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_avr.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_bf.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_chip8.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_cr16.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_cris_gnu.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_dalvik.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_dcpu16.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_ebc.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_gas.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_gb.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_h8300.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_hexagon.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_hexagon_gnu.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_hppa_gnu.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_i4004.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_i8080.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_java.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_lanai_gnu.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_lh5801.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_lm32.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_m680x_cs.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_m68k_cs.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_malbolge.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_mcore.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_mcs96.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_mips_cs.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_mips_gnu.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_msp430.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_nios2.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_null.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_or1k.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_pic.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_ppc_cs.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_ppc_gnu.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_propeller.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_riscv.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_riscv_cs.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_rsp.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_sh.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_snes.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_snes.h
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_sparc_cs.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_sparc_gnu.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_spc700.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_sysz.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_tms320.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_tms320c64x.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_tricore.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_v810.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_v850.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_vax.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_wasm.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_ws.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_x86_as.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_x86_cs.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_x86_nasm.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_x86_nz.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_x86_vm.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_xap.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_xcore_cs.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_xtensa.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/asm_z80.c
Examining data/radare2-4.3.1+dfsg/libr/asm/p/cs_mnemonics.c
Examining data/radare2-4.3.1+dfsg/libr/bin/bfile.c
Examining data/radare2-4.3.1+dfsg/libr/bin/bin.c
Examining data/radare2-4.3.1+dfsg/libr/bin/bin_ldr.c
Examining data/radare2-4.3.1+dfsg/libr/bin/bin_write.c
Examining data/radare2-4.3.1+dfsg/libr/bin/blang.c
Examining data/radare2-4.3.1+dfsg/libr/bin/bobj.c
Examining data/radare2-4.3.1+dfsg/libr/bin/d/cdex.h
Examining data/radare2-4.3.1+dfsg/libr/bin/d/dex.h
Examining data/radare2-4.3.1+dfsg/libr/bin/d/jni.h
Examining data/radare2-4.3.1+dfsg/libr/bin/dbginfo.c
Examining data/radare2-4.3.1+dfsg/libr/bin/demangle.c
Examining data/radare2-4.3.1+dfsg/libr/bin/dwarf.c
Examining data/radare2-4.3.1+dfsg/libr/bin/filter.c
Examining data/radare2-4.3.1+dfsg/libr/bin/format/bflt/bflt.c
Examining data/radare2-4.3.1+dfsg/libr/bin/format/bflt/bflt.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/coff/coff.c
Examining data/radare2-4.3.1+dfsg/libr/bin/format/coff/coff.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/coff/coff_specs.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/dex/dex.c
Examining data/radare2-4.3.1+dfsg/libr/bin/format/dex/dex.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/dmp/dmp64.c
Examining data/radare2-4.3.1+dfsg/libr/bin/format/dmp/dmp64.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/dmp/dmp_specs.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c
Examining data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf64.c
Examining data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf64.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf64_write.c
Examining data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf_specs.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf_write.c
Examining data/radare2-4.3.1+dfsg/libr/bin/format/elf/glibc_elf.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/le/le.c
Examining data/radare2-4.3.1+dfsg/libr/bin/format/le/le.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/le/le_specs.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/mach0/dyldcache.c
Examining data/radare2-4.3.1+dfsg/libr/bin/format/mach0/dyldcache.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/mach0/fatmach0.c
Examining data/radare2-4.3.1+dfsg/libr/bin/format/mach0/fatmach0.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/mach0/mach0.c
Examining data/radare2-4.3.1+dfsg/libr/bin/format/mach0/mach0.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/mach0/mach064.c
Examining data/radare2-4.3.1+dfsg/libr/bin/format/mach0/mach064.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/mach0/mach064_is_kernelcache.c
Examining data/radare2-4.3.1+dfsg/libr/bin/format/mach0/mach0_defines.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/mach0/mach0_specs.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/mdmp/mdmp.c
Examining data/radare2-4.3.1+dfsg/libr/bin/format/mdmp/mdmp.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/mdmp/mdmp_pe.c
Examining data/radare2-4.3.1+dfsg/libr/bin/format/mdmp/mdmp_pe.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/mdmp/mdmp_pe64.c
Examining data/radare2-4.3.1+dfsg/libr/bin/format/mdmp/mdmp_pe64.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/mdmp/mdmp_specs.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/mdmp/mdmp_windefs.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/mz/mz.c
Examining data/radare2-4.3.1+dfsg/libr/bin/format/mz/mz.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/mz/mz_specs.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/ne/ne.c
Examining data/radare2-4.3.1+dfsg/libr/bin/format/ne/ne.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/ne/ne_specs.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/nes/nes_specs.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/nin/gba.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/nin/n3ds.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/nin/nds.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/nin/nin.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/nxo/nxo.c
Examining data/radare2-4.3.1+dfsg/libr/bin/format/nxo/nxo.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/objc/mach064_classes.c
Examining data/radare2-4.3.1+dfsg/libr/bin/format/objc/mach064_classes.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/objc/mach0_classes.c
Examining data/radare2-4.3.1+dfsg/libr/bin/format/objc/mach0_classes.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/omf/omf.c
Examining data/radare2-4.3.1+dfsg/libr/bin/format/omf/omf.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/omf/omf_specs.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/p9/p9bin.c
Examining data/radare2-4.3.1+dfsg/libr/bin/format/p9/p9bin.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/pe/dotnet.c
Examining data/radare2-4.3.1+dfsg/libr/bin/format/pe/dotnet.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.c
Examining data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe64.c
Examining data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe64.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe64_write.c
Examining data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe_specs.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe_write.c
Examining data/radare2-4.3.1+dfsg/libr/bin/format/pe/pemixed.c
Examining data/radare2-4.3.1+dfsg/libr/bin/format/pe/pemixed.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/psxexe/psxexe.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/qnx/qnx.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/qnx/qnx_specs.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/sfc/sfc_specs.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/spc700/spc_specs.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/te/te.c
Examining data/radare2-4.3.1+dfsg/libr/bin/format/te/te.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/te/te_specs.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/vsf/vsf_specs.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/wasm/wasm.c
Examining data/radare2-4.3.1+dfsg/libr/bin/format/wasm/wasm.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/xbe/kernel.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/xbe/xbe.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/xnu/mig_index.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/xnu/r_cf_dict.c
Examining data/radare2-4.3.1+dfsg/libr/bin/format/xnu/r_cf_dict.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/xnu/yxml.c
Examining data/radare2-4.3.1+dfsg/libr/bin/format/xnu/yxml.h
Examining data/radare2-4.3.1+dfsg/libr/bin/format/zimg/zimg.c
Examining data/radare2-4.3.1+dfsg/libr/bin/format/zimg/zimg.h
Examining data/radare2-4.3.1+dfsg/libr/bin/i/private.h
Examining data/radare2-4.3.1+dfsg/libr/bin/mangling/cxx.c
Examining data/radare2-4.3.1+dfsg/libr/bin/mangling/cxx/ansidecl.h
Examining data/radare2-4.3.1+dfsg/libr/bin/mangling/cxx/cp-demangle.c
Examining data/radare2-4.3.1+dfsg/libr/bin/mangling/cxx/cp-demangle.h
Examining data/radare2-4.3.1+dfsg/libr/bin/mangling/cxx/demangle.h
Examining data/radare2-4.3.1+dfsg/libr/bin/mangling/cxx/libiberty.h
Examining data/radare2-4.3.1+dfsg/libr/bin/mangling/demangler.c
Examining data/radare2-4.3.1+dfsg/libr/bin/mangling/demangler.h
Examining data/radare2-4.3.1+dfsg/libr/bin/mangling/demangler_types.h
Examining data/radare2-4.3.1+dfsg/libr/bin/mangling/java.c
Examining data/radare2-4.3.1+dfsg/libr/bin/mangling/microsoft_demangle.c
Examining data/radare2-4.3.1+dfsg/libr/bin/mangling/microsoft_demangle.h
Examining data/radare2-4.3.1+dfsg/libr/bin/mangling/msvc.c
Examining data/radare2-4.3.1+dfsg/libr/bin/mangling/objc.c
Examining data/radare2-4.3.1+dfsg/libr/bin/mangling/rust.c
Examining data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c
Examining data/radare2-4.3.1+dfsg/libr/bin/mangling/swift.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_any.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_art.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_avr.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_bf.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_bflt.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_bios.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_bootimg.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_cgc.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_coff.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_dbginfo_dex.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_dbginfo_elf.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_dbginfo_elf64.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_dex.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_dmp64.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_dol.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_dyldcache.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_elf.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_elf64.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_fs.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_java.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_ldr_linux.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_le.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_mach0.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_mach064.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_mbn.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_mdmp.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_menuet.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_mz.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_ne.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_nes.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_nin3ds.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_ninds.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_ningb.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_ningba.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_nro.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_nso.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_omf.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_p9.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_pe.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_pe64.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_pebble.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_prg.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_psxexe.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_qnx.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_sfc.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_smd.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_sms.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_spc700.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_symbols.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_te.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_vsf.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_wasm.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_write_elf.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_write_elf64.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_write_mach0.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_write_mach064.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_write_pe.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_write_pe64.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_xbe.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_xnu_kernelcache.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_xtr_dyldcache.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_xtr_fatmach0.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_xtr_pemixed.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_xtr_sep64.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_z64.c
Examining data/radare2-4.3.1+dfsg/libr/bin/p/bin_zimg.c
Examining data/radare2-4.3.1+dfsg/libr/bin/pdb/dbi.c
Examining data/radare2-4.3.1+dfsg/libr/bin/pdb/dbi.h
Examining data/radare2-4.3.1+dfsg/libr/bin/pdb/fpo.c
Examining data/radare2-4.3.1+dfsg/libr/bin/pdb/fpo.h
Examining data/radare2-4.3.1+dfsg/libr/bin/pdb/gdata.c
Examining data/radare2-4.3.1+dfsg/libr/bin/pdb/gdata.h
Examining data/radare2-4.3.1+dfsg/libr/bin/pdb/main.c
Examining data/radare2-4.3.1+dfsg/libr/bin/pdb/omap.c
Examining data/radare2-4.3.1+dfsg/libr/bin/pdb/omap.h
Examining data/radare2-4.3.1+dfsg/libr/bin/pdb/pdb.c
Examining data/radare2-4.3.1+dfsg/libr/bin/pdb/pdb_downloader.c
Examining data/radare2-4.3.1+dfsg/libr/bin/pdb/pdb_downloader.h
Examining data/radare2-4.3.1+dfsg/libr/bin/pdb/stream_file.c
Examining data/radare2-4.3.1+dfsg/libr/bin/pdb/stream_file.h
Examining data/radare2-4.3.1+dfsg/libr/bin/pdb/stream_pe.c
Examining data/radare2-4.3.1+dfsg/libr/bin/pdb/stream_pe.h
Examining data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c
Examining data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.h
Examining data/radare2-4.3.1+dfsg/libr/bin/pdb/types.h
Examining data/radare2-4.3.1+dfsg/libr/bp/bp.c
Examining data/radare2-4.3.1+dfsg/libr/bp/bp_io.c
Examining data/radare2-4.3.1+dfsg/libr/bp/bp_plugin.c
Examining data/radare2-4.3.1+dfsg/libr/bp/bp_traptrace.c
Examining data/radare2-4.3.1+dfsg/libr/bp/bp_watch.c
Examining data/radare2-4.3.1+dfsg/libr/bp/p/bp_arm.c
Examining data/radare2-4.3.1+dfsg/libr/bp/p/bp_bf.c
Examining data/radare2-4.3.1+dfsg/libr/bp/p/bp_mips.c
Examining data/radare2-4.3.1+dfsg/libr/bp/p/bp_ppc.c
Examining data/radare2-4.3.1+dfsg/libr/bp/p/bp_sh.c
Examining data/radare2-4.3.1+dfsg/libr/bp/p/bp_x86.c
Examining data/radare2-4.3.1+dfsg/libr/config/callback.c
Examining data/radare2-4.3.1+dfsg/libr/config/config.c
Examining data/radare2-4.3.1+dfsg/libr/config/hold.c
Examining data/radare2-4.3.1+dfsg/libr/cons/2048.c
Examining data/radare2-4.3.1+dfsg/libr/cons/canvas.c
Examining data/radare2-4.3.1+dfsg/libr/cons/canvas_line.c
Examining data/radare2-4.3.1+dfsg/libr/cons/cons.c
Examining data/radare2-4.3.1+dfsg/libr/cons/dietline.c
Examining data/radare2-4.3.1+dfsg/libr/cons/editor.c
Examining data/radare2-4.3.1+dfsg/libr/cons/grep.c
Examining data/radare2-4.3.1+dfsg/libr/cons/html.c
Examining data/radare2-4.3.1+dfsg/libr/cons/hud.c
Examining data/radare2-4.3.1+dfsg/libr/cons/input.c
Examining data/radare2-4.3.1+dfsg/libr/cons/less.c
Examining data/radare2-4.3.1+dfsg/libr/cons/line.c
Examining data/radare2-4.3.1+dfsg/libr/cons/more.c
Examining data/radare2-4.3.1+dfsg/libr/cons/output.c
Examining data/radare2-4.3.1+dfsg/libr/cons/pager.c
Examining data/radare2-4.3.1+dfsg/libr/cons/pager_private.h
Examining data/radare2-4.3.1+dfsg/libr/cons/pal.c
Examining data/radare2-4.3.1+dfsg/libr/cons/pipe.c
Examining data/radare2-4.3.1+dfsg/libr/cons/rgb.c
Examining data/radare2-4.3.1+dfsg/libr/cons/stiv.c
Examining data/radare2-4.3.1+dfsg/libr/cons/utf8.c
Examining data/radare2-4.3.1+dfsg/libr/core/agraph.c
Examining data/radare2-4.3.1+dfsg/libr/core/anal_objc.c
Examining data/radare2-4.3.1+dfsg/libr/core/anal_tp.c
Examining data/radare2-4.3.1+dfsg/libr/core/blaze.c
Examining data/radare2-4.3.1+dfsg/libr/core/canal.c
Examining data/radare2-4.3.1+dfsg/libr/core/carg.c
Examining data/radare2-4.3.1+dfsg/libr/core/casm.c
Examining data/radare2-4.3.1+dfsg/libr/core/cbin.c
Examining data/radare2-4.3.1+dfsg/libr/core/cconfig.c
Examining data/radare2-4.3.1+dfsg/libr/core/cfile.c
Examining data/radare2-4.3.1+dfsg/libr/core/cio.c
Examining data/radare2-4.3.1+dfsg/libr/core/citem.c
Examining data/radare2-4.3.1+dfsg/libr/core/cmd.c
Examining data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c
Examining data/radare2-4.3.1+dfsg/libr/core/cmd_api.c
Examining data/radare2-4.3.1+dfsg/libr/core/cmd_cmp.c
Examining data/radare2-4.3.1+dfsg/libr/core/cmd_colon.c
Examining data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c
Examining data/radare2-4.3.1+dfsg/libr/core/cmd_egg.c
Examining data/radare2-4.3.1+dfsg/libr/core/cmd_eval.c
Examining data/radare2-4.3.1+dfsg/libr/core/cmd_flag.c
Examining data/radare2-4.3.1+dfsg/libr/core/cmd_hash.c
Examining data/radare2-4.3.1+dfsg/libr/core/cmd_help.c
Examining data/radare2-4.3.1+dfsg/libr/core/cmd_info.c
Examining data/radare2-4.3.1+dfsg/libr/core/cmd_log.c
Examining data/radare2-4.3.1+dfsg/libr/core/cmd_macro.c
Examining data/radare2-4.3.1+dfsg/libr/core/cmd_magic.c
Examining data/radare2-4.3.1+dfsg/libr/core/cmd_meta.c
Examining data/radare2-4.3.1+dfsg/libr/core/cmd_mount.c
Examining data/radare2-4.3.1+dfsg/libr/core/cmd_open.c
Examining data/radare2-4.3.1+dfsg/libr/core/cmd_print.c
Examining data/radare2-4.3.1+dfsg/libr/core/cmd_project.c
Examining data/radare2-4.3.1+dfsg/libr/core/cmd_quit.c
Examining data/radare2-4.3.1+dfsg/libr/core/cmd_search.c
Examining data/radare2-4.3.1+dfsg/libr/core/cmd_search_rop.c
Examining data/radare2-4.3.1+dfsg/libr/core/cmd_seek.c
Examining data/radare2-4.3.1+dfsg/libr/core/cmd_type.c
Examining data/radare2-4.3.1+dfsg/libr/core/cmd_write.c
Examining data/radare2-4.3.1+dfsg/libr/core/cmd_zign.c
Examining data/radare2-4.3.1+dfsg/libr/core/core.c
Examining data/radare2-4.3.1+dfsg/libr/core/corelog.c
Examining data/radare2-4.3.1+dfsg/libr/core/cundo.c
Examining data/radare2-4.3.1+dfsg/libr/core/disasm.c
Examining data/radare2-4.3.1+dfsg/libr/core/esil_data_flow.c
Examining data/radare2-4.3.1+dfsg/libr/core/fortune.c
Examining data/radare2-4.3.1+dfsg/libr/core/gdiff.c
Examining data/radare2-4.3.1+dfsg/libr/core/hack.c
Examining data/radare2-4.3.1+dfsg/libr/core/libs.c
Examining data/radare2-4.3.1+dfsg/libr/core/linux_heap_glibc.c
Examining data/radare2-4.3.1+dfsg/libr/core/linux_heap_jemalloc.c
Examining data/radare2-4.3.1+dfsg/libr/core/p/core_a2f.c
Examining data/radare2-4.3.1+dfsg/libr/core/p/core_java.c
Examining data/radare2-4.3.1+dfsg/libr/core/p/core_test.c
Examining data/radare2-4.3.1+dfsg/libr/core/panels.c
Examining data/radare2-4.3.1+dfsg/libr/core/patch.c
Examining data/radare2-4.3.1+dfsg/libr/core/plugin.c
Examining data/radare2-4.3.1+dfsg/libr/core/project.c
Examining data/radare2-4.3.1+dfsg/libr/core/pseudo.c
Examining data/radare2-4.3.1+dfsg/libr/core/rtr.c
Examining data/radare2-4.3.1+dfsg/libr/core/rtr_http.c
Examining data/radare2-4.3.1+dfsg/libr/core/rtr_shell.c
Examining data/radare2-4.3.1+dfsg/libr/core/task.c
Examining data/radare2-4.3.1+dfsg/libr/core/vasm.c
Examining data/radare2-4.3.1+dfsg/libr/core/visual.c
Examining data/radare2-4.3.1+dfsg/libr/core/vmarks.c
Examining data/radare2-4.3.1+dfsg/libr/core/vmenus.c
Examining data/radare2-4.3.1+dfsg/libr/core/vmenus_graph.c
Examining data/radare2-4.3.1+dfsg/libr/core/vmenus_zigns.c
Examining data/radare2-4.3.1+dfsg/libr/core/windows_heap.c
Examining data/radare2-4.3.1+dfsg/libr/core/yank.c
Examining data/radare2-4.3.1+dfsg/libr/core/zdiff.c
Examining data/radare2-4.3.1+dfsg/libr/crypto/crypto.c
Examining data/radare2-4.3.1+dfsg/libr/crypto/des.c
Examining data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_aes.c
Examining data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_aes_algo.c
Examining data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_aes_algo.h
Examining data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_aes_cbc.c
Examining data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_base64.c
Examining data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_base91.c
Examining data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_blowfish.c
Examining data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_cps2.c
Examining data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_des.c
Examining data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_punycode.c
Examining data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_rc2.c
Examining data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_rc4.c
Examining data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_rc6.c
Examining data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_rol.c
Examining data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_ror.c
Examining data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_rot.c
Examining data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_serpent.c
Examining data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_serpent_algo.c
Examining data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_serpent_algo.h
Examining data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_xor.c
Examining data/radare2-4.3.1+dfsg/libr/debug/arg.c
Examining data/radare2-4.3.1+dfsg/libr/debug/ddesc.c
Examining data/radare2-4.3.1+dfsg/libr/debug/debug.c
Examining data/radare2-4.3.1+dfsg/libr/debug/dreg.c
Examining data/radare2-4.3.1+dfsg/libr/debug/esil.c
Examining data/radare2-4.3.1+dfsg/libr/debug/map.c
Examining data/radare2-4.3.1+dfsg/libr/debug/p/bfvm.c
Examining data/radare2-4.3.1+dfsg/libr/debug/p/bfvm.h
Examining data/radare2-4.3.1+dfsg/libr/debug/p/debug_bf.c
Examining data/radare2-4.3.1+dfsg/libr/debug/p/debug_bochs.c
Examining data/radare2-4.3.1+dfsg/libr/debug/p/debug_esil.c
Examining data/radare2-4.3.1+dfsg/libr/debug/p/debug_gdb.c
Examining data/radare2-4.3.1+dfsg/libr/debug/p/debug_io.c
Examining data/radare2-4.3.1+dfsg/libr/debug/p/debug_native.c
Examining data/radare2-4.3.1+dfsg/libr/debug/p/debug_null.c
Examining data/radare2-4.3.1+dfsg/libr/debug/p/debug_qnx.c
Examining data/radare2-4.3.1+dfsg/libr/debug/p/debug_rap.c
Examining data/radare2-4.3.1+dfsg/libr/debug/p/debug_windbg.c
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/arm.c
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/bsd/bsd_debug.c
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/bsd/bsd_debug.h
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/bt.c
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/bt/fuzzy-all.c
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/bt/generic-x64.c
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/bt/generic-x86.c
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/darwin.c
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/drx.c
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.h
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_debug.c
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_debug.h
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/reg/linux-arm.h
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/reg/linux-arm64.h
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/reg/linux-mips.h
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/reg/linux-mips64.h
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/reg/linux-ppc.h
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/reg/linux-ppc64.h
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/reg/linux-riscv64.h
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/reg/linux-s390x.h
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/reg/linux-x64-32.h
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/reg/linux-x64.h
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/reg/linux-x86.h
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/maps/darwin.c
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/maps/windows_maps.c
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/maps/windows_maps.h
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/procfs.c
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/procfs.h
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/reg.c
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/reg/kfbsd-arm64.h
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/reg/kfbsd-x64.h
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/reg/kfbsd-x86.h
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/reg/netbsd-x64.h
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/reg/netbsd-x86.h
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/reg/windows-x64.h
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/reg/windows-x86.h
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/w32.c
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/w32.h
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/windows/windows_debug.c
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/windows/windows_debug.h
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/windows/windows_message.c
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/windows/windows_message.h
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/xnu/reg/darwin-arm.h
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/xnu/reg/darwin-arm64.h
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/xnu/reg/darwin-ppc.h
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/xnu/reg/darwin-x64.h
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/xnu/reg/darwin-x86.h
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/xnu/trap_arm.c
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/xnu/trap_x86.c
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/xnu/xnu_debug.c
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/xnu/xnu_debug.h
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/xnu/xnu_excthreads.c
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/xnu/xnu_threads.c
Examining data/radare2-4.3.1+dfsg/libr/debug/p/native/xnu/xnu_threads.h
Examining data/radare2-4.3.1+dfsg/libr/debug/pid.c
Examining data/radare2-4.3.1+dfsg/libr/debug/plugin.c
Examining data/radare2-4.3.1+dfsg/libr/debug/session.c
Examining data/radare2-4.3.1+dfsg/libr/debug/signal.c
Examining data/radare2-4.3.1+dfsg/libr/debug/snap.c
Examining data/radare2-4.3.1+dfsg/libr/debug/trace.c
Examining data/radare2-4.3.1+dfsg/libr/egg/egg.c
Examining data/radare2-4.3.1+dfsg/libr/egg/egg_Cfile.c
Examining data/radare2-4.3.1+dfsg/libr/egg/egg_lang.c
Examining data/radare2-4.3.1+dfsg/libr/egg/emit_arm.c
Examining data/radare2-4.3.1+dfsg/libr/egg/emit_trace.c
Examining data/radare2-4.3.1+dfsg/libr/egg/emit_x64.c
Examining data/radare2-4.3.1+dfsg/libr/egg/emit_x86.c
Examining data/radare2-4.3.1+dfsg/libr/egg/p/egg_bind.c
Examining data/radare2-4.3.1+dfsg/libr/egg/p/egg_cb.c
Examining data/radare2-4.3.1+dfsg/libr/egg/p/egg_exec.c
Examining data/radare2-4.3.1+dfsg/libr/egg/p/egg_reverse.c
Examining data/radare2-4.3.1+dfsg/libr/egg/p/egg_shya.c
Examining data/radare2-4.3.1+dfsg/libr/egg/p/egg_xor.c
Examining data/radare2-4.3.1+dfsg/libr/egg/rlcc/rlcc.c
Examining data/radare2-4.3.1+dfsg/libr/flag/flag.c
Examining data/radare2-4.3.1+dfsg/libr/flag/tags.c
Examining data/radare2-4.3.1+dfsg/libr/flag/zones.c
Examining data/radare2-4.3.1+dfsg/libr/fs/file.c
Examining data/radare2-4.3.1+dfsg/libr/fs/fs.c
Examining data/radare2-4.3.1+dfsg/libr/fs/p/fs_cpio.c
Examining data/radare2-4.3.1+dfsg/libr/fs/p/fs_ext2.c
Examining data/radare2-4.3.1+dfsg/libr/fs/p/fs_fat.c
Examining data/radare2-4.3.1+dfsg/libr/fs/p/fs_fb.c
Examining data/radare2-4.3.1+dfsg/libr/fs/p/fs_grub_base.c
Examining data/radare2-4.3.1+dfsg/libr/fs/p/fs_hfs.c
Examining data/radare2-4.3.1+dfsg/libr/fs/p/fs_hfsplus.c
Examining data/radare2-4.3.1+dfsg/libr/fs/p/fs_io.c
Examining data/radare2-4.3.1+dfsg/libr/fs/p/fs_iso9660.c
Examining data/radare2-4.3.1+dfsg/libr/fs/p/fs_jfs.c
Examining data/radare2-4.3.1+dfsg/libr/fs/p/fs_minix.c
Examining data/radare2-4.3.1+dfsg/libr/fs/p/fs_ntfs.c
Examining data/radare2-4.3.1+dfsg/libr/fs/p/fs_posix.c
Examining data/radare2-4.3.1+dfsg/libr/fs/p/fs_r2.c
Examining data/radare2-4.3.1+dfsg/libr/fs/p/fs_reiserfs.c
Examining data/radare2-4.3.1+dfsg/libr/fs/p/fs_sfs.c
Examining data/radare2-4.3.1+dfsg/libr/fs/p/fs_tar.c
Examining data/radare2-4.3.1+dfsg/libr/fs/p/fs_udf.c
Examining data/radare2-4.3.1+dfsg/libr/fs/p/fs_ufs.c
Examining data/radare2-4.3.1+dfsg/libr/fs/p/fs_ufs2.c
Examining data/radare2-4.3.1+dfsg/libr/fs/p/fs_xfs.c
Examining data/radare2-4.3.1+dfsg/libr/fs/p/part_dos.c
Examining data/radare2-4.3.1+dfsg/libr/fs/shell.c
Examining data/radare2-4.3.1+dfsg/libr/fs/types.h
Examining data/radare2-4.3.1+dfsg/libr/hash/adler32.c
Examining data/radare2-4.3.1+dfsg/libr/hash/calc.c
Examining data/radare2-4.3.1+dfsg/libr/hash/crca.c
Examining data/radare2-4.3.1+dfsg/libr/hash/entropy.c
Examining data/radare2-4.3.1+dfsg/libr/hash/fletcher.c
Examining data/radare2-4.3.1+dfsg/libr/hash/hamdist.c
Examining data/radare2-4.3.1+dfsg/libr/hash/hash.c
Examining data/radare2-4.3.1+dfsg/libr/hash/hash.h
Examining data/radare2-4.3.1+dfsg/libr/hash/luhn.c
Examining data/radare2-4.3.1+dfsg/libr/hash/md4.c
Examining data/radare2-4.3.1+dfsg/libr/hash/md4.h
Examining data/radare2-4.3.1+dfsg/libr/hash/md5.c
Examining data/radare2-4.3.1+dfsg/libr/hash/md5.h
Examining data/radare2-4.3.1+dfsg/libr/hash/sha1.c
Examining data/radare2-4.3.1+dfsg/libr/hash/sha1.h
Examining data/radare2-4.3.1+dfsg/libr/hash/sha2.c
Examining data/radare2-4.3.1+dfsg/libr/hash/sha2.h
Examining data/radare2-4.3.1+dfsg/libr/hash/state.c
Examining data/radare2-4.3.1+dfsg/libr/hash/xxhash.c
Examining data/radare2-4.3.1+dfsg/libr/hash/xxhash.h
Examining data/radare2-4.3.1+dfsg/libr/include/r2naked.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_agraph.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_anal.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_asm.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_bin.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_bin_dwarf.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_bind.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_binheap.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_bp.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_cmd.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_config.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_cons.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_core.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_crypto.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_crypto/r_des.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_debug.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_diff.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_drx.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_egg.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_endian.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_flag.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_flist.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_fs.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_getopt.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_hash.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_heap_glibc.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_heap_jemalloc.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_io.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_lang.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_lib.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_list.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_magic.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_main.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_parse.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_pdb.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_qrcode.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_reg.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_regex.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_search.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_sign.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_skiplist.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_socket.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_syscall.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_th.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_types.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_types_base.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/pj.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_alloc.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_ascii_table.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_asn1.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_assert.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_base64.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_base91.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_big.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_bitmap.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_buf.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_cache.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_constr.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_ctypes.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_date.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_debruijn.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_event.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_file.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_graph.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_hex.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_idpool.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_intervaltree.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_itv.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_log.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_mem.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_name.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_num.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_panels.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_pkcs7.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_pool.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_print.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_protobuf.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_punycode.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_queue.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_range.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_rbtree.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_sandbox.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_signal.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_spaces.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_stack.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_str.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_str_constpool.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_str_util.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_strbuf.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_strpool.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_sys.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_table.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_time.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_tree.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_uleb128.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_utf16.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_utf32.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_utf8.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_util/r_x509.h
Examining data/radare2-4.3.1+dfsg/libr/include/r_vector.h
Examining data/radare2-4.3.1+dfsg/libr/include/sdb.h
Examining data/radare2-4.3.1+dfsg/libr/include/sdb/buffer.h
Examining data/radare2-4.3.1+dfsg/libr/include/sdb/cdb.h
Examining data/radare2-4.3.1+dfsg/libr/include/sdb/cdb_make.h
Examining data/radare2-4.3.1+dfsg/libr/include/sdb/config.h
Examining data/radare2-4.3.1+dfsg/libr/include/sdb/dict.h
Examining data/radare2-4.3.1+dfsg/libr/include/sdb/ht_inc.h
Examining data/radare2-4.3.1+dfsg/libr/include/sdb/ht_pp.h
Examining data/radare2-4.3.1+dfsg/libr/include/sdb/ht_up.h
Examining data/radare2-4.3.1+dfsg/libr/include/sdb/ht_uu.h
Examining data/radare2-4.3.1+dfsg/libr/include/sdb/ls.h
Examining data/radare2-4.3.1+dfsg/libr/include/sdb/sdb.h
Examining data/radare2-4.3.1+dfsg/libr/include/sdb/sdb_version.h
Examining data/radare2-4.3.1+dfsg/libr/include/sdb/sdbht.h
Examining data/radare2-4.3.1+dfsg/libr/include/sdb/set.h
Examining data/radare2-4.3.1+dfsg/libr/include/sdb/types.h
Examining data/radare2-4.3.1+dfsg/libr/include/sflib/common/sfsocketcall.h
Examining data/radare2-4.3.1+dfsg/libr/include/sflib/common/sftypes.h
Examining data/radare2-4.3.1+dfsg/libr/include/sflib/darwin-arm-64/sflib.h
Examining data/radare2-4.3.1+dfsg/libr/include/sflib/darwin-arm-64/sfsyscall.h
Examining data/radare2-4.3.1+dfsg/libr/include/sflib/darwin-arm-64/sfsysnr.h
Examining data/radare2-4.3.1+dfsg/libr/include/sflib/darwin-x86-32/sflib.h
Examining data/radare2-4.3.1+dfsg/libr/include/sflib/darwin-x86-32/sfsyscall.h
Examining data/radare2-4.3.1+dfsg/libr/include/sflib/darwin-x86-32/sfsysnr.h
Examining data/radare2-4.3.1+dfsg/libr/include/sflib/darwin-x86-64/sflib.h
Examining data/radare2-4.3.1+dfsg/libr/include/sflib/darwin-x86-64/sfsyscall.h
Examining data/radare2-4.3.1+dfsg/libr/include/sflib/darwin-x86-64/sfsysnr.h
Examining data/radare2-4.3.1+dfsg/libr/include/sflib/linux-arm-32/sflib.h
Examining data/radare2-4.3.1+dfsg/libr/include/sflib/linux-arm-32/sfsyscall.h
Examining data/radare2-4.3.1+dfsg/libr/include/sflib/linux-arm-32/sfsysnr.h
Examining data/radare2-4.3.1+dfsg/libr/include/sflib/linux-arm-64/sflib.h
Examining data/radare2-4.3.1+dfsg/libr/include/sflib/linux-arm-64/sfsyscall.h
Examining data/radare2-4.3.1+dfsg/libr/include/sflib/linux-arm-64/sfsysnr.h
Examining data/radare2-4.3.1+dfsg/libr/include/sflib/linux-x86-32/sflib.h
Examining data/radare2-4.3.1+dfsg/libr/include/sflib/linux-x86-32/sfsyscall.h
Examining data/radare2-4.3.1+dfsg/libr/include/sflib/linux-x86-32/sfsysnr.h
Examining data/radare2-4.3.1+dfsg/libr/include/sflib/linux-x86-64/sflib.h
Examining data/radare2-4.3.1+dfsg/libr/include/sflib/linux-x86-64/sfsyscall.h
Examining data/radare2-4.3.1+dfsg/libr/include/sflib/linux-x86-64/sfsysnr.h
Examining data/radare2-4.3.1+dfsg/libr/io/cache.c
Examining data/radare2-4.3.1+dfsg/libr/io/desc.c
Examining data/radare2-4.3.1+dfsg/libr/io/fd.c
Examining data/radare2-4.3.1+dfsg/libr/io/io.c
Examining data/radare2-4.3.1+dfsg/libr/io/io_private.h
Examining data/radare2-4.3.1+dfsg/libr/io/ioutils.c
Examining data/radare2-4.3.1+dfsg/libr/io/map.c
Examining data/radare2-4.3.1+dfsg/libr/io/p/io_ar.c
Examining data/radare2-4.3.1+dfsg/libr/io/p/io_bfdbg.c
Examining data/radare2-4.3.1+dfsg/libr/io/p/io_bochs.c
Examining data/radare2-4.3.1+dfsg/libr/io/p/io_debug.c
Examining data/radare2-4.3.1+dfsg/libr/io/p/io_default.c
Examining data/radare2-4.3.1+dfsg/libr/io/p/io_gdb.c
Examining data/radare2-4.3.1+dfsg/libr/io/p/io_gprobe.c
Examining data/radare2-4.3.1+dfsg/libr/io/p/io_gprobe.h
Examining data/radare2-4.3.1+dfsg/libr/io/p/io_gzip.c
Examining data/radare2-4.3.1+dfsg/libr/io/p/io_http.c
Examining data/radare2-4.3.1+dfsg/libr/io/p/io_ihex.c
Examining data/radare2-4.3.1+dfsg/libr/io/p/io_mach.c
Examining data/radare2-4.3.1+dfsg/libr/io/p/io_malloc.c
Examining data/radare2-4.3.1+dfsg/libr/io/p/io_mmap.c
Examining data/radare2-4.3.1+dfsg/libr/io/p/io_null.c
Examining data/radare2-4.3.1+dfsg/libr/io/p/io_procpid.c
Examining data/radare2-4.3.1+dfsg/libr/io/p/io_ptrace.c
Examining data/radare2-4.3.1+dfsg/libr/io/p/io_qnx.c
Examining data/radare2-4.3.1+dfsg/libr/io/p/io_r2k.c
Examining data/radare2-4.3.1+dfsg/libr/io/p/io_r2k_linux.c
Examining data/radare2-4.3.1+dfsg/libr/io/p/io_r2k_linux.h
Examining data/radare2-4.3.1+dfsg/libr/io/p/io_r2k_windows.c
Examining data/radare2-4.3.1+dfsg/libr/io/p/io_r2k_windows.h
Examining data/radare2-4.3.1+dfsg/libr/io/p/io_r2pipe.c
Examining data/radare2-4.3.1+dfsg/libr/io/p/io_r2web.c
Examining data/radare2-4.3.1+dfsg/libr/io/p/io_rap.c
Examining data/radare2-4.3.1+dfsg/libr/io/p/io_rbuf.c
Examining data/radare2-4.3.1+dfsg/libr/io/p/io_self.c
Examining data/radare2-4.3.1+dfsg/libr/io/p/io_shm.c
Examining data/radare2-4.3.1+dfsg/libr/io/p/io_sparse.c
Examining data/radare2-4.3.1+dfsg/libr/io/p/io_tcp.c
Examining data/radare2-4.3.1+dfsg/libr/io/p/io_w32.c
Examining data/radare2-4.3.1+dfsg/libr/io/p/io_w32dbg.c
Examining data/radare2-4.3.1+dfsg/libr/io/p/io_windbg.c
Examining data/radare2-4.3.1+dfsg/libr/io/p/io_winedbg.c
Examining data/radare2-4.3.1+dfsg/libr/io/p/io_zip.c
Examining data/radare2-4.3.1+dfsg/libr/io/p_cache.c
Examining data/radare2-4.3.1+dfsg/libr/io/plugin.c
Examining data/radare2-4.3.1+dfsg/libr/io/undo.c
Examining data/radare2-4.3.1+dfsg/libr/io/undo.h
Examining data/radare2-4.3.1+dfsg/libr/lang/lang.c
Examining data/radare2-4.3.1+dfsg/libr/lang/p/c.c
Examining data/radare2-4.3.1+dfsg/libr/lang/p/cpipe.c
Examining data/radare2-4.3.1+dfsg/libr/lang/p/lib.c
Examining data/radare2-4.3.1+dfsg/libr/lang/p/pipe.c
Examining data/radare2-4.3.1+dfsg/libr/lang/p/rust.c
Examining data/radare2-4.3.1+dfsg/libr/lang/p/v.c
Examining data/radare2-4.3.1+dfsg/libr/lang/p/vala.c
Examining data/radare2-4.3.1+dfsg/libr/lang/p/zig.c
Examining data/radare2-4.3.1+dfsg/libr/magic/apprentice.c
Examining data/radare2-4.3.1+dfsg/libr/magic/ascmagic.c
Examining data/radare2-4.3.1+dfsg/libr/magic/file.h
Examining data/radare2-4.3.1+dfsg/libr/magic/file_opts.h
Examining data/radare2-4.3.1+dfsg/libr/magic/fsmagic.c
Examining data/radare2-4.3.1+dfsg/libr/magic/funcs.c
Examining data/radare2-4.3.1+dfsg/libr/magic/is_tar.c
Examining data/radare2-4.3.1+dfsg/libr/magic/magic.c
Examining data/radare2-4.3.1+dfsg/libr/magic/mconfig.h
Examining data/radare2-4.3.1+dfsg/libr/magic/names.h
Examining data/radare2-4.3.1+dfsg/libr/magic/patchlevel.h
Examining data/radare2-4.3.1+dfsg/libr/magic/print.c
Examining data/radare2-4.3.1+dfsg/libr/magic/softmagic.c
Examining data/radare2-4.3.1+dfsg/libr/magic/tar.h
Examining data/radare2-4.3.1+dfsg/libr/main/index.h
Examining data/radare2-4.3.1+dfsg/libr/main/main.c
Examining data/radare2-4.3.1+dfsg/libr/main/r2agent.c
Examining data/radare2-4.3.1+dfsg/libr/main/rabin2.c
Examining data/radare2-4.3.1+dfsg/libr/main/radare2.c
Examining data/radare2-4.3.1+dfsg/libr/main/radiff2.c
Examining data/radare2-4.3.1+dfsg/libr/main/rafind2.c
Examining data/radare2-4.3.1+dfsg/libr/main/ragg2.c
Examining data/radare2-4.3.1+dfsg/libr/main/rahash2.c
Examining data/radare2-4.3.1+dfsg/libr/main/rarun2.c
Examining data/radare2-4.3.1+dfsg/libr/main/rasm2.c
Examining data/radare2-4.3.1+dfsg/libr/main/rax2.c
Examining data/radare2-4.3.1+dfsg/libr/main/version.c
Examining data/radare2-4.3.1+dfsg/libr/parse/code.c
Examining data/radare2-4.3.1+dfsg/libr/parse/ctype.c
Examining data/radare2-4.3.1+dfsg/libr/parse/filter.c
Examining data/radare2-4.3.1+dfsg/libr/parse/p/parse_6502_pseudo.c
Examining data/radare2-4.3.1+dfsg/libr/parse/p/parse_arm_pseudo.c
Examining data/radare2-4.3.1+dfsg/libr/parse/p/parse_att2intel.c
Examining data/radare2-4.3.1+dfsg/libr/parse/p/parse_avr_pseudo.c
Examining data/radare2-4.3.1+dfsg/libr/parse/p/parse_chip8_pseudo.c
Examining data/radare2-4.3.1+dfsg/libr/parse/p/parse_dalvik_pseudo.c
Examining data/radare2-4.3.1+dfsg/libr/parse/p/parse_m68k_pseudo.c
Examining data/radare2-4.3.1+dfsg/libr/parse/p/parse_mips_pseudo.c
Examining data/radare2-4.3.1+dfsg/libr/parse/p/parse_ppc_pseudo.c
Examining data/radare2-4.3.1+dfsg/libr/parse/p/parse_sh_pseudo.c
Examining data/radare2-4.3.1+dfsg/libr/parse/p/parse_wasm_pseudo.c
Examining data/radare2-4.3.1+dfsg/libr/parse/p/parse_x86_pseudo.c
Examining data/radare2-4.3.1+dfsg/libr/parse/p/parse_z80_pseudo.c
Examining data/radare2-4.3.1+dfsg/libr/parse/parse.c
Examining data/radare2-4.3.1+dfsg/libr/reg/arena.c
Examining data/radare2-4.3.1+dfsg/libr/reg/cond.c
Examining data/radare2-4.3.1+dfsg/libr/reg/double.c
Examining data/radare2-4.3.1+dfsg/libr/reg/profile.c
Examining data/radare2-4.3.1+dfsg/libr/reg/reg.c
Examining data/radare2-4.3.1+dfsg/libr/reg/value.c
Examining data/radare2-4.3.1+dfsg/libr/search/aes-find.c
Examining data/radare2-4.3.1+dfsg/libr/search/bytepat.c
Examining data/radare2-4.3.1+dfsg/libr/search/keyword.c
Examining data/radare2-4.3.1+dfsg/libr/search/old_xrefs.c
Examining data/radare2-4.3.1+dfsg/libr/search/privkey-find.c
Examining data/radare2-4.3.1+dfsg/libr/search/regexp.c
Examining data/radare2-4.3.1+dfsg/libr/search/search.c
Examining data/radare2-4.3.1+dfsg/libr/search/strings.c
Examining data/radare2-4.3.1+dfsg/libr/search/xrefs.c
Examining data/radare2-4.3.1+dfsg/libr/socket/http.c
Examining data/radare2-4.3.1+dfsg/libr/socket/http_server.c
Examining data/radare2-4.3.1+dfsg/libr/socket/proc.c
Examining data/radare2-4.3.1+dfsg/libr/socket/r2pipe.c
Examining data/radare2-4.3.1+dfsg/libr/socket/rap_server.c
Examining data/radare2-4.3.1+dfsg/libr/socket/run.c
Examining data/radare2-4.3.1+dfsg/libr/socket/serial.c
Examining data/radare2-4.3.1+dfsg/libr/socket/socket.c
Examining data/radare2-4.3.1+dfsg/libr/syscall/fastcall.h
Examining data/radare2-4.3.1+dfsg/libr/syscall/ioports.c
Examining data/radare2-4.3.1+dfsg/libr/syscall/syscall.c
Examining data/radare2-4.3.1+dfsg/libr/util/alloc.c
Examining data/radare2-4.3.1+dfsg/libr/util/ascii_table.c
Examining data/radare2-4.3.1+dfsg/libr/util/asn1.c
Examining data/radare2-4.3.1+dfsg/libr/util/asn1_oids.h
Examining data/radare2-4.3.1+dfsg/libr/util/assert.c
Examining data/radare2-4.3.1+dfsg/libr/util/astr.c
Examining data/radare2-4.3.1+dfsg/libr/util/base85.c
Examining data/radare2-4.3.1+dfsg/libr/util/base91.c
Examining data/radare2-4.3.1+dfsg/libr/util/bdiff.c
Examining data/radare2-4.3.1+dfsg/libr/util/big-gmp.c
Examining data/radare2-4.3.1+dfsg/libr/util/big-ssl.c
Examining data/radare2-4.3.1+dfsg/libr/util/big.c
Examining data/radare2-4.3.1+dfsg/libr/util/binheap.c
Examining data/radare2-4.3.1+dfsg/libr/util/bitmap.c
Examining data/radare2-4.3.1+dfsg/libr/util/buf.c
Examining data/radare2-4.3.1+dfsg/libr/util/buf_bytes.c
Examining data/radare2-4.3.1+dfsg/libr/util/buf_file.c
Examining data/radare2-4.3.1+dfsg/libr/util/buf_io.c
Examining data/radare2-4.3.1+dfsg/libr/util/buf_mmap.c
Examining data/radare2-4.3.1+dfsg/libr/util/buf_ref.c
Examining data/radare2-4.3.1+dfsg/libr/util/buf_sparse.c
Examining data/radare2-4.3.1+dfsg/libr/util/cache.c
Examining data/radare2-4.3.1+dfsg/libr/util/calc.c
Examining data/radare2-4.3.1+dfsg/libr/util/chmod.c
Examining data/radare2-4.3.1+dfsg/libr/util/constr.c
Examining data/radare2-4.3.1+dfsg/libr/util/ctype.c
Examining data/radare2-4.3.1+dfsg/libr/util/date.c
Examining data/radare2-4.3.1+dfsg/libr/util/debruijn.c
Examining data/radare2-4.3.1+dfsg/libr/util/diff.c
Examining data/radare2-4.3.1+dfsg/libr/util/donut.c
Examining data/radare2-4.3.1+dfsg/libr/util/event.c
Examining data/radare2-4.3.1+dfsg/libr/util/file.c
Examining data/radare2-4.3.1+dfsg/libr/util/flist.c
Examining data/radare2-4.3.1+dfsg/libr/util/format.c
Examining data/radare2-4.3.1+dfsg/libr/util/getopt.c
Examining data/radare2-4.3.1+dfsg/libr/util/graph.c
Examining data/radare2-4.3.1+dfsg/libr/util/hex.c
Examining data/radare2-4.3.1+dfsg/libr/util/idpool.c
Examining data/radare2-4.3.1+dfsg/libr/util/intervaltree.c
Examining data/radare2-4.3.1+dfsg/libr/util/json_indent.c
Examining data/radare2-4.3.1+dfsg/libr/util/lib.c
Examining data/radare2-4.3.1+dfsg/libr/util/list.c
Examining data/radare2-4.3.1+dfsg/libr/util/log.c
Examining data/radare2-4.3.1+dfsg/libr/util/mem.c
Examining data/radare2-4.3.1+dfsg/libr/util/name.c
Examining data/radare2-4.3.1+dfsg/libr/util/pie.c
Examining data/radare2-4.3.1+dfsg/libr/util/pj.c
Examining data/radare2-4.3.1+dfsg/libr/util/pkcs7.c
Examining data/radare2-4.3.1+dfsg/libr/util/print.c
Examining data/radare2-4.3.1+dfsg/libr/util/prof.c
Examining data/radare2-4.3.1+dfsg/libr/util/protobuf.c
Examining data/radare2-4.3.1+dfsg/libr/util/punycode.c
Examining data/radare2-4.3.1+dfsg/libr/util/qrcode.c
Examining data/radare2-4.3.1+dfsg/libr/util/queue.c
Examining data/radare2-4.3.1+dfsg/libr/util/randomart.c
Examining data/radare2-4.3.1+dfsg/libr/util/range.c
Examining data/radare2-4.3.1+dfsg/libr/util/rbtree.c
Examining data/radare2-4.3.1+dfsg/libr/util/regex/cclass.h
Examining data/radare2-4.3.1+dfsg/libr/util/regex/cname.h
Examining data/radare2-4.3.1+dfsg/libr/util/regex/engine.c
Examining data/radare2-4.3.1+dfsg/libr/util/regex/regcomp.c
Examining data/radare2-4.3.1+dfsg/libr/util/regex/regerror.c
Examining data/radare2-4.3.1+dfsg/libr/util/regex/regex2.h
Examining data/radare2-4.3.1+dfsg/libr/util/regex/regexec.c
Examining data/radare2-4.3.1+dfsg/libr/util/regex/test.c
Examining data/radare2-4.3.1+dfsg/libr/util/regex/utils.h
Examining data/radare2-4.3.1+dfsg/libr/util/sandbox.c
Examining data/radare2-4.3.1+dfsg/libr/util/seven.c
Examining data/radare2-4.3.1+dfsg/libr/util/signal.c
Examining data/radare2-4.3.1+dfsg/libr/util/skiplist.c
Examining data/radare2-4.3.1+dfsg/libr/util/spaces.c
Examining data/radare2-4.3.1+dfsg/libr/util/stack.c
Examining data/radare2-4.3.1+dfsg/libr/util/str.c
Examining data/radare2-4.3.1+dfsg/libr/util/str_constpool.c
Examining data/radare2-4.3.1+dfsg/libr/util/str_trim.c
Examining data/radare2-4.3.1+dfsg/libr/util/strbuf.c
Examining data/radare2-4.3.1+dfsg/libr/util/strpool.c
Examining data/radare2-4.3.1+dfsg/libr/util/sys.c
Examining data/radare2-4.3.1+dfsg/libr/util/syscmd.c
Examining data/radare2-4.3.1+dfsg/libr/util/table.c
Examining data/radare2-4.3.1+dfsg/libr/util/thread.c
Examining data/radare2-4.3.1+dfsg/libr/util/thread_cond.c
Examining data/radare2-4.3.1+dfsg/libr/util/thread_lock.c
Examining data/radare2-4.3.1+dfsg/libr/util/thread_pipe.c
Examining data/radare2-4.3.1+dfsg/libr/util/thread_sem.c
Examining data/radare2-4.3.1+dfsg/libr/util/tinyrange.c
Examining data/radare2-4.3.1+dfsg/libr/util/tree.c
Examining data/radare2-4.3.1+dfsg/libr/util/ubase64.c
Examining data/radare2-4.3.1+dfsg/libr/util/uleb128.c
Examining data/radare2-4.3.1+dfsg/libr/util/unum.c
Examining data/radare2-4.3.1+dfsg/libr/util/utf16.c
Examining data/radare2-4.3.1+dfsg/libr/util/utf32.c
Examining data/radare2-4.3.1+dfsg/libr/util/utf8.c
Examining data/radare2-4.3.1+dfsg/libr/util/vector.c
Examining data/radare2-4.3.1+dfsg/libr/util/w32-sys.c
Examining data/radare2-4.3.1+dfsg/libr/util/x509.c
Examining data/radare2-4.3.1+dfsg/libr/util/x509.h
Examining data/radare2-4.3.1+dfsg/libr/util/zip.c
Examining data/radare2-4.3.1+dfsg/shlr/ar/ar.c
Examining data/radare2-4.3.1+dfsg/shlr/ar/ar.h
Examining data/radare2-4.3.1+dfsg/shlr/bochs/include/libbochs.h
Examining data/radare2-4.3.1+dfsg/shlr/bochs/src/libbochs.c
Examining data/radare2-4.3.1+dfsg/shlr/gdb/include/arch.h
Examining data/radare2-4.3.1+dfsg/shlr/gdb/include/gdbclient/commands.h
Examining data/radare2-4.3.1+dfsg/shlr/gdb/include/gdbclient/core.h
Examining data/radare2-4.3.1+dfsg/shlr/gdb/include/gdbclient/responses.h
Examining data/radare2-4.3.1+dfsg/shlr/gdb/include/gdbclient/xml.h
Examining data/radare2-4.3.1+dfsg/shlr/gdb/include/gdbr_common.h
Examining data/radare2-4.3.1+dfsg/shlr/gdb/include/gdbserver/core.h
Examining data/radare2-4.3.1+dfsg/shlr/gdb/include/libgdbr.h
Examining data/radare2-4.3.1+dfsg/shlr/gdb/include/packet.h
Examining data/radare2-4.3.1+dfsg/shlr/gdb/include/utils.h
Examining data/radare2-4.3.1+dfsg/shlr/gdb/src/arch.c
Examining data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c
Examining data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c
Examining data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/responses.c
Examining data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/xml.c
Examining data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbserver/core.c
Examining data/radare2-4.3.1+dfsg/shlr/gdb/src/libgdbr.c
Examining data/radare2-4.3.1+dfsg/shlr/gdb/src/packet.c
Examining data/radare2-4.3.1+dfsg/shlr/gdb/src/utils.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/fs/affs.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/fs/afs.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/fs/afs_be.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/fs/befs.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/fs/befs_be.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/fs/btrfs.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/fs/cpio.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/fs/ext2.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/fs/fat.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/fs/fb.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/fs/fshelp.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/fs/hfs.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/fs/hfsplus.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/fs/iso9660.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/fs/jfs.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/fs/minix.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/fs/minix2.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/fs/nilfs2.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/fs/ntfs.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/fs/ntfscomp.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/fs/reiserfs.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/fs/sfs.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/fs/tar.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/fs/udf.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/fs/ufs.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/fs/ufs2.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/fs/xfs.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/grubfs.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/config-util.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/aout.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/bsdlabel.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/bufio.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/charset.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/command.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/cpu/time.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/cpu/types.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/cs5536.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/datetime.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/decompressor.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/device.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/disk.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/dl.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/emu/console.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/emu/getroot.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/emu/hostdisk.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/emu/misc.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/env.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/env_private.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/err.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/extcmd.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/fbfs.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/file.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/fs.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/fshelp.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/gpt_partition.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/hfs.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/i18n.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/list.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/loader.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/lvm.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/memory.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/menu.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/menu_viewer.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/misc.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/mm.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/mm_private.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/msdos_partition.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/net.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/normal.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/ntfs.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/offsets.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/parser.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/partition.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/parttool.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/pci.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/pciutils.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/raid.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/reader.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/reed_solomon.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/relocator.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/relocator_private.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/search.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/serial.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/setjmp.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/symbol.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/term.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/terminfo.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/test.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/time.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/tparm.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/trig.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/types.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/unicode.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/util/deviceiter.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/util/libnvpair.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/util/lvm.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/util/misc.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/util/ofpath.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/util/raid.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grub/util/resolve.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/include/grubfs.h
Examining data/radare2-4.3.1+dfsg/shlr/grub/kern/device.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/kern/disk.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/kern/dl.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/kern/env.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/kern/err.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/kern/file.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/kern/fs.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/kern/list.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/kern/misc.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/kern/mm.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/kern/partition.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/kern/term.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/kern/time.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/main.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/partmap/acorn.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/partmap/amiga.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/partmap/apple.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/partmap/bsdlabel.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/partmap/gpt.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/partmap/msdos.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/partmap/sun.c
Examining data/radare2-4.3.1+dfsg/shlr/grub/partmap/sunpc.c
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/arena.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/assert.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/atomic.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/base.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/bitmap.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/chunk.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/chunk_dss.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/chunk_mmap.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/ckh.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/ctl.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/extent.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/hash.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/huge.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/jemalloc_internal.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/jemalloc_internal_decls.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/jemalloc_internal_defs.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/jemalloc_internal_macros.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/mb.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/msvc_compat/windows_extra.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/mutex.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/nstime.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/pages.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/ph.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/private_namespace.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/private_unnamespace.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/prng.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/prof.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/public_namespace.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/public_unnamespace.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/ql.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/qr.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/quarantine.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/rb.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/rtree.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/size_classes.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/smoothstep.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/spin.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/stats.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/tcache.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/ticker.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/tsd.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/util.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/valgrind.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/witness.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/jemalloc.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/jemalloc_defs.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/jemalloc_macros.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/jemalloc_mangle.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/jemalloc_mangle_jet.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/jemalloc_protos.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/jemalloc_protos_jet.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/jemalloc_rename.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/jemalloc_typedefs.h
Examining data/radare2-4.3.1+dfsg/shlr/heap/include/r_windows/windows_heap.h
Examining data/radare2-4.3.1+dfsg/shlr/java/class.c
Examining data/radare2-4.3.1+dfsg/shlr/java/class.h
Examining data/radare2-4.3.1+dfsg/shlr/java/code.c
Examining data/radare2-4.3.1+dfsg/shlr/java/code.h
Examining data/radare2-4.3.1+dfsg/shlr/java/dsojson.c
Examining data/radare2-4.3.1+dfsg/shlr/java/dsojson.h
Examining data/radare2-4.3.1+dfsg/shlr/java/main.c
Examining data/radare2-4.3.1+dfsg/shlr/java/ops.c
Examining data/radare2-4.3.1+dfsg/shlr/java/ops.h
Examining data/radare2-4.3.1+dfsg/shlr/lz4/lz4.c
Examining data/radare2-4.3.1+dfsg/shlr/lz4/lz4.h
Examining data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c
Examining data/radare2-4.3.1+dfsg/shlr/mpc/mpc.h
Examining data/radare2-4.3.1+dfsg/shlr/ptrace-wrap/include/ptrace_wrap.h
Examining data/radare2-4.3.1+dfsg/shlr/ptrace-wrap/src/ptrace_wrap.c
Examining data/radare2-4.3.1+dfsg/shlr/qnx/include/arch.h
Examining data/radare2-4.3.1+dfsg/shlr/qnx/include/core.h
Examining data/radare2-4.3.1+dfsg/shlr/qnx/include/dsmsgs.h
Examining data/radare2-4.3.1+dfsg/shlr/qnx/include/gdb_signals.h
Examining data/radare2-4.3.1+dfsg/shlr/qnx/include/libqnxr.h
Examining data/radare2-4.3.1+dfsg/shlr/qnx/include/packet.h
Examining data/radare2-4.3.1+dfsg/shlr/qnx/include/sigutil.h
Examining data/radare2-4.3.1+dfsg/shlr/qnx/include/utils.h
Examining data/radare2-4.3.1+dfsg/shlr/qnx/src/core.c
Examining data/radare2-4.3.1+dfsg/shlr/qnx/src/libqnxr.c
Examining data/radare2-4.3.1+dfsg/shlr/qnx/src/packet.c
Examining data/radare2-4.3.1+dfsg/shlr/qnx/src/sigutil.c
Examining data/radare2-4.3.1+dfsg/shlr/qnx/src/utils.c
Examining data/radare2-4.3.1+dfsg/shlr/rar/cpu.c
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/base64.c
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/buffer.c
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/buffer.h
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/cdb.c
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/cdb.h
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/cdb_make.c
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/cdb_make.h
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/config.h
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/dict.c
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/dict.h
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/diff.c
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/disk.c
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/fmt.c
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/ht_inc.c
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/ht_inc.h
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/ht_pp.c
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/ht_pp.h
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/ht_up.c
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/ht_up.h
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/ht_uu.c
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/ht_uu.h
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/journal.c
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/json.c
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/json/api.c
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/json/indent.c
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/json/js0n.c
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/json/main.c
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/json/path.c
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/json/rangstr.c
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/json/rangstr.h
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/json/test.c
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/lock.c
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/ls.c
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/ls.h
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/main.c
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/match.c
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/ns.c
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/num.c
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/query.c
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/sdb.c
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/sdb.h
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/sdbht.c
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/sdbht.h
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/set.c
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/set.h
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/types.h
Examining data/radare2-4.3.1+dfsg/shlr/sdb/src/util.c
Examining data/radare2-4.3.1+dfsg/shlr/spp/config.def.h
Examining data/radare2-4.3.1+dfsg/shlr/spp/main.c
Examining data/radare2-4.3.1+dfsg/shlr/spp/p/acr.h
Examining data/radare2-4.3.1+dfsg/shlr/spp/p/cpp.h
Examining data/radare2-4.3.1+dfsg/shlr/spp/p/pod.h
Examining data/radare2-4.3.1+dfsg/shlr/spp/p/sh.h
Examining data/radare2-4.3.1+dfsg/shlr/spp/p/spp.h
Examining data/radare2-4.3.1+dfsg/shlr/spp/r_api.c
Examining data/radare2-4.3.1+dfsg/shlr/spp/r_api.h
Examining data/radare2-4.3.1+dfsg/shlr/spp/spp.c
Examining data/radare2-4.3.1+dfsg/shlr/spp/spp.h
Examining data/radare2-4.3.1+dfsg/shlr/tcc/libr_tcc.h
Examining data/radare2-4.3.1+dfsg/shlr/tcc/libtcc.c
Examining data/radare2-4.3.1+dfsg/shlr/tcc/libtcc.h
Examining data/radare2-4.3.1+dfsg/shlr/tcc/stab.h
Examining data/radare2-4.3.1+dfsg/shlr/tcc/tcc.h
Examining data/radare2-4.3.1+dfsg/shlr/tcc/tcc_config.h
Examining data/radare2-4.3.1+dfsg/shlr/tcc/tccgen.c
Examining data/radare2-4.3.1+dfsg/shlr/tcc/tcclib.h
Examining data/radare2-4.3.1+dfsg/shlr/tcc/tccpp.c
Examining data/radare2-4.3.1+dfsg/shlr/tcc/tcctok.h
Examining data/radare2-4.3.1+dfsg/shlr/w32dbg_wrap/include/w32dbg_wrap.h
Examining data/radare2-4.3.1+dfsg/shlr/w32dbg_wrap/src/w32dbg_wrap.c
Examining data/radare2-4.3.1+dfsg/shlr/windbg/iob_pipe.c
Examining data/radare2-4.3.1+dfsg/shlr/windbg/kd.c
Examining data/radare2-4.3.1+dfsg/shlr/windbg/kd.h
Examining data/radare2-4.3.1+dfsg/shlr/windbg/profiles.h
Examining data/radare2-4.3.1+dfsg/shlr/windbg/transport.c
Examining data/radare2-4.3.1+dfsg/shlr/windbg/transport.h
Examining data/radare2-4.3.1+dfsg/shlr/windbg/windbg.c
Examining data/radare2-4.3.1+dfsg/shlr/windbg/windbg.h
Examining data/radare2-4.3.1+dfsg/shlr/zip/include/crc32.h
Examining data/radare2-4.3.1+dfsg/shlr/zip/include/deflate.h
Examining data/radare2-4.3.1+dfsg/shlr/zip/include/gzguts.h
Examining data/radare2-4.3.1+dfsg/shlr/zip/include/inffast.h
Examining data/radare2-4.3.1+dfsg/shlr/zip/include/inffixed.h
Examining data/radare2-4.3.1+dfsg/shlr/zip/include/inflate.h
Examining data/radare2-4.3.1+dfsg/shlr/zip/include/inftrees.h
Examining data/radare2-4.3.1+dfsg/shlr/zip/include/trees.h
Examining data/radare2-4.3.1+dfsg/shlr/zip/include/zconf.h
Examining data/radare2-4.3.1+dfsg/shlr/zip/include/zip.h
Examining data/radare2-4.3.1+dfsg/shlr/zip/include/zipconf.h
Examining data/radare2-4.3.1+dfsg/shlr/zip/include/zipint.h
Examining data/radare2-4.3.1+dfsg/shlr/zip/include/zlib.h
Examining data/radare2-4.3.1+dfsg/shlr/zip/include/zutil.h
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/config.h
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_add.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_add_dir.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_add_entry.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_close.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_delete.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_dir_add.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_dirent.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_discard.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_entry.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_err_str.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_error.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_error_clear.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_error_get.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_error_get_sys_type.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_error_strerror.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_error_to_str.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_extra_field.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_extra_field_api.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_fclose.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_fdopen.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_file_add.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_file_error_clear.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_file_error_get.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_file_get_comment.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_file_get_offset.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_file_rename.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_file_replace.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_file_set_comment.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_file_strerror.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_filerange_crc.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_fopen.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_fopen_encrypted.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_fopen_index.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_fopen_index_encrypted.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_fread.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_get_archive_comment.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_get_archive_flag.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_get_compression_implementation.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_get_encryption_implementation.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_get_file_comment.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_get_name.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_get_num_entries.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_get_num_files.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_name_locate.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_new.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_open.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_rename.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_replace.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_set_archive_comment.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_set_archive_flag.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_set_default_password.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_set_file_comment.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_set_file_compression.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_set_name.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_source_buffer.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_source_close.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_source_crc.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_source_deflate.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_source_error.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_source_file.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_source_filep.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_source_free.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_source_function.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_source_layered.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_source_open.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_source_pkware.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_source_pop.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_source_read.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_source_stat.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_source_window.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_source_zip.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_source_zip_new.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_stat.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_stat_index.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_stat_init.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_strerror.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_string.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_unchange.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_unchange_all.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_unchange_archive.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_unchange_data.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_utf-8.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zipconf.h
Examining data/radare2-4.3.1+dfsg/shlr/zip/zip/zipint.h
Examining data/radare2-4.3.1+dfsg/shlr/zip/zlib/adler32.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zlib/compress.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zlib/crc32.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zlib/crc32.h
Examining data/radare2-4.3.1+dfsg/shlr/zip/zlib/deflate.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zlib/deflate.h
Examining data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzclose.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzguts.h
Examining data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzlib.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzread.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzwrite.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zlib/infback.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zlib/inffast.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zlib/inffast.h
Examining data/radare2-4.3.1+dfsg/shlr/zip/zlib/inffixed.h
Examining data/radare2-4.3.1+dfsg/shlr/zip/zlib/inflate.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zlib/inflate.h
Examining data/radare2-4.3.1+dfsg/shlr/zip/zlib/inftrees.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zlib/inftrees.h
Examining data/radare2-4.3.1+dfsg/shlr/zip/zlib/trees.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zlib/trees.h
Examining data/radare2-4.3.1+dfsg/shlr/zip/zlib/uncompr.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zlib/zconf.h
Examining data/radare2-4.3.1+dfsg/shlr/zip/zlib/zlib.h
Examining data/radare2-4.3.1+dfsg/shlr/zip/zlib/zutil.c
Examining data/radare2-4.3.1+dfsg/shlr/zip/zlib/zutil.h
Examining data/radare2-4.3.1+dfsg/sys/ui/r2-install.c
Examining data/radare2-4.3.1+dfsg/test/unit/legacy_unit/anal/test_x86im.c
Examining data/radare2-4.3.1+dfsg/test/unit/legacy_unit/config/test.c
Examining data/radare2-4.3.1+dfsg/test/unit/legacy_unit/cons/editor.c
Examining data/radare2-4.3.1+dfsg/test/unit/legacy_unit/cons/graph.c
Examining data/radare2-4.3.1+dfsg/test/unit/legacy_unit/cons/test-rgb.c
Examining data/radare2-4.3.1+dfsg/test/unit/legacy_unit/debug/main.c
Examining data/radare2-4.3.1+dfsg/test/unit/legacy_unit/egg/test.c
Examining data/radare2-4.3.1+dfsg/test/unit/legacy_unit/hash/hello.c
Examining data/radare2-4.3.1+dfsg/test/unit/legacy_unit/hash/test.c
Examining data/radare2-4.3.1+dfsg/test/unit/legacy_unit/parse/parse.c
Examining data/radare2-4.3.1+dfsg/test/unit/legacy_unit/reg/p.c
Examining data/radare2-4.3.1+dfsg/test/unit/legacy_unit/reg/regdiff.c
Examining data/radare2-4.3.1+dfsg/test/unit/legacy_unit/reg/test.c
Examining data/radare2-4.3.1+dfsg/test/unit/legacy_unit/search/test-regexp.c
Examining data/radare2-4.3.1+dfsg/test/unit/legacy_unit/search/test-str.c
Examining data/radare2-4.3.1+dfsg/test/unit/legacy_unit/search/test.c
Examining data/radare2-4.3.1+dfsg/test/unit/legacy_unit/socket/client.c
Examining data/radare2-4.3.1+dfsg/test/unit/legacy_unit/socket/serverssl.c
Examining data/radare2-4.3.1+dfsg/test/unit/legacy_unit/socket/test.c
Examining data/radare2-4.3.1+dfsg/test/unit/legacy_unit/socket/testls.c
Examining data/radare2-4.3.1+dfsg/test/unit/legacy_unit/socket/testssl.c
Examining data/radare2-4.3.1+dfsg/test/unit/legacy_unit/syscall/hello.c
Examining data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/argv.c
Examining data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/array.c
Examining data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/big.c
Examining data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/copy.c
Examining data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/diff/test.c
Examining data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/plugin.c
Examining data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/pool.c
Examining data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/test-plugin.c
Examining data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/test_cmd_str.c
Examining data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/test_file_slurp_hexpairs.c
Examining data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/test_graph.c
Examining data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/test_queue.c
Examining data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/test_str.c
Examining data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/test_sys.c
Examining data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/threads.c
Examining data/radare2-4.3.1+dfsg/test/unit/minunit.h
Examining data/radare2-4.3.1+dfsg/test/unit/test_addr_interval.c
Examining data/radare2-4.3.1+dfsg/test/unit/test_anal_block.c
Examining data/radare2-4.3.1+dfsg/test/unit/test_anal_function.c
Examining data/radare2-4.3.1+dfsg/test/unit/test_anal_hints.c
Examining data/radare2-4.3.1+dfsg/test/unit/test_base64.c
Examining data/radare2-4.3.1+dfsg/test/unit/test_bin.c
Examining data/radare2-4.3.1+dfsg/test/unit/test_bitmap.c
Examining data/radare2-4.3.1+dfsg/test/unit/test_buf.c
Examining data/radare2-4.3.1+dfsg/test/unit/test_cons.c
Examining data/radare2-4.3.1+dfsg/test/unit/test_contrbtree.c
Examining data/radare2-4.3.1+dfsg/test/unit/test_debruijn.c
Examining data/radare2-4.3.1+dfsg/test/unit/test_diff.c
Examining data/radare2-4.3.1+dfsg/test/unit/test_esil_dfg_filter.c
Examining data/radare2-4.3.1+dfsg/test/unit/test_event.c
Examining data/radare2-4.3.1+dfsg/test/unit/test_flags.c
Examining data/radare2-4.3.1+dfsg/test/unit/test_glob.c
Examining data/radare2-4.3.1+dfsg/test/unit/test_hex.c
Examining data/radare2-4.3.1+dfsg/test/unit/test_intervaltree.c
Examining data/radare2-4.3.1+dfsg/test/unit/test_io.c
Examining data/radare2-4.3.1+dfsg/test/unit/test_list.c
Examining data/radare2-4.3.1+dfsg/test/unit/test_parse_ctype.c
Examining data/radare2-4.3.1+dfsg/test/unit/test_queue.c
Examining data/radare2-4.3.1+dfsg/test/unit/test_range.c
Examining data/radare2-4.3.1+dfsg/test/unit/test_rbtree.c
Examining data/radare2-4.3.1+dfsg/test/unit/test_reg.c
Examining data/radare2-4.3.1+dfsg/test/unit/test_skiplist.c
Examining data/radare2-4.3.1+dfsg/test/unit/test_spaces.c
Examining data/radare2-4.3.1+dfsg/test/unit/test_sparse.c
Examining data/radare2-4.3.1+dfsg/test/unit/test_stack.c
Examining data/radare2-4.3.1+dfsg/test/unit/test_str.c
Examining data/radare2-4.3.1+dfsg/test/unit/test_strbuf.c
Examining data/radare2-4.3.1+dfsg/test/unit/test_table.c
Examining data/radare2-4.3.1+dfsg/test/unit/test_tree.c
Examining data/radare2-4.3.1+dfsg/test/unit/test_uleb128.c
Examining data/radare2-4.3.1+dfsg/test/unit/test_unum.c
Examining data/radare2-4.3.1+dfsg/test/unit/test_util.c
Examining data/radare2-4.3.1+dfsg/test/unit/test_vector.c

FINAL RESULTS:

data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_debug.c:629:12:  [5] (race) readlink:
  This accepts filename arguments; if an attacker can move those files or
  change the link content, a race condition results. Also, it does not
  terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach.
	int ret = readlink (path, buf, sizeof (buf));
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_debug.c:1225:9:  [5] (race) readlink:
  This accepts filename arguments; if an attacker can move those files or
  change the link content, a race condition results. Also, it does not
  terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach.
		(void)readlink (file, buf, sizeof (buf) - 1);
data/radare2-4.3.1+dfsg/libr/fs/shell.c:130:6:  [5] (buffer) strncat:
  Easily used incorrectly (e.g., incorrectly computing the correct maximum
  size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
  or automatically resizing strings. Risk is high; the length parameter
  appears to be a constant, instead of computing the number of characters
  left.
					strncat (str, buf + 3, sizeof (buf) - 1);
data/radare2-4.3.1+dfsg/libr/include/sflib/darwin-arm-64/sflib.h:44:33:  [5] (race) chmod:
  This accepts filename arguments; if an attacker can move those files, a
  race condition results. (CWE-362). Use fchmod( ) instead.
static inline _sfsyscall2( int, chmod, const char *, path, mode_t, mode )
data/radare2-4.3.1+dfsg/libr/include/sflib/darwin-arm-64/sflib.h:45:33:  [5] (race) chown:
  This accepts filename arguments; if an attacker can move those files, a
  race condition results. (CWE-362). Use fchown( ) instead.
static inline _sfsyscall3( int, chown, const char *, path, uid_t, owner, gid_t, group )
data/radare2-4.3.1+dfsg/libr/include/sflib/darwin-arm-64/sflib.h:85:33:  [5] (race) readlink:
  This accepts filename arguments; if an attacker can move those files or
  change the link content, a race condition results. Also, it does not
  terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach.
static inline _sfsyscall3( int, readlink, const char *, path, char *, buf, size_t, bufsiz )
data/radare2-4.3.1+dfsg/libr/include/sflib/darwin-x86-32/sflib.h:44:33:  [5] (race) chmod:
  This accepts filename arguments; if an attacker can move those files, a
  race condition results. (CWE-362). Use fchmod( ) instead.
static inline _sfsyscall2( int, chmod, const char *, path, mode_t, mode )
data/radare2-4.3.1+dfsg/libr/include/sflib/darwin-x86-32/sflib.h:45:33:  [5] (race) chown:
  This accepts filename arguments; if an attacker can move those files, a
  race condition results. (CWE-362). Use fchown( ) instead.
static inline _sfsyscall3( int, chown, const char *, path, uid_t, owner, gid_t, group )
data/radare2-4.3.1+dfsg/libr/include/sflib/darwin-x86-32/sflib.h:83:33:  [5] (race) readlink:
  This accepts filename arguments; if an attacker can move those files or
  change the link content, a race condition results. Also, it does not
  terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach.
static inline _sfsyscall3( int, readlink, const char *, path, char *, buf, size_t, bufsiz )
data/radare2-4.3.1+dfsg/libr/include/sflib/darwin-x86-64/sflib.h:44:33:  [5] (race) chmod:
  This accepts filename arguments; if an attacker can move those files, a
  race condition results. (CWE-362). Use fchmod( ) instead.
static inline _sfsyscall2( int, chmod, const char *, path, mode_t, mode )
data/radare2-4.3.1+dfsg/libr/include/sflib/darwin-x86-64/sflib.h:45:33:  [5] (race) chown:
  This accepts filename arguments; if an attacker can move those files, a
  race condition results. (CWE-362). Use fchown( ) instead.
static inline _sfsyscall3( int, chown, const char *, path, uid_t, owner, gid_t, group )
data/radare2-4.3.1+dfsg/libr/include/sflib/darwin-x86-64/sflib.h:83:33:  [5] (race) readlink:
  This accepts filename arguments; if an attacker can move those files or
  change the link content, a race condition results. Also, it does not
  terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach.
static inline _sfsyscall3( int, readlink, const char *, path, char *, buf, size_t, bufsiz )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-arm-32/sflib.h:121:33:  [5] (race) readlink:
  This accepts filename arguments; if an attacker can move those files or
  change the link content, a race condition results. Also, it does not
  terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach.
static inline _sfsyscall3( int, readlink, const char *, path, char *, buf, size_t, bufsiz )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-arm-32/sflib.h:122:33:  [5] (race) chmod:
  This accepts filename arguments; if an attacker can move those files, a
  race condition results. (CWE-362). Use fchmod( ) instead.
static inline _sfsyscall2( int, chmod, const char *, path, mode_t, mode )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-arm-32/sflib.h:124:33:  [5] (race) chown:
  This accepts filename arguments; if an attacker can move those files, a
  race condition results. (CWE-362). Use fchown( ) instead.
static inline _sfsyscall3( int, chown, const char *, path, uid_t, owner, gid_t, group )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-arm-64/sflib.h:121:33:  [5] (race) readlink:
  This accepts filename arguments; if an attacker can move those files or
  change the link content, a race condition results. Also, it does not
  terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach.
static inline _sfsyscall3( int, readlink, const char *, path, char *, buf, size_t, bufsiz )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-arm-64/sflib.h:122:33:  [5] (race) chmod:
  This accepts filename arguments; if an attacker can move those files, a
  race condition results. (CWE-362). Use fchmod( ) instead.
static inline _sfsyscall2( int, chmod, const char *, path, mode_t, mode )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-arm-64/sflib.h:124:33:  [5] (race) chown:
  This accepts filename arguments; if an attacker can move those files, a
  race condition results. (CWE-362). Use fchown( ) instead.
static inline _sfsyscall3( int, chown, const char *, path, uid_t, owner, gid_t, group )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-x86-32/sflib.h:46:33:  [5] (race) chmod:
  This accepts filename arguments; if an attacker can move those files, a
  race condition results. (CWE-362). Use fchmod( ) instead.
static inline _sfsyscall2( int, chmod, const char *, path, mode_t, mode )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-x86-32/sflib.h:116:33:  [5] (race) readlink:
  This accepts filename arguments; if an attacker can move those files or
  change the link content, a race condition results. Also, it does not
  terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach.
static inline _sfsyscall3( int, readlink, const char *, path, char *, buf, size_t, bufsiz )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-x86-32/sflib.h:210:33:  [5] (race) chown:
  This accepts filename arguments; if an attacker can move those files, a
  race condition results. (CWE-362). Use fchown( ) instead.
static inline _sfsyscall3( int, chown, const char *, path, uid_t, owner, gid_t, group )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-x86-64/sflib.h:121:33:  [5] (race) readlink:
  This accepts filename arguments; if an attacker can move those files or
  change the link content, a race condition results. Also, it does not
  terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach.
static inline _sfsyscall3( int, readlink, const char *, path, char *, buf, size_t, bufsiz )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-x86-64/sflib.h:122:33:  [5] (race) chmod:
  This accepts filename arguments; if an attacker can move those files, a
  race condition results. (CWE-362). Use fchmod( ) instead.
static inline _sfsyscall2( int, chmod, const char *, path, mode_t, mode )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-x86-64/sflib.h:124:33:  [5] (race) chown:
  This accepts filename arguments; if an attacker can move those files, a
  race condition results. (CWE-362). Use fchown( ) instead.
static inline _sfsyscall3( int, chown, const char *, path, uid_t, owner, gid_t, group )
data/radare2-4.3.1+dfsg/libr/magic/fsmagic.c:208:14:  [5] (race) readlink:
  This accepts filename arguments; if an attacker can move those files or
  change the link content, a race condition results. Also, it does not
  terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach.
		if ((nch = readlink (fn, buf, BUFSIZ-1)) <= 0) {
data/radare2-4.3.1+dfsg/libr/socket/socket.c:159:6:  [5] (race) chmod:
  This accepts filename arguments; if an attacker can move those files, a
  race condition results. (CWE-362). Use fchmod( ) instead.
	if (chmod (unix_name.sun_path, 0777) != 0) {
data/radare2-4.3.1+dfsg/libr/util/chmod.c:51:6:  [5] (race) chmod:
  This accepts filename arguments; if an attacker can move those files, a
  race condition results. (CWE-362). Use fchmod( ) instead.
	if (chmod (path, st.st_mode) == -1) {
data/radare2-4.3.1+dfsg/libr/util/file.c:760:9:  [5] (race) readlink:
  This accepts filename arguments; if an attacker can move those files or
  change the link content, a race condition results. Also, it does not
  terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach.
		ret = readlink (path, pathbuf, sizeof (pathbuf)-1);
data/radare2-4.3.1+dfsg/libr/util/sandbox.c:85:6:  [5] (race) readlink:
  This accepts filename arguments; if an attacker can move those files or
  change the link content, a race condition results. Also, it does not
  terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach.
	if (readlink (path, &ch, 1) != -1) {
data/radare2-4.3.1+dfsg/libr/util/sys.c:1186:8:  [5] (race) readlink:
  This accepts filename arguments; if an attacker can move those files or
  change the link content, a race condition results. Also, it does not
  terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach.
	ret = readlink (buf, pathbuf, sizeof (pathbuf)-1);
data/radare2-4.3.1+dfsg/shlr/tcc/tcclib.h:39:7:  [5] (buffer) gets:
  Does not check for buffer overflows (CWE-120, CWE-20). Use fgets() instead.
char *gets(char *s);
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_close.c:275:5:  [5] (race) chmod:
  This accepts filename arguments; if an attacker can move those files, a
  race condition results. (CWE-362). Use fchmod( ) instead.
    chmod(za->zn, 0666&~mask);
data/radare2-4.3.1+dfsg/libr/anal/anal.c:107:37:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
	anal->cb_printf = (PrintfCallback) printf;
data/radare2-4.3.1+dfsg/libr/anal/class.c:399:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (out, out_size, "%"PFMT64u, id);
data/radare2-4.3.1+dfsg/libr/anal/esil.c:430:2:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	snprintf (str, sizeof (str) - 1, "0x%" PFMT64x, num);
data/radare2-4.3.1+dfsg/libr/anal/esil.c:1916:4:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
			snprintf (res, sizeof (res), "0x%" PFMT64x, b);
data/radare2-4.3.1+dfsg/libr/anal/esil.c:1918:4:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
			snprintf (res, sizeof (res), "0x%" PFMT64x, c);
data/radare2-4.3.1+dfsg/libr/anal/esil.c:1930:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (res, sizeof (res), "0x%" PFMT64x, b & bitmask);
data/radare2-4.3.1+dfsg/libr/anal/fcn.c:30:24:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
#define EXISTS(x, ...) snprintf (key, sizeof (key) - 1, x, ## __VA_ARGS__), sdb_exists (DB, key)
data/radare2-4.3.1+dfsg/libr/anal/fcn.c:31:24:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
#define SETKEY(x, ...) snprintf (key, sizeof (key) - 1, x, ## __VA_ARGS__);
data/radare2-4.3.1+dfsg/libr/anal/fcn.c:315:4:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
			snprintf (tmp_buf + 5, MAX_FLG_NAME_SIZE - 6, "%"PFMT64u, addr);
data/radare2-4.3.1+dfsg/libr/anal/jmptbl.c:226:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (tmp, sizeof (tmp), "switch table (%"PFMT64u" cases) at 0x%"PFMT64x, offs / sz, jmptbl_loc);
data/radare2-4.3.1+dfsg/libr/anal/jmptbl.c:229:4:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
			snprintf (tmp, sizeof (tmp), "switch.0x%08"PFMT64x, ip);
data/radare2-4.3.1+dfsg/libr/anal/jmptbl.c:232:5:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
				snprintf (tmp, sizeof (tmp), "case.default.0x%"PFMT64x, default_case);
data/radare2-4.3.1+dfsg/libr/anal/meta.c:113:2:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	snprintf (key, sizeof (key)-1, "meta.%c.0x%"PFMT64x, type, addr);
data/radare2-4.3.1+dfsg/libr/anal/meta.c:152:2:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	snprintf (key, sizeof (key)-1, "meta.%c.0x%"PFMT64x".0x%"PFMT64x, type, addr, idx);
data/radare2-4.3.1+dfsg/libr/anal/meta.c:171:2:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	snprintf (key, sizeof (key)-1, "meta.%c.0x%"PFMT64x, type, addr);
data/radare2-4.3.1+dfsg/libr/anal/meta.c:198:2:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	snprintf (key, sizeof (key) - 1, "meta.%c.0x%"PFMT64x".0x%"PFMT64x, type, addr, idx);
data/radare2-4.3.1+dfsg/libr/anal/meta.c:267:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (key, sizeof (key)-1, "meta.%c.0x%"PFMT64x, type, addr);
data/radare2-4.3.1+dfsg/libr/anal/meta.c:269:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (key, sizeof (key)-1, "meta.0x%"PFMT64x, addr);
data/radare2-4.3.1+dfsg/libr/anal/meta.c:277:5:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
				snprintf (item_key, sizeof (item_key), "meta.%c.0x%" PFMT64x, *ptr, addr);
data/radare2-4.3.1+dfsg/libr/anal/meta.c:300:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (key, sizeof (key), "meta.%c.0x%" PFMT64x, type, addr);
data/radare2-4.3.1+dfsg/libr/anal/meta.c:342:2:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	snprintf (k, k_size, "meta.%c.0x%" PFMT64x, it->type, it->from);
data/radare2-4.3.1+dfsg/libr/anal/meta.c:420:2:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	snprintf (key, sizeof (key) - 1, "meta.0x%"PFMT64x, from);
data/radare2-4.3.1+dfsg/libr/anal/meta.c:455:2:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	snprintf (key, sizeof (key), "meta.0x%" PFMT64x, at);
data/radare2-4.3.1+dfsg/libr/anal/meta.c:471:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (key, sizeof (key), "meta.%c.0x%" PFMT64x, *infos, at);
data/radare2-4.3.1+dfsg/libr/anal/meta.c:856:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (key, sizeof (key)-1, "meta.%c.0x%"PFMT64x, types[i], addr);
data/radare2-4.3.1+dfsg/libr/anal/op.c:443:4:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
			snprintf (ret, sizeof (ret), "if (%s) goto 0x%"PFMT64x, cstr, op->jump);
data/radare2-4.3.1+dfsg/libr/anal/op.c:446:4:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
			snprintf (ret, sizeof (ret), "if (%s) goto 0x%"PFMT64x, "?", op->jump);
data/radare2-4.3.1+dfsg/libr/anal/op.c:450:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (ret, sizeof (ret), "goto 0x%"PFMT64x, op->jump);
data/radare2-4.3.1+dfsg/libr/anal/p/anal_arm_cs.c:796:4:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
			sprintf (buf, "%u,%s,%s",
data/radare2-4.3.1+dfsg/libr/anal/p/anal_arm_cs.c:802:4:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
			sprintf (buf, "%s",
data/radare2-4.3.1+dfsg/libr/anal/p/anal_arm_cs.c:810:4:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
			sprintf (buf, "%"PFMT64d, (ut64)
data/radare2-4.3.1+dfsg/libr/anal/p/anal_arm_cs.c:814:4:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
			sprintf (buf, "%"PFMT64d, (ut64)(ut32)
data/radare2-4.3.1+dfsg/libr/anal/p/anal_gb.c:726:4:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
			sprintf (mn, "%s", gb_op[data[0]].name);
data/radare2-4.3.1+dfsg/libr/anal/p/anal_gb.c:729:4:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
			sprintf (mn, "%s %s", cb_ops[data[1] >> 3], cb_regs[data[1] & 7]);
data/radare2-4.3.1+dfsg/libr/anal/p/anal_gb.c:732:4:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
			sprintf (mn, gb_op[data[0]].name, data[1]);
data/radare2-4.3.1+dfsg/libr/anal/p/anal_gb.c:735:4:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
			sprintf (mn, gb_op[data[0]].name, data[1] | (data[2] << 8));
data/radare2-4.3.1+dfsg/libr/anal/p/anal_gb.c:739:4:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
			sprintf (mn, gb_op[data[0]].name, reg);
data/radare2-4.3.1+dfsg/libr/anal/p/anal_mips_cs.c:145:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		sprintf (buf, "%s",
data/radare2-4.3.1+dfsg/libr/anal/p/anal_mips_cs.c:152:4:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
			sprintf (buf, "%"PFMT64d, x);
data/radare2-4.3.1+dfsg/libr/anal/p/anal_mips_cs.c:159:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		sprintf (buf, "%"PFMT64d",%s,-",
data/radare2-4.3.1+dfsg/libr/anal/p/anal_mips_cs.c:164:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		sprintf (buf, "0x%"PFMT64x",%s,+",
data/radare2-4.3.1+dfsg/libr/anal/p/anal_riscv.c:150:5:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
				snprintf (RISCVARGN(args), RISCVARGSIZE , "0x%"PFMT64x, (ut64) target);
data/radare2-4.3.1+dfsg/libr/anal/p/anal_riscv.c:154:5:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
				snprintf (RISCVARGN(args), RISCVARGSIZE , "0x%"PFMT64x, (ut64)target);
data/radare2-4.3.1+dfsg/libr/anal/p/anal_riscv.c:228:4:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
			snprintf (RISCVARGN(args), RISCVARGSIZE , "0x%"PFMT64x, (ut64)target);
data/radare2-4.3.1+dfsg/libr/anal/p/anal_riscv.c:232:4:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
			snprintf (RISCVARGN(args), RISCVARGSIZE , "0x%"PFMT64x, (ut64)target);
data/radare2-4.3.1+dfsg/libr/anal/p/anal_riscv_cs.c:148:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		sprintf (buf, "%s",
data/radare2-4.3.1+dfsg/libr/anal/p/anal_riscv_cs.c:155:4:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
			sprintf (buf, "%"PFMT64d, x);
data/radare2-4.3.1+dfsg/libr/anal/p/anal_riscv_cs.c:162:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		sprintf (buf, "%"PFMT64d",%s,-",
data/radare2-4.3.1+dfsg/libr/anal/p/anal_riscv_cs.c:167:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		sprintf (buf, "0x%"PFMT64x",%s,+",
data/radare2-4.3.1+dfsg/libr/anal/p/anal_rsp.c:56:4:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
			snprintf (parsed_operands[i].esil, sizeof (parsed_operands[i].esil), "%"PFMT64d, r_instr.operands[i].u);
data/radare2-4.3.1+dfsg/libr/anal/p/anal_rsp.c:60:4:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
			snprintf (parsed_operands[i].esil, sizeof (parsed_operands[i].esil), "%"PFMT64d, r_instr.operands[i].s);
data/radare2-4.3.1+dfsg/libr/anal/p/anal_rsp.c:75:4:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
			snprintf (parsed_operands[i].esil, sizeof (parsed_operands[i].esil), "%"PFMT64d, r_instr.operands[i].u);
data/radare2-4.3.1+dfsg/libr/anal/p/anal_x86_cs.c:128:44:  [4] (race) access:
  This usually indicates a security flaw. If an attacker can change anything
  along the path between the call to access() and the file's actual use
  (e.g., by moving files), the attacker can exploit the race condition
  (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
  and try to open the file directly.
		r_strbuf_appendf (buf, ",\"rw\":%d", op->access); // read , write, read|write
data/radare2-4.3.1+dfsg/libr/anal/p/anal_x86_cs.c:270:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (out, BUF_SZ, "%"PFMT64u, (ut64)op.imm);
data/radare2-4.3.1+dfsg/libr/anal/var.c:20:24:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
#define EXISTS(x, ...) snprintf (key, sizeof (key) - 1, x, ## __VA_ARGS__), sdb_exists (DB, key)
data/radare2-4.3.1+dfsg/libr/anal/var.c:21:24:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
#define SETKEY(x, ...) snprintf (key, sizeof (key) - 1, x, ## __VA_ARGS__);
data/radare2-4.3.1+dfsg/libr/anal/var.c:22:25:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
#define SETKEY2(x, ...) snprintf (key2, sizeof (key) - 1, x, ## __VA_ARGS__);
data/radare2-4.3.1+dfsg/libr/anal/var.c:23:24:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
#define SETVAL(x, ...) snprintf (val, sizeof (val) - 1, x, ## __VA_ARGS__);
data/radare2-4.3.1+dfsg/libr/anal/var.c:108:37:  [4] (race) access:
  This usually indicates a security flaw. If an attacker can change anything
  along the path between the call to access() and the file's actual use
  (e.g., by moving files), the attacker can exploit the race condition
  (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
  and try to open the file directly.
		sdb_set (a->sdb_fcns, var_access, access, 0);
data/radare2-4.3.1+dfsg/libr/anal/var.c:109:9:  [4] (race) access:
  This usually indicates a security flaw. If an attacker can change anything
  along the path between the call to access() and the file's actual use
  (e.g., by moving files), the attacker can exploit the race condition
  (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
  and try to open the file directly.
		free (access);
data/radare2-4.3.1+dfsg/libr/asm/arch/8051/8051_disas.c:50:4:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
			sprintf (subst, " %s", _8051_regs[val]);
data/radare2-4.3.1+dfsg/libr/asm/arch/8051/8051_disas.c:57:4:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
			sprintf (subst, "%s.", _8051_regs[val]);
data/radare2-4.3.1+dfsg/libr/asm/arch/amd29k/amd29k.c:527:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf(string, string_size, "%s 0x%" PFMT64x, instruction->mnemonic, ptr);
data/radare2-4.3.1+dfsg/libr/asm/arch/amd29k/amd29k.c:546:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf(string, string_size, "%s %s%d 0x%" PFMT64x, instruction->mnemonic, p0, AMD29K_LR (v0), ptr);
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-dis.c:171:39:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
#define WRITE_FORMAT(x,cb1,ca1,cb,ca) strcat (formatString,		\
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-dis.c:341:39:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
#define REG2NAME(num, name) case num: sprintf (bp, ""name); \
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-dis.c:358:8:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
			    sprintf (bp, "%s", ext);
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-dis.c:372:42:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
#define AUXREG2NAME(num, name) case num: sprintf (bp,""name); break;
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-dis.c:388:8:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
			    sprintf (bp, "%s", ext);
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-dis.c:400:8:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
	      sprintf (bp, "%s", va_arg (ap, char *));
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-dis.c:448:7:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
      strcat (state->instrBuffer, cc);
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-dis.c:875:7:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
      strcat (formatString,
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:254:39:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
#define WRITE_FORMAT(x,cb1,ca1,cb,ca) strcat(formatString,              \
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:437:39:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
#define REG2NAME(num, name) case num: sprintf(bp,""name); \
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:454:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
			  sprintf (bp, "%s", ext);
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:470:7:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		    sprintf (bp, "%s", ret);
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:475:8:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
			    sprintf (bp, "%s", ext);
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:486:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
	    sprintf(bp,"%s",va_arg(ap,char*));
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:582:3:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
		strcat (state->instrBuffer, cc);
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:2681:7:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
      strcat(formatString,
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-opc.c:804:3:  [4] (format) vprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
  vprintf (str, ap);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-opc.c:3009:2:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	snprintf (tb, sizeof (tb), ", %s #%" PRIi64, shift_name,
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-opc.c:3113:2:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	snprintf (buf, size, "%s, %s #%" PRIi64,
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-opc.c:3130:2:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	snprintf (buf, size, "%s, %s #%" PRIi64,
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-opc.c:3232:7:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
      snprintf (buf, size, "C%" PRIi64, opnd->imm.value);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-opc.c:3268:7:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
      snprintf (buf, size, "#%" PRIi64, opnd->imm.value);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-opc.c:3290:2:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	snprintf (buf, size, "#%" PRIi64, opnd->imm.value);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-opc.c:3303:2:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	snprintf (buf, size, "#%" PRIi64, opnd->imm.value);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-opc.c:3307:4:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	  snprintf (buf + len, size - len, ", %s #%" PRIi64,
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-opc.c:3319:2:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	snprintf (buf, size, "#%" PRIi64, opnd->imm.value);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-opc.c:3332:4:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	  snprintf (buf, size, "0x%" PRIx64, opnd->imm.value);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-opc.c:3349:2:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	snprintf (buf, size, "0x%" PRIx64 ", lsl #%" PRIi64, opnd->imm.value,
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-opc.c:3352:2:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	snprintf (buf, size, "0x%" PRIx64, opnd->imm.value);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-opc.c:3359:2:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	snprintf (buf, size, "0x%" PRIx64, opnd->imm.value);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-opc.c:3361:2:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	snprintf (buf, size, "0x%" PRIx64 ", %s #%" PRIi64, opnd->imm.value,
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-opc.c:3369:2:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	snprintf (buf, size, "#%" PRIi64 ", lsl #%" PRIi64, opnd->imm.value,
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-opc.c:3372:2:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	snprintf (buf, size, "#%" PRIi64, opnd->imm.value);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-opc.c:3445:7:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
      snprintf (buf, size, "0x%" PRIx64, addr);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-opc.c:3461:7:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
      snprintf (buf, size, "0x%" PRIx64, addr);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64.h:1181:61:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
aarch64_verbose (const char *, ...) __attribute__ ((format (printf, 1, 2)));
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:983:4:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
			strcat (temp, input[i]);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:987:4:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
			strcat (temp, input[i]);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:1153:2:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
	strcpy (ao->opstr, ao->op);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:6599:2:  [4] (shell) system:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
	system (cmd);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:6607:2:  [4] (shell) system:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
	system (cmd);
data/radare2-4.3.1+dfsg/libr/asm/arch/avr/format.c:51:2:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
	strcat (out, dInstruction.instruction->mnemonic);
data/radare2-4.3.1+dfsg/libr/asm/arch/avr/format.c:65:3:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
		strcat (out, strOperand);
data/radare2-4.3.1+dfsg/libr/asm/arch/avr/format.c:94:12:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		retVal = sprintf (strOperand, "%s%d", OPERAND_PREFIX_REGISTER,
data/radare2-4.3.1+dfsg/libr/asm/arch/avr/format.c:108:13:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
			retVal = sprintf(strOperand, "%s%s",
data/radare2-4.3.1+dfsg/libr/asm/arch/avr/format.c:111:13:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
			retVal = sprintf(strOperand, "%s%d",
data/radare2-4.3.1+dfsg/libr/asm/arch/avr/format.c:115:13:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
			retVal = sprintf(strOperand, "%s%02x",
data/radare2-4.3.1+dfsg/libr/asm/arch/avr/format.c:121:12:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		retVal = sprintf(strOperand, "%s%d", OPERAND_PREFIX_BIT,
data/radare2-4.3.1+dfsg/libr/asm/arch/avr/format.c:130:13:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
			retVal = sprintf(strOperand, "%s%0*X",
data/radare2-4.3.1+dfsg/libr/asm/arch/avr/format.c:154:12:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		retVal = sprintf(strOperand, "%s%0*x",
data/radare2-4.3.1+dfsg/libr/asm/arch/avr/format.c:159:12:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		retVal = sprintf(strOperand, "%s%02x",
data/radare2-4.3.1+dfsg/libr/asm/arch/avr/format.c:164:12:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		retVal = sprintf (strOperand, "%s%0*x",
data/radare2-4.3.1+dfsg/libr/asm/arch/avr/format.c:170:12:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		retVal = sprintf (strOperand, "%s%02x",
data/radare2-4.3.1+dfsg/libr/asm/arch/cris/gnu/cris-dis.c:560:3:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
  sprintf (outbuffer, signedp ? "%ld" : "%lu", number);
data/radare2-4.3.1+dfsg/libr/asm/arch/cris/gnu/cris-dis.c:618:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		  sprintf (outbuffer, "%s", cris_support_regs[i].name);
data/radare2-4.3.1+dfsg/libr/asm/arch/cris/gnu/cris-dis.c:1334:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (tp, sregp->name);
data/radare2-4.3.1+dfsg/libr/asm/arch/dcpu16/dis.c:61:27:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
	if (type <= 0x07) return sprintf(out, "%s", regs[type]);
data/radare2-4.3.1+dfsg/libr/asm/arch/dcpu16/dis.c:62:27:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
	if (type <= 0x0f) return sprintf(out, "[%s]", regs[type - 0x08]);
data/radare2-4.3.1+dfsg/libr/asm/arch/dcpu16/dis.c:63:27:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
	if (type <= 0x17) return sprintf(out, "[%s + %#hx]", regs[type - 0x10], value);
data/radare2-4.3.1+dfsg/libr/asm/arch/dcpu16/dis.c:64:27:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
	if (type <= 0x1d) return sprintf(out, "%s", regs[type - 0x18 + 0x08]);
data/radare2-4.3.1+dfsg/libr/asm/arch/dcpu16/dis.c:78:10:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		return sprintf(out, "%s %s",
data/radare2-4.3.1+dfsg/libr/asm/arch/dcpu16/dis.c:83:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
	return sprintf(out, "%s %s, %s", opName[o->b.opcode], arg, arg2);
data/radare2-4.3.1+dfsg/libr/asm/arch/ebc/ebc_disas.c:7:27:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		int len_chk_snprintf_ = snprintf (dst, sz, fmt, __VA_ARGS__); \
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:1779:11:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
          sprintf (buf, "did not encode expected number of bits: %d != %d\n"
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2252:13:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
            sprintf (buf, "cannot write to read-only register `%s'.",
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2332:13:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
            sprintf (buf, "cannot write to read-only register `%s:%s'.",
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2376:13:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
            sprintf (buf, "cannot write to read-only register `%s'.",
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2456:13:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
            sprintf (buf, "cannot write to read-only register `%s:%s'.",
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2500:13:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
            sprintf (buf, "cannot write to read-only register `%s'.",
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2580:13:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
            sprintf (buf, "cannot write to read-only register `%s:%s'.",
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2743:11:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
          sprintf (xx, "operand %c wrong number of bits found in %s, %d != %d",
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2792:15:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
          n = sprintf (buf, "%s", regs [i].name);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2883:9:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
    n = sprintf (buf, operand->dis_fmt, value + 1, value);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2901:12:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
      n += sprintf (buf + n, operand->dis_fmt, value);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:3072:20:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
            dst += sprintf (dst, PACKET_END_INNER);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:3074:20:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
            dst += sprintf (dst, PACKET_END_OUTER);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:3093:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
  strcpy (buf, operand->fmt);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:3094:3:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
  strcat (buf, suffix);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:3110:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
  sprintf(buf, "%s%s", operand->fmt, suffix);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:3176:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
  sprintf(xx, "Illegal modifier operand: %s", reg_name);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memub (%s + 0x%x) ; %s = memub (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hex_get_sub_reg(hi->ops[4].op.reg), hi->ops[5].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:55:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (%s + 0x%x) ; %s = memub (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hex_get_sub_reg(hi->ops[4].op.reg), hi->ops[5].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:76:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (%s + 0x%x) ; %s = memw (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hex_get_sub_reg(hi->ops[4].op.reg), hi->ops[5].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:94:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memub (%s + 0x%x) ; dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:109:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memub (%s + 0x%x) ; deallocframe", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:124:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memub (%s + 0x%x) ; if (! p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:139:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memub (%s + 0x%x) ; if (! p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:154:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memub (%s + 0x%x) ; if (! p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:169:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memub (%s + 0x%x) ; if (! p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:184:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memub (%s + 0x%x) ; if (p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:199:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memub (%s + 0x%x) ; if (p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:214:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memub (%s + 0x%x) ; if (p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:229:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memub (%s + 0x%x) ; if (p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:244:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memub (%s + 0x%x) ; jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:259:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (%s + 0x%x) ; dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:274:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (%s + 0x%x) ; deallocframe", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:289:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (%s + 0x%x) ; if (! p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:304:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (%s + 0x%x) ; if (! p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:319:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (%s + 0x%x) ; if (! p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:334:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (%s + 0x%x) ; if (! p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:349:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (%s + 0x%x) ; if (p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:364:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (%s + 0x%x) ; if (p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:379:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (%s + 0x%x) ; if (p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:394:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (%s + 0x%x) ; if (p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:409:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (%s + 0x%x) ; jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:428:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memub (%s + 0x%x) ; %s = memw (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:448:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memub (%s + 0x%x) ; %s = memd (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_regpair(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:469:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memub (%s + 0x%x) ; %s = memb (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hex_get_sub_reg(hi->ops[4].op.reg), hi->ops[5].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:490:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memub (%s + 0x%x) ; %s = memh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hex_get_sub_reg(hi->ops[4].op.reg), hi->ops[5].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:511:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memub (%s + 0x%x) ; %s = memuh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hex_get_sub_reg(hi->ops[4].op.reg), hi->ops[5].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:530:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (%s + 0x%x) ; %s = memw (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:550:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (%s + 0x%x) ; %s = memd (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_regpair(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:571:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (%s + 0x%x) ; %s = memb (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hex_get_sub_reg(hi->ops[4].op.reg), hi->ops[5].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:592:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (%s + 0x%x) ; %s = memh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hex_get_sub_reg(hi->ops[4].op.reg), hi->ops[5].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:613:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (%s + 0x%x) ; %s = memuh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hex_get_sub_reg(hi->ops[4].op.reg), hi->ops[5].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:631:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memb (%s + 0x%x) ; dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:646:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memb (%s + 0x%x) ; deallocframe", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:661:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memb (%s + 0x%x) ; if (! p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:676:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memb (%s + 0x%x) ; if (! p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:691:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memb (%s + 0x%x) ; if (! p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:706:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memb (%s + 0x%x) ; if (! p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:721:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memb (%s + 0x%x) ; if (p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:736:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memb (%s + 0x%x) ; if (p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:751:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memb (%s + 0x%x) ; if (p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:766:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memb (%s + 0x%x) ; if (p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:781:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memb (%s + 0x%x) ; jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:796:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memh (%s + 0x%x) ; dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:811:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memh (%s + 0x%x) ; deallocframe", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:826:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memh (%s + 0x%x) ; if (! p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:841:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memh (%s + 0x%x) ; if (! p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:856:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memh (%s + 0x%x) ; if (! p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:871:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memh (%s + 0x%x) ; if (! p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:886:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memh (%s + 0x%x) ; if (p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:901:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memh (%s + 0x%x) ; if (p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:916:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memh (%s + 0x%x) ; if (p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:931:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memh (%s + 0x%x) ; if (p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:946:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memh (%s + 0x%x) ; jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:961:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memuh (%s + 0x%x) ; dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:976:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memuh (%s + 0x%x) ; deallocframe", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:991:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memuh (%s + 0x%x) ; if (! p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1006:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memuh (%s + 0x%x) ; if (! p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1021:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memuh (%s + 0x%x) ; if (! p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1036:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memuh (%s + 0x%x) ; if (! p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1051:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memuh (%s + 0x%x) ; if (p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1066:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memuh (%s + 0x%x) ; if (p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1081:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memuh (%s + 0x%x) ; if (p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1096:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memuh (%s + 0x%x) ; if (p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1111:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memuh (%s + 0x%x) ; jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1124:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (Sp + 0x%x) ; dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1137:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (Sp + 0x%x) ; deallocframe", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1150:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (Sp + 0x%x) ; if (! p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1163:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (Sp + 0x%x) ; if (! p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1176:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (Sp + 0x%x) ; if (! p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1189:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (Sp + 0x%x) ; if (! p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1202:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (Sp + 0x%x) ; if (p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1215:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (Sp + 0x%x) ; if (p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1228:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (Sp + 0x%x) ; if (p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1241:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (Sp + 0x%x) ; if (p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1254:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (Sp + 0x%x) ; jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1268:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memd (Sp + 0x%x) ; dealloc_return", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1282:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memd (Sp + 0x%x) ; deallocframe", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1296:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memd (Sp + 0x%x) ; if (! p0) dealloc_return", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1310:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memd (Sp + 0x%x) ; if (! p0) jumpr Lr", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1324:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memd (Sp + 0x%x) ; if (! p0.new) dealloc_return:nt", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1338:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memd (Sp + 0x%x) ; if (! p0.new) jumpr:nt Lr", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1352:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memd (Sp + 0x%x) ; if (p0) dealloc_return", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1366:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memd (Sp + 0x%x) ; if (p0) jumpr Lr", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1380:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memd (Sp + 0x%x) ; if (p0.new) dealloc_return:nt", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1394:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memd (Sp + 0x%x) ; if (p0.new) jumpr:nt Lr", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1408:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memd (Sp + 0x%x) ; jumpr Lr", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1427:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memb (%s + 0x%x) ; %s = memw (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1447:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memb (%s + 0x%x) ; %s = memd (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_regpair(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1468:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memb (%s + 0x%x) ; %s = memb (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hex_get_sub_reg(hi->ops[4].op.reg), hi->ops[5].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1487:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memh (%s + 0x%x) ; %s = memw (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1507:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memh (%s + 0x%x) ; %s = memd (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_regpair(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1528:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memh (%s + 0x%x) ; %s = memb (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hex_get_sub_reg(hi->ops[4].op.reg), hi->ops[5].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1549:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memh (%s + 0x%x) ; %s = memh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hex_get_sub_reg(hi->ops[4].op.reg), hi->ops[5].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1570:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memh (%s + 0x%x) ; %s = memuh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hex_get_sub_reg(hi->ops[4].op.reg), hi->ops[5].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1589:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memuh (%s + 0x%x) ; %s = memw (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1609:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memuh (%s + 0x%x) ; %s = memd (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_regpair(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1630:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memuh (%s + 0x%x) ; %s = memb (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hex_get_sub_reg(hi->ops[4].op.reg), hi->ops[5].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1651:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memuh (%s + 0x%x) ; %s = memuh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hex_get_sub_reg(hi->ops[4].op.reg), hi->ops[5].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1668:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (Sp + 0x%x) ; %s = memw (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1686:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (Sp + 0x%x) ; %s = memd (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1705:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memd (Sp + 0x%x) ; %s = memd (Sp + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1771:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; p0 = cmp.eq (%s, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1789:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; %s = add (%s, Rx)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1807:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; %s = add (Rx, %s)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1824:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; %s = add (%s, Rx)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1841:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; %s = add (Rx, %s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1858:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; p0 = cmp.eq (%s, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1875:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; %s = add (%s, Rx)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1892:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; %s = add (Rx, %s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1909:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; p0 = cmp.eq (%s, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1926:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; %s = add (%s, Rx)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1943:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; %s = add (Rx, %s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1960:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; p0 = cmp.eq (%s, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1977:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; p0 = cmp.eq (%s, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1994:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; %s = add (%s, Rx)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2011:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; %s = add (Rx, %s)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2028:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; %s = add (%s, Rx)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2045:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; %s = add (Rx, %s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2062:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; p0 = cmp.eq (%s, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2079:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; %s = add (%s, Rx)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2096:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; %s = add (Rx, %s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2113:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; p0 = cmp.eq (%s, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2130:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; %s = add (%s, Rx)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2147:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; %s = add (Rx, %s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2164:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; p0 = cmp.eq (%s, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2181:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; %s = add (%s, Rx)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2198:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; %s = add (Rx, %s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2215:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; p0 = cmp.eq (%s, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2232:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; %s = add (%s, Rx)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2249:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; %s = add (Rx, %s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2266:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; p0 = cmp.eq (%s, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2279:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; %s = #-1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2295:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; %s = combine (#0, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_regpair(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2311:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; %s = combine (#0, %s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_regpair(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2327:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; %s = combine (#1, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_regpair(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2343:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; %s = combine (#2, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_regpair(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2359:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; %s = combine (#3, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_regpair(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2375:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; %s = combine (%s, #0)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_regpair(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2388:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; if (! p0) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2401:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; if (! p0.new) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2414:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; if (p0) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2427:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; if (p0.new) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2443:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; %s = #-1", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2461:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; %s = 0x%x", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2479:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; %s = add (%s, #-1)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2497:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; %s = add (%s, #1)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2515:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; %s = add (Sp, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2533:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; %s = and (%s, #1)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2551:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; %s = and (%s, #255)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2570:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; %s = combine (#0, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2589:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; %s = combine (#0, %s)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2608:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; %s = combine (#1, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2627:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; %s = combine (#2, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2646:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; %s = combine (#3, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2665:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; %s = combine (%s, #0)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2681:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; if (! p0) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2697:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; if (! p0.new) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2713:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; if (p0) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2729:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; if (p0.new) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2747:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; %s = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2765:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; %s = sxtb (%s)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2783:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; %s = sxth (%s)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2801:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; %s = zxth (%s)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2816:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; %s = #-1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2834:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; %s = combine (#0, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2852:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; %s = combine (#1, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2870:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; %s = combine (#2, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2888:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; %s = combine (#3, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2903:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; if (! p0) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2918:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; if (! p0.new) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2933:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; if (p0) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2948:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; if (p0.new) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2965:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; %s = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2982:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; %s = add (%s, #-1)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:2999:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; %s = add (%s, #1)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3016:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; %s = and (%s, #1)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3033:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; %s = and (%s, #255)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3050:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; %s = sxtb (%s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3067:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; %s = sxth (%s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3084:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; %s = zxth (%s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3102:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; %s = combine (#0, %s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3120:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; %s = combine (%s, #0)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3135:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; %s = #-1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3153:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; %s = combine (#0, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3171:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; %s = combine (#1, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3189:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; %s = combine (#2, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3207:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; %s = combine (#3, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3222:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; if (! p0) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3237:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; if (! p0.new) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3252:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; if (p0) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3267:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; if (p0.new) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3282:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; %s = #-1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3300:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; %s = combine (#0, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3318:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; %s = combine (#1, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3336:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; %s = combine (#2, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3354:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; %s = combine (#3, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3369:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; if (! p0) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3384:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; if (! p0.new) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3399:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; if (p0) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3414:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; if (p0.new) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3431:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; %s = add (%s, #-1)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3448:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; %s = and (%s, #255)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3465:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; %s = sxtb (%s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3482:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; %s = sxth (%s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3499:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; %s = zxth (%s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3517:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; %s = combine (#0, %s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3535:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; %s = combine (%s, #0)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3552:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; %s = add (%s, #-1)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3569:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; %s = add (%s, #1)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3586:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; %s = and (%s, #1)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3603:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; %s = and (%s, #255)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3620:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; %s = sxtb (%s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3637:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; %s = sxth (%s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3654:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; %s = zxth (%s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3672:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; %s = combine (#0, %s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3690:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; %s = combine (%s, #0)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3705:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; %s = #-1", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3722:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; %s = add (%s, #-1)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3739:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; %s = add (%s, #1)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3756:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; %s = add (Sp, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3773:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; %s = and (%s, #1)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3790:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; %s = and (%s, #255)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3808:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; %s = combine (#0, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3826:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; %s = combine (#0, %s)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3844:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; %s = combine (#1, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3862:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; %s = combine (#2, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3880:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; %s = combine (#3, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3898:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; %s = combine (%s, #0)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3913:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; if (! p0) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3928:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; if (! p0.new) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3943:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; if (p0) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3958:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; if (p0.new) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3975:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; %s = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:3992:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; %s = sxtb (%s)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4009:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; %s = sxth (%s)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4026:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; %s = zxth (%s)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4041:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; %s = #-1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4059:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; %s = combine (#0, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4077:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; %s = combine (#1, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4095:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; %s = combine (#2, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4113:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; %s = combine (#3, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4128:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; if (! p0) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4143:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; if (! p0.new) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4158:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; if (p0) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4173:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; if (p0.new) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4188:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; %s = #-1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4206:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; %s = combine (#0, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4224:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; %s = combine (#1, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4242:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; %s = combine (#2, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4260:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; %s = combine (#3, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4275:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; if (! p0) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4290:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; if (! p0.new) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4305:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; if (p0) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4320:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; if (p0.new) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4337:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; %s = add (%s, #-1)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4354:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; %s = and (%s, #1)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4371:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; %s = and (%s, #255)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4388:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; %s = sxtb (%s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4405:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; %s = sxth (%s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4422:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; %s = zxth (%s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4440:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; %s = combine (#0, %s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4458:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; %s = combine (%s, #0)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4475:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; %s = and (%s, #255)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4493:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; %s = combine (#0, %s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4511:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; %s = combine (%s, #0)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4526:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; %s = #-1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4544:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; %s = combine (#0, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4562:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; %s = combine (#1, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4580:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; %s = combine (#2, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4598:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; %s = combine (#3, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4613:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; if (! p0) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4628:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; if (! p0.new) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4643:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; if (p0) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4658:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; if (p0.new) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4675:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; %s = and (%s, #255)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4692:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; %s = sxtb (%s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4709:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; %s = zxth (%s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4727:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; %s = combine (#0, %s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4745:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; %s = combine (%s, #0)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4760:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; %s = #-1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4778:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; %s = combine (#0, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4796:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; %s = combine (#1, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4814:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; %s = combine (#2, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4832:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; %s = combine (#3, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4847:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; if (! p0) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4862:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; if (! p0.new) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4877:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; if (p0) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4892:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; if (p0.new) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4909:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; %s = and (%s, #255)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4926:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; %s = sxtb (%s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4943:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; %s = sxth (%s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4960:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; %s = zxth (%s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4978:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; %s = combine (#0, %s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:4996:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; %s = combine (%s, #0)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5011:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; %s = #-1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5029:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; %s = combine (#0, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5047:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; %s = combine (#1, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5065:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; %s = combine (#2, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5083:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; %s = combine (#3, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5098:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; if (! p0) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5113:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; if (! p0.new) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5128:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; if (p0) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5143:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; if (p0.new) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5160:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; %s = and (%s, #255)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5177:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; %s = zxth (%s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5195:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; %s = combine (#0, %s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5213:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; %s = combine (%s, #0)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5232:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, 0x%x) ; %s = combine (#0, 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5251:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, 0x%x) ; %s = combine (#0, %s)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5270:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, 0x%x) ; %s = combine (#1, 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5289:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, 0x%x) ; %s = combine (#2, 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5308:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, 0x%x) ; %s = combine (#3, 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5327:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, 0x%x) ; %s = combine (%s, #0)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5346:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, %s) ; %s = combine (#0, %s)", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5365:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, %s) ; %s = combine (%s, #0)", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5384:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#1, 0x%x) ; %s = combine (#0, %s)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5403:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#1, 0x%x) ; %s = combine (#1, 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5422:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#1, 0x%x) ; %s = combine (#2, 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5441:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#1, 0x%x) ; %s = combine (#3, 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5460:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#1, 0x%x) ; %s = combine (%s, #0)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5479:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#2, 0x%x) ; %s = combine (#0, %s)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5498:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#2, 0x%x) ; %s = combine (#2, 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5517:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#2, 0x%x) ; %s = combine (#3, 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5536:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#2, 0x%x) ; %s = combine (%s, #0)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5555:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#3, 0x%x) ; %s = combine (#0, %s)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5574:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#3, 0x%x) ; %s = combine (#3, 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5593:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#3, 0x%x) ; %s = combine (%s, #0)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5612:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (%s, #0) ; %s = combine (%s, #0)", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5627:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; %s = #-1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5645:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; %s = combine (#0, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5663:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; %s = combine (#1, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5681:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; %s = combine (#2, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5699:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; %s = combine (#3, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5714:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; if (! p0) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5729:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; if (! p0.new) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5744:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; if (p0) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5759:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; if (p0.new) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5777:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; %s = combine (#0, %s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5795:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; %s = combine (%s, #0)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5812:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; p0 = cmp.eq (%s, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5831:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; %s = #-1", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5852:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; %s = 0x%x", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5873:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; %s = add (%s, #-1)", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5894:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; %s = add (%s, #1)", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5915:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; %s = add (Sp, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5936:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; %s = and (%s, #1)", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5957:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; %s = and (%s, #255)", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:5979:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; %s = combine (#0, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6001:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; %s = combine (#0, %s)", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6023:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; %s = combine (#1, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6045:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; %s = combine (#2, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6067:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; %s = combine (#3, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6089:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; %s = combine (%s, #0)", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6108:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; if (! p0) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6127:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; if (! p0.new) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6146:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; if (p0) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6165:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; if (p0.new) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6186:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; p0 = cmp.eq (%s, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6207:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; %s = %s", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6228:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; %s = sxtb (%s)", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6249:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; %s = sxth (%s)", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6270:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; %s = zxth (%s)", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6285:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; %s = #-1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6303:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; %s = combine (#0, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6321:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; %s = combine (#1, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6339:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; %s = combine (#2, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6357:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; %s = combine (#3, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6372:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; if (! p0) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6387:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; if (! p0.new) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6402:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; if (p0) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6417:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; if (p0.new) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6435:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; %s = combine (#0, %s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6453:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; %s = combine (%s, #0)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6470:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; p0 = cmp.eq (%s, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6487:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Ry) ; %s = add (%s, Rx)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6504:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Ry) ; %s = add (Rx, %s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6527:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Ry, %d) ; %s = add (Rx, %d)", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6547:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Ry, %d) ; %s = add (%s, Rx)", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6567:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Ry, %d) ; %s = add (Rx, %s)", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6584:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Ry, %s) ; %s = add (%s, Rx)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6601:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Ry, %s) ; %s = add (Rx, %s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6617:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0) %s = #0 ; %s = combine (#0, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_regpair(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6633:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0) %s = #0 ; %s = combine (#0, %s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_regpair(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6649:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0) %s = #0 ; %s = combine (#1, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_regpair(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6665:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0) %s = #0 ; %s = combine (#2, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_regpair(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6681:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0) %s = #0 ; %s = combine (#3, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_regpair(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6697:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0) %s = #0 ; %s = combine (%s, #0)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_regpair(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6710:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0) %s = #0 ; if (! p0) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6726:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0.new) %s = #0 ; %s = combine (#0, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_regpair(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6742:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0.new) %s = #0 ; %s = combine (#0, %s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_regpair(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6758:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0.new) %s = #0 ; %s = combine (#1, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_regpair(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6774:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0.new) %s = #0 ; %s = combine (#2, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_regpair(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6790:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0.new) %s = #0 ; %s = combine (#3, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_regpair(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6806:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0.new) %s = #0 ; %s = combine (%s, #0)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_regpair(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6819:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0.new) %s = #0 ; if (! p0) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6832:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0.new) %s = #0 ; if (! p0.new) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6845:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0.new) %s = #0 ; if (p0) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6861:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0) %s = #0 ; %s = combine (#0, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_regpair(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6877:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0) %s = #0 ; %s = combine (#0, %s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_regpair(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6893:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0) %s = #0 ; %s = combine (#1, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_regpair(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6909:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0) %s = #0 ; %s = combine (#2, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_regpair(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6925:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0) %s = #0 ; %s = combine (#3, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_regpair(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6941:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0) %s = #0 ; %s = combine (%s, #0)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_regpair(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6954:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0) %s = #0 ; if (! p0) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6967:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0) %s = #0 ; if (p0) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6983:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; %s = combine (#0, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_regpair(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:6999:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; %s = combine (#0, %s)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_regpair(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7015:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; %s = combine (#1, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_regpair(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7031:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; %s = combine (#2, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_regpair(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7047:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; %s = combine (#3, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_regpair(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7063:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; %s = combine (%s, #0)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_regpair(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7076:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; if (! p0) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7089:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; if (! p0.new) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7102:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; if (p0) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7115:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; if (p0.new) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7130:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; %s = #-1", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7148:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; %s = combine (#0, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7166:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; %s = combine (#1, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7184:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; %s = combine (#2, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7202:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; %s = combine (#3, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7217:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; if (! p0) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7232:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; if (! p0.new) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7247:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; if (p0) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7262:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; if (p0.new) %s = #0", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7280:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; %s = combine (#0, %s)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7298:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; %s = combine (%s, #0)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7315:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; p0 = cmp.eq (%s, 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7335:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; %s = memub (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7352:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; %s = memw (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7372:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; %s = memub (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7392:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; %s = memw (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7411:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; %s = memub (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7430:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; %s = memw (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7449:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; %s = memub (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7468:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; %s = memw (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7487:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; %s = memub (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7506:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; %s = memw (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7525:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; %s = memub (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7544:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; %s = memw (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7563:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; %s = memub (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7582:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; %s = memw (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7601:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; %s = memub (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7620:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; %s = memw (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7639:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; %s = memub (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7658:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; %s = memw (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7677:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; %s = memub (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7696:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; %s = memw (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7715:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; %s = memub (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7734:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; %s = memw (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7754:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, 0x%x) ; %s = memub (%s + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7774:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, 0x%x) ; %s = memw (%s + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7794:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, %s) ; %s = memub (%s + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7814:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, %s) ; %s = memw (%s + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7834:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#1, 0x%x) ; %s = memub (%s + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7854:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#1, 0x%x) ; %s = memw (%s + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7874:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#2, 0x%x) ; %s = memub (%s + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7894:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#2, 0x%x) ; %s = memw (%s + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7914:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#3, 0x%x) ; %s = memub (%s + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7934:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#3, 0x%x) ; %s = memw (%s + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7954:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (%s, #0) ; %s = memub (%s + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7974:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (%s, #0) ; %s = memw (%s + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:7993:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; %s = memub (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8012:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; %s = memw (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8035:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; %s = memub (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8058:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; %s = memw (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8077:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; %s = memub (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8096:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; %s = memw (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8113:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0) %s = #0 ; %s = memub (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8130:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0) %s = #0 ; %s = memw (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8147:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0.new) %s = #0 ; %s = memub (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8164:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0.new) %s = #0 ; %s = memw (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8181:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0) %s = #0 ; %s = memub (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8198:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0) %s = #0 ; %s = memw (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8215:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; %s = memub (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8232:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; %s = memw (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8251:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; %s = memub (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8270:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; %s = memw (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8284:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8295:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; deallocframe", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8306:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; if (! p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8317:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; if (! p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8328:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; if (! p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8339:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; if (! p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8350:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; if (p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8361:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; if (p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8372:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; if (p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8383:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; if (p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8394:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8408:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8422:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; deallocframe", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8436:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; if (! p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8450:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; if (! p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8464:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; if (! p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8478:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; if (! p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8492:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; if (p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8506:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; if (p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8520:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; if (p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8534:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; if (p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8548:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8561:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8574:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; deallocframe", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8587:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; if (! p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8600:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; if (! p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8613:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; if (! p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8626:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; if (! p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8639:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; if (p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8652:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; if (p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8665:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; if (p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8678:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; if (p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8691:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8704:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8717:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; deallocframe", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8730:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; if (! p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8743:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; if (! p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8756:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; if (! p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8769:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; if (! p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8782:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; if (p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8795:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; if (p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8808:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; if (p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8821:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; if (p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8834:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8847:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8860:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; deallocframe", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8873:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; if (! p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8886:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; if (! p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8899:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; if (! p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8912:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; if (! p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8925:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; if (p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8938:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; if (p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8951:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; if (p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8964:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; if (p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8977:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:8990:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9003:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; deallocframe", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9016:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; if (! p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9029:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; if (! p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9042:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; if (! p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9055:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; if (! p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9068:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; if (p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9081:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; if (p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9094:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; if (p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9107:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; if (p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9120:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9133:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9146:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; deallocframe", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9159:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; if (! p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9172:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; if (! p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9185:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; if (! p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9198:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; if (! p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9211:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; if (p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9224:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; if (p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9237:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; if (p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9250:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; if (p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9263:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9276:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9289:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; deallocframe", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9302:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; if (! p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9315:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; if (! p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9328:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; if (! p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9341:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; if (! p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9354:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; if (p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9367:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; if (p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9380:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; if (p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9393:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; if (p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9406:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9419:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9432:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; deallocframe", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9445:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; if (! p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9458:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; if (! p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9471:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; if (! p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9484:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; if (! p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9497:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; if (p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9510:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; if (p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9523:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; if (p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9536:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; if (p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9549:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9562:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9575:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; deallocframe", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9588:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; if (! p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9601:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; if (! p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9614:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; if (! p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9627:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; if (! p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9640:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; if (p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9653:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; if (p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9666:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; if (p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9679:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; if (p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9692:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9705:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9718:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; deallocframe", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9731:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; if (! p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9744:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; if (! p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9757:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; if (! p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9770:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; if (! p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9783:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; if (p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9796:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; if (p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9809:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; if (p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9822:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; if (p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9835:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9849:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, 0x%x) ; dealloc_return", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9863:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, 0x%x) ; deallocframe", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9877:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, 0x%x) ; if (! p0) dealloc_return", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9891:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, 0x%x) ; if (! p0) jumpr Lr", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9905:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, 0x%x) ; if (! p0.new) dealloc_return:nt", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9919:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, 0x%x) ; if (! p0.new) jumpr:nt Lr", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9933:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, 0x%x) ; if (p0) dealloc_return", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9947:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, 0x%x) ; if (p0) jumpr Lr", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9961:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, 0x%x) ; if (p0.new) dealloc_return:nt", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9975:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, 0x%x) ; if (p0.new) jumpr:nt Lr", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:9989:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, 0x%x) ; jumpr Lr", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10003:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, %s) ; dealloc_return", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10017:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, %s) ; deallocframe", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10031:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, %s) ; if (! p0) dealloc_return", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10045:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, %s) ; if (! p0) jumpr Lr", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10059:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, %s) ; if (! p0.new) dealloc_return:nt", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10073:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, %s) ; if (! p0.new) jumpr:nt Lr", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10087:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, %s) ; if (p0) dealloc_return", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10101:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, %s) ; if (p0) jumpr Lr", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10115:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, %s) ; if (p0.new) dealloc_return:nt", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10129:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, %s) ; if (p0.new) jumpr:nt Lr", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10143:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, %s) ; jumpr Lr", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10157:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#1, 0x%x) ; dealloc_return", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10171:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#1, 0x%x) ; deallocframe", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10185:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#1, 0x%x) ; if (! p0) dealloc_return", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10199:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#1, 0x%x) ; if (! p0) jumpr Lr", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10213:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#1, 0x%x) ; if (! p0.new) dealloc_return:nt", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10227:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#1, 0x%x) ; if (! p0.new) jumpr:nt Lr", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10241:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#1, 0x%x) ; if (p0) dealloc_return", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10255:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#1, 0x%x) ; if (p0) jumpr Lr", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10269:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#1, 0x%x) ; if (p0.new) dealloc_return:nt", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10283:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#1, 0x%x) ; if (p0.new) jumpr:nt Lr", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10297:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#1, 0x%x) ; jumpr Lr", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10311:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#2, 0x%x) ; dealloc_return", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10325:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#2, 0x%x) ; deallocframe", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10339:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#2, 0x%x) ; if (! p0) dealloc_return", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10353:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#2, 0x%x) ; if (! p0) jumpr Lr", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10367:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#2, 0x%x) ; if (! p0.new) dealloc_return:nt", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10381:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#2, 0x%x) ; if (! p0.new) jumpr:nt Lr", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10395:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#2, 0x%x) ; if (p0) dealloc_return", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10409:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#2, 0x%x) ; if (p0) jumpr Lr", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10423:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#2, 0x%x) ; if (p0.new) dealloc_return:nt", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10437:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#2, 0x%x) ; if (p0.new) jumpr:nt Lr", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10451:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#2, 0x%x) ; jumpr Lr", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10465:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#3, 0x%x) ; dealloc_return", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10479:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#3, 0x%x) ; deallocframe", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10493:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#3, 0x%x) ; if (! p0) dealloc_return", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10507:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#3, 0x%x) ; if (! p0) jumpr Lr", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10521:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#3, 0x%x) ; if (! p0.new) dealloc_return:nt", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10535:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#3, 0x%x) ; if (! p0.new) jumpr:nt Lr", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10549:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#3, 0x%x) ; if (p0) dealloc_return", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10563:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#3, 0x%x) ; if (p0) jumpr Lr", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10577:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#3, 0x%x) ; if (p0.new) dealloc_return:nt", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10591:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#3, 0x%x) ; if (p0.new) jumpr:nt Lr", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10605:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#3, 0x%x) ; jumpr Lr", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10619:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (%s, #0) ; dealloc_return", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10633:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (%s, #0) ; deallocframe", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10647:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (%s, #0) ; if (! p0) dealloc_return", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10661:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (%s, #0) ; if (! p0) jumpr Lr", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10675:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (%s, #0) ; if (! p0.new) dealloc_return:nt", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10689:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (%s, #0) ; if (! p0.new) jumpr:nt Lr", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10703:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (%s, #0) ; if (p0) dealloc_return", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10717:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (%s, #0) ; if (p0) jumpr Lr", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10731:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (%s, #0) ; if (p0.new) dealloc_return:nt", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10745:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (%s, #0) ; if (p0.new) jumpr:nt Lr", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10759:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (%s, #0) ; jumpr Lr", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10776:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; %s = memb (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10793:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; %s = memh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10810:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; %s = memuh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10825:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; %s = memw (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10841:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; %s = memd (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_regpair(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10861:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; %s = memb (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10881:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; %s = memh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10901:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; %s = memuh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10919:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; %s = memw (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10938:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; %s = memd (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10955:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; %s = memw (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10973:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; %s = memd (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:10992:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; %s = memb (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11011:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; %s = memh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11030:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; %s = memuh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11047:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; %s = memw (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11065:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; %s = memd (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11082:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; %s = memw (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11100:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; %s = memd (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11119:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; %s = memb (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11138:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; %s = memh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11157:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; %s = memuh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11176:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; %s = memb (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11195:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; %s = memh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11214:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; %s = memuh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11233:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; %s = memb (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11252:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; %s = memh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11271:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; %s = memuh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11288:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; %s = memw (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11306:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; %s = memd (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11323:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; %s = memw (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11341:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; %s = memd (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11358:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; %s = memw (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11376:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; %s = memd (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11395:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; %s = memb (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11414:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; %s = memh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11433:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; %s = memuh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11452:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; %s = memb (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11471:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; %s = memh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11490:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; %s = memuh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11507:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; %s = memw (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11525:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; %s = memd (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11544:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; %s = memb (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11563:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; %s = memh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11582:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; %s = memuh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11599:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; %s = memw (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11617:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; %s = memd (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11636:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; %s = memb (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11655:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; %s = memh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11674:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; %s = memuh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11691:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; %s = memw (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11709:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; %s = memd (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11728:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; %s = memb (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11747:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; %s = memh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11766:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; %s = memuh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11786:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, 0x%x) ; %s = memb (%s + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11806:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, 0x%x) ; %s = memh (%s + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11826:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, 0x%x) ; %s = memuh (%s + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11844:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, 0x%x) ; %s = memw (Sp + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11863:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, 0x%x) ; %s = memd (Sp + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11881:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, %s) ; %s = memw (Sp + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11900:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, %s) ; %s = memd (Sp + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11920:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, %s) ; %s = memb (%s + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11940:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, %s) ; %s = memh (%s + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11960:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, %s) ; %s = memuh (%s + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:11980:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#1, 0x%x) ; %s = memb (%s + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12000:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#1, 0x%x) ; %s = memh (%s + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12020:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#1, 0x%x) ; %s = memuh (%s + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12038:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#1, 0x%x) ; %s = memw (Sp + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12057:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#1, 0x%x) ; %s = memd (Sp + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12077:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#2, 0x%x) ; %s = memb (%s + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12097:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#2, 0x%x) ; %s = memh (%s + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12117:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#2, 0x%x) ; %s = memuh (%s + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12135:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#2, 0x%x) ; %s = memw (Sp + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12154:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#2, 0x%x) ; %s = memd (Sp + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12174:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#3, 0x%x) ; %s = memb (%s + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12194:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#3, 0x%x) ; %s = memh (%s + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12214:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#3, 0x%x) ; %s = memuh (%s + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12232:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#3, 0x%x) ; %s = memw (Sp + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12251:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#3, 0x%x) ; %s = memd (Sp + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12269:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (%s, #0) ; %s = memw (Sp + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12288:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (%s, #0) ; %s = memd (Sp + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12308:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (%s, #0) ; %s = memb (%s + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12328:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (%s, #0) ; %s = memh (%s + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12348:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (%s, #0) ; %s = memuh (%s + 0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12365:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; %s = memw (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12383:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; %s = memd (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12396:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12409:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; deallocframe", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12422:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; if (! p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12435:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; if (! p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12448:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; if (! p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12461:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; if (! p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12474:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; if (p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12487:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; if (p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12500:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; if (p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12513:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; if (p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12526:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12545:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; %s = memb (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12564:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; %s = memh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12583:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; %s = memuh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12606:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; %s = memb (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12629:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; %s = memh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12652:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; %s = memuh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12673:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; %s = memw (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12695:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; %s = memd (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12712:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12729:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; deallocframe", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12746:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; if (! p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12763:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; if (! p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12780:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; if (! p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12797:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; if (! p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12814:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; if (p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12831:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; if (p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12848:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; if (p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12865:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; if (p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12882:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12899:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; %s = memw (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12917:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; %s = memd (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12930:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12943:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; deallocframe", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12956:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; if (! p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12969:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; if (! p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12982:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; if (! p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:12995:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; if (! p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13008:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; if (p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13021:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; if (p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13034:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; if (p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13047:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; if (p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13060:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13079:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; %s = memb (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13098:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; %s = memh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13117:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; %s = memuh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13128:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0) %s = #0 ; dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13139:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0) %s = #0 ; deallocframe", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13150:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0) %s = #0 ; if (! p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13161:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0) %s = #0 ; if (! p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13172:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0) %s = #0 ; if (! p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13183:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0) %s = #0 ; if (! p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13194:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0) %s = #0 ; if (p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13205:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0) %s = #0 ; if (p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13216:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0) %s = #0 ; if (p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13227:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0) %s = #0 ; if (p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13238:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0) %s = #0 ; jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13255:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0) %s = #0 ; %s = memb (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13272:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0) %s = #0 ; %s = memh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13289:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0) %s = #0 ; %s = memuh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13304:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0) %s = #0 ; %s = memw (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13320:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0) %s = #0 ; %s = memd (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_regpair(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13331:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0.new) %s = #0 ; dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13342:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0.new) %s = #0 ; deallocframe", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13353:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0.new) %s = #0 ; if (! p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13364:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0.new) %s = #0 ; if (! p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13375:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0.new) %s = #0 ; if (! p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13386:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0.new) %s = #0 ; if (! p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13397:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0.new) %s = #0 ; if (p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13408:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0.new) %s = #0 ; if (p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13419:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0.new) %s = #0 ; if (p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13430:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0.new) %s = #0 ; if (p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13441:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0.new) %s = #0 ; jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13458:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0.new) %s = #0 ; %s = memb (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13475:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0.new) %s = #0 ; %s = memh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13492:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0.new) %s = #0 ; %s = memuh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13507:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0.new) %s = #0 ; %s = memw (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13523:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0.new) %s = #0 ; %s = memd (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_regpair(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13534:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0) %s = #0 ; dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13545:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0) %s = #0 ; deallocframe", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13556:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0) %s = #0 ; if (! p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13567:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0) %s = #0 ; if (! p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13578:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0) %s = #0 ; if (! p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13589:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0) %s = #0 ; if (! p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13600:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0) %s = #0 ; if (p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13611:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0) %s = #0 ; if (p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13622:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0) %s = #0 ; if (p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13633:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0) %s = #0 ; if (p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13644:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0) %s = #0 ; jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13661:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0) %s = #0 ; %s = memb (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13678:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0) %s = #0 ; %s = memh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13695:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0) %s = #0 ; %s = memuh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13710:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0) %s = #0 ; %s = memw (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13726:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0) %s = #0 ; %s = memd (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_regpair(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13737:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13748:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; deallocframe", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13759:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; if (! p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13770:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; if (! p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13781:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; if (! p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13792:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; if (! p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13803:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; if (p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13814:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; if (p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13825:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; if (p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13836:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; if (p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13847:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13864:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; %s = memb (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13881:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; %s = memh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13898:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; %s = memuh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13913:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; %s = memw (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13929:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; %s = memd (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_regpair(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13946:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; %s = memw (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13964:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; %s = memd (Sp + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13977:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:13990:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; deallocframe", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14003:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; if (! p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14016:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; if (! p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14029:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; if (! p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14042:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; if (! p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14055:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; if (p0) dealloc_return", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14068:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; if (p0) jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14081:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; if (p0.new) dealloc_return:nt", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14094:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; if (p0.new) jumpr:nt Lr", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14107:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; jumpr Lr", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14126:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; %s = memb (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14145:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; %s = memh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14164:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; %s = memuh (%s + 0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14184:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; memb (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14201:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; memw (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14221:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; memb (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14241:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; memw (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14260:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; memb (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14279:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; memw (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14298:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; memb (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14317:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; memw (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14336:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; memb (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14355:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; memw (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14374:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; memb (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14393:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; memw (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14412:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; memb (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14431:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; memw (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14450:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; memb (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14469:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; memw (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14488:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; memb (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14507:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; memw (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14526:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; memb (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14545:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; memw (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14564:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; memb (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14583:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; memw (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14603:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, 0x%x) ; memb (%s + 0x%x) = %s", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14623:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, 0x%x) ; memw (%s + 0x%x) = %s", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14643:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, %s) ; memb (%s + 0x%x) = %s", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14663:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, %s) ; memw (%s + 0x%x) = %s", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14683:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#1, 0x%x) ; memb (%s + 0x%x) = %s", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14703:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#1, 0x%x) ; memw (%s + 0x%x) = %s", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14723:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#2, 0x%x) ; memb (%s + 0x%x) = %s", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14743:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#2, 0x%x) ; memw (%s + 0x%x) = %s", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14763:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#3, 0x%x) ; memb (%s + 0x%x) = %s", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14783:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#3, 0x%x) ; memw (%s + 0x%x) = %s", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14803:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (%s, #0) ; memb (%s + 0x%x) = %s", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14823:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (%s, #0) ; memw (%s + 0x%x) = %s", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14842:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; memb (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14861:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; memw (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14884:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; memb (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14907:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; memw (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14926:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; memb (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14945:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; memw (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14962:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0) %s = #0 ; memb (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14979:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0) %s = #0 ; memw (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:14996:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0.new) %s = #0 ; memb (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15013:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0.new) %s = #0 ; memw (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15030:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0) %s = #0 ; memb (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15047:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0) %s = #0 ; memw (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15064:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; memb (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15081:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; memw (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15100:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; memb (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15119:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; memw (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15135:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; allocframe (0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15150:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; memb (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15165:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; memb (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15184:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; memd (Sp + %d) = %s", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15201:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; memh (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15216:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; memw (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15231:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; memw (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15246:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = #-1 ; memw (Sp + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15262:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; allocframe (0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15280:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; memb (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15298:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; memb (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15320:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; memd (Sp + %d) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, (st32) hi->ops[2].op.imm, hex_get_sub_regpair(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15340:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; memh (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15358:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; memw (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15376:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; memw (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15394:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = 0x%x ; memw (Sp + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15409:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; allocframe (0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15430:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; memd (Sp + %d) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), (st32) hi->ops[2].op.imm, hex_get_sub_regpair(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15447:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; memw (Sp + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15464:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; memb (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15481:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; memb (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15500:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; memh (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15517:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; memw (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15534:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = %s ; memw (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15549:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; allocframe (0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15570:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; memd (Sp + %d) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), (st32) hi->ops[2].op.imm, hex_get_sub_regpair(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15587:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; memw (Sp + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15602:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; allocframe (0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15623:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; memd (Sp + %d) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), (st32) hi->ops[2].op.imm, hex_get_sub_regpair(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15640:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; memw (Sp + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15657:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; memb (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15674:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; memb (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15693:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; memh (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15710:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; memw (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15727:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #-1) ; memw (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15744:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; memb (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15761:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; memb (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15780:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; memh (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15797:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; memw (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15814:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, #1) ; memw (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15829:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; allocframe (0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15846:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; memb (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15863:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; memb (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15884:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; memd (Sp + %d) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, (st32) hi->ops[2].op.imm, hex_get_sub_regpair(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15903:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; memh (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15920:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; memw (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15937:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; memw (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15954:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Sp, 0x%x) ; memw (Sp + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15969:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; allocframe (0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:15990:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; memd (Sp + %d) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), (st32) hi->ops[2].op.imm, hex_get_sub_regpair(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16007:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; memw (Sp + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16022:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; allocframe (0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16043:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; memd (Sp + %d) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), (st32) hi->ops[2].op.imm, hex_get_sub_regpair(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16060:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; memw (Sp + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16077:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; memb (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16094:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; memb (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16113:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; memh (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16130:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; memw (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16147:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #1) ; memw (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16164:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; memb (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16181:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; memb (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16200:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; memh (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16217:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; memw (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16234:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = and (%s, #255) ; memw (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16249:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; allocframe (0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16270:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; memd (Sp + %d) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), (st32) hi->ops[2].op.imm, hex_get_sub_regpair(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16287:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; memw (Sp + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16304:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; memb (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16321:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; memb (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16340:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; memh (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16357:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; memw (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16374:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxtb (%s) ; memw (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16389:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; allocframe (0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16410:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; memd (Sp + %d) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), (st32) hi->ops[2].op.imm, hex_get_sub_regpair(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16427:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; memw (Sp + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16444:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; memb (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16461:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; memb (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16480:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; memh (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16497:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; memw (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16514:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = sxth (%s) ; memw (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16529:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; allocframe (0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16550:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; memd (Sp + %d) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), (st32) hi->ops[2].op.imm, hex_get_sub_regpair(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16567:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; memw (Sp + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16584:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; memb (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16601:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; memb (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16620:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; memh (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16637:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; memw (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16654:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = zxth (%s) ; memw (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16670:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, 0x%x) ; allocframe (0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16688:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, 0x%x) ; memb (%s + 0x%x) = #0", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16706:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, 0x%x) ; memb (%s + 0x%x) = #1", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16728:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, 0x%x) ; memd (Sp + %d) = %s", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, (st32) hi->ops[2].op.imm, hex_get_sub_regpair(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16748:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, 0x%x) ; memh (%s + 0x%x) = %s", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16766:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, 0x%x) ; memw (%s + 0x%x) = #0", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16784:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, 0x%x) ; memw (%s + 0x%x) = #1", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16802:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, 0x%x) ; memw (Sp + 0x%x) = %s", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16818:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, %s) ; allocframe (0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16840:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, %s) ; memd (Sp + %d) = %s", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), (st32) hi->ops[2].op.imm, hex_get_sub_regpair(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16858:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, %s) ; memw (Sp + 0x%x) = %s", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16876:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, %s) ; memb (%s + 0x%x) = #0", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16894:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, %s) ; memb (%s + 0x%x) = #1", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16914:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, %s) ; memh (%s + 0x%x) = %s", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16932:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, %s) ; memw (%s + 0x%x) = #0", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16950:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#0, %s) ; memw (%s + 0x%x) = #1", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16966:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#1, 0x%x) ; allocframe (0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:16984:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#1, 0x%x) ; memb (%s + 0x%x) = #0", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17002:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#1, 0x%x) ; memb (%s + 0x%x) = #1", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17024:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#1, 0x%x) ; memd (Sp + %d) = %s", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, (st32) hi->ops[2].op.imm, hex_get_sub_regpair(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17044:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#1, 0x%x) ; memh (%s + 0x%x) = %s", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17062:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#1, 0x%x) ; memw (%s + 0x%x) = #0", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17080:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#1, 0x%x) ; memw (%s + 0x%x) = #1", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17098:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#1, 0x%x) ; memw (Sp + 0x%x) = %s", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17114:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#2, 0x%x) ; allocframe (0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17132:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#2, 0x%x) ; memb (%s + 0x%x) = #0", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17150:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#2, 0x%x) ; memb (%s + 0x%x) = #1", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17172:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#2, 0x%x) ; memd (Sp + %d) = %s", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, (st32) hi->ops[2].op.imm, hex_get_sub_regpair(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17192:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#2, 0x%x) ; memh (%s + 0x%x) = %s", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17210:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#2, 0x%x) ; memw (%s + 0x%x) = #0", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17228:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#2, 0x%x) ; memw (%s + 0x%x) = #1", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17246:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#2, 0x%x) ; memw (Sp + 0x%x) = %s", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17262:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#3, 0x%x) ; allocframe (0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17280:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#3, 0x%x) ; memb (%s + 0x%x) = #0", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17298:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#3, 0x%x) ; memb (%s + 0x%x) = #1", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17320:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#3, 0x%x) ; memd (Sp + %d) = %s", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, (st32) hi->ops[2].op.imm, hex_get_sub_regpair(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17340:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#3, 0x%x) ; memh (%s + 0x%x) = %s", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17358:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#3, 0x%x) ; memw (%s + 0x%x) = #0", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17376:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#3, 0x%x) ; memw (%s + 0x%x) = #1", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17394:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (#3, 0x%x) ; memw (Sp + 0x%x) = %s", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17410:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (%s, #0) ; allocframe (0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17432:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (%s, #0) ; memd (Sp + %d) = %s", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), (st32) hi->ops[2].op.imm, hex_get_sub_regpair(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17450:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (%s, #0) ; memw (Sp + 0x%x) = %s", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17468:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (%s, #0) ; memb (%s + 0x%x) = #0", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17486:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (%s, #0) ; memb (%s + 0x%x) = #1", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17506:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (%s, #0) ; memh (%s + 0x%x) = %s", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17524:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (%s, #0) ; memw (%s + 0x%x) = #0", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17542:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = combine (%s, #0) ; memw (%s + 0x%x) = #1", hex_get_sub_regpair(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17557:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; allocframe (0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17578:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; memd (Sp + %d) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), (st32) hi->ops[2].op.imm, hex_get_sub_regpair(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17595:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; memw (Sp + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17612:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; memb (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17629:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; memb (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17648:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; memh (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17665:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; memw (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17682:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (%s, Rx) ; memw (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17701:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; allocframe (0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17722:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; memb (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17743:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; memb (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17768:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; memd (Sp + %d) = %s", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, (st32) hi->ops[2].op.imm, hex_get_sub_regpair(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17791:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; memh (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17812:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; memw (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17833:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; memw (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17854:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %d) ; memw (Sp + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17869:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; allocframe (0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17890:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; memd (Sp + %d) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), (st32) hi->ops[2].op.imm, hex_get_sub_regpair(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17907:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; memw (Sp + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17924:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; memb (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17941:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; memb (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17960:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; memh (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17977:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; memw (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:17994:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = add (Rx, %s) ; memw (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18007:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0) %s = #0 ; allocframe (0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18022:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0) %s = #0 ; memb (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18037:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0) %s = #0 ; memb (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18056:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0) %s = #0 ; memd (Sp + %d) = %s", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18073:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0) %s = #0 ; memh (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18088:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0) %s = #0 ; memw (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18103:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0) %s = #0 ; memw (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18118:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0) %s = #0 ; memw (Sp + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18131:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0.new) %s = #0 ; allocframe (0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18146:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0.new) %s = #0 ; memb (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18161:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0.new) %s = #0 ; memb (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18180:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0.new) %s = #0 ; memd (Sp + %d) = %s", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18197:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0.new) %s = #0 ; memh (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18212:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0.new) %s = #0 ; memw (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18227:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0.new) %s = #0 ; memw (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18242:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (! p0.new) %s = #0 ; memw (Sp + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18255:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0) %s = #0 ; allocframe (0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18270:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0) %s = #0 ; memb (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18285:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0) %s = #0 ; memb (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18304:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0) %s = #0 ; memd (Sp + %d) = %s", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18321:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0) %s = #0 ; memh (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18336:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0) %s = #0 ; memw (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18351:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0) %s = #0 ; memw (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18366:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0) %s = #0 ; memw (Sp + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18379:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; allocframe (0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18394:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; memb (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18409:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; memb (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18428:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; memd (Sp + %d) = %s", hex_get_sub_reg(hi->ops[0].op.reg), (st32) hi->ops[1].op.imm, hex_get_sub_regpair(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18445:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; memh (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18460:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; memw (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18475:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; memw (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18490:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "if (p0.new) %s = #0 ; memw (Sp + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18505:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; allocframe (0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18526:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; memd (Sp + %d) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, (st32) hi->ops[2].op.imm, hex_get_sub_regpair(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18543:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; memw (Sp + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18560:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; memb (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18577:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; memb (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18596:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; memh (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18613:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; memw (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18630:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "p0 = cmp.eq (%s, 0x%x) ; memw (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18654:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memub (%s + 0x%x) ; memb (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm, hex_get_sub_reg(hi->ops[5].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18675:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memub (%s + 0x%x) ; memw (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm, hex_get_sub_reg(hi->ops[5].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18696:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (%s + 0x%x) ; memb (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm, hex_get_sub_reg(hi->ops[5].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18717:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (%s + 0x%x) ; memw (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm, hex_get_sub_reg(hi->ops[5].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18741:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memb (%s + 0x%x) ; memb (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm, hex_get_sub_reg(hi->ops[5].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18762:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memb (%s + 0x%x) ; memw (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm, hex_get_sub_reg(hi->ops[5].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18783:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memh (%s + 0x%x) ; memb (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm, hex_get_sub_reg(hi->ops[5].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18804:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memh (%s + 0x%x) ; memw (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm, hex_get_sub_reg(hi->ops[5].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18825:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memuh (%s + 0x%x) ; memb (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm, hex_get_sub_reg(hi->ops[5].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18846:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memuh (%s + 0x%x) ; memw (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm, hex_get_sub_reg(hi->ops[5].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18865:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (Sp + 0x%x) ; memb (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18884:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (Sp + 0x%x) ; memw (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18904:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memd (Sp + 0x%x) ; memb (%s + 0x%x) = %s", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18924:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memd (Sp + 0x%x) ; memw (%s + 0x%x) = %s", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18939:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "deallocframe ; memb (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18954:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "deallocframe ; memw (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18978:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memb (%s + 0x%x) = %s ; memb (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm, hex_get_sub_reg(hi->ops[5].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:18999:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memb (%s + 0x%x) = %s ; memw (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm, hex_get_sub_reg(hi->ops[5].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19020:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memw (%s + 0x%x) = %s ; memb (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm, hex_get_sub_reg(hi->ops[5].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19041:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memw (%s + 0x%x) = %s ; memw (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm, hex_get_sub_reg(hi->ops[5].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19061:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memb (%s + 0x%x) = %s ; allocframe (0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19084:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memb (%s + 0x%x) = %s ; memd (Sp + %d) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), (st32) hi->ops[3].op.imm, hex_get_sub_regpair(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19103:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memb (%s + 0x%x) = %s ; memw (Sp + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19122:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memb (%s + 0x%x) = %s ; memb (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19141:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memb (%s + 0x%x) = %s ; memb (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19160:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memb (%s + 0x%x) = %s ; memw (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19179:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memb (%s + 0x%x) = %s ; memw (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19200:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memb (%s + 0x%x) = %s ; memh (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm, hex_get_sub_reg(hi->ops[5].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19217:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memw (%s + 0x%x) = %s ; allocframe (0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19240:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memw (%s + 0x%x) = %s ; memd (Sp + %d) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), (st32) hi->ops[3].op.imm, hex_get_sub_regpair(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19259:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memw (%s + 0x%x) = %s ; memw (Sp + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19278:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memw (%s + 0x%x) = %s ; memb (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19297:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memw (%s + 0x%x) = %s ; memb (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19316:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memw (%s + 0x%x) = %s ; memw (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19335:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memw (%s + 0x%x) = %s ; memw (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19356:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memw (%s + 0x%x) = %s ; memh (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm, hex_get_sub_reg(hi->ops[5].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19376:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memub (%s + 0x%x) ; allocframe (0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19399:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memub (%s + 0x%x) ; memd (Sp + %d) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, (st32) hi->ops[3].op.imm, hex_get_sub_regpair(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19418:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memub (%s + 0x%x) ; memw (Sp + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19437:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memub (%s + 0x%x) ; memb (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19456:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memub (%s + 0x%x) ; memb (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19477:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memub (%s + 0x%x) ; memh (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm, hex_get_sub_reg(hi->ops[5].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19496:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memub (%s + 0x%x) ; memw (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19515:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memub (%s + 0x%x) ; memw (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19532:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (%s + 0x%x) ; allocframe (0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19555:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (%s + 0x%x) ; memd (Sp + %d) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, (st32) hi->ops[3].op.imm, hex_get_sub_regpair(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19574:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (%s + 0x%x) ; memw (Sp + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19593:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (%s + 0x%x) ; memb (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19612:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (%s + 0x%x) ; memb (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19633:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (%s + 0x%x) ; memh (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm, hex_get_sub_reg(hi->ops[5].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19652:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (%s + 0x%x) ; memw (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19671:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (%s + 0x%x) ; memw (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19691:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memb (%s + 0x%x) ; allocframe (0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19714:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memb (%s + 0x%x) ; memd (Sp + %d) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, (st32) hi->ops[3].op.imm, hex_get_sub_regpair(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19733:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memb (%s + 0x%x) ; memw (Sp + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19752:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memb (%s + 0x%x) ; memb (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19771:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memb (%s + 0x%x) ; memb (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19792:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memb (%s + 0x%x) ; memh (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm, hex_get_sub_reg(hi->ops[5].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19811:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memb (%s + 0x%x) ; memw (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19830:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memb (%s + 0x%x) ; memw (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19847:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memh (%s + 0x%x) ; allocframe (0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19870:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memh (%s + 0x%x) ; memd (Sp + %d) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, (st32) hi->ops[3].op.imm, hex_get_sub_regpair(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19889:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memh (%s + 0x%x) ; memw (Sp + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19908:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memh (%s + 0x%x) ; memb (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19927:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memh (%s + 0x%x) ; memb (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19948:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memh (%s + 0x%x) ; memh (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm, hex_get_sub_reg(hi->ops[5].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19967:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memh (%s + 0x%x) ; memw (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:19986:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memh (%s + 0x%x) ; memw (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20003:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memuh (%s + 0x%x) ; allocframe (0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20026:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memuh (%s + 0x%x) ; memd (Sp + %d) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, (st32) hi->ops[3].op.imm, hex_get_sub_regpair(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20045:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memuh (%s + 0x%x) ; memw (Sp + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20064:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memuh (%s + 0x%x) ; memb (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20083:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memuh (%s + 0x%x) ; memb (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20104:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memuh (%s + 0x%x) ; memh (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm, hex_get_sub_reg(hi->ops[5].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20123:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memuh (%s + 0x%x) ; memw (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20142:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memuh (%s + 0x%x) ; memw (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20157:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (Sp + 0x%x) ; allocframe (0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20174:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (Sp + 0x%x) ; memb (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20191:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (Sp + 0x%x) ; memb (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20212:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (Sp + 0x%x) ; memd (Sp + %d) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, (st32) hi->ops[2].op.imm, hex_get_sub_regpair(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20231:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (Sp + 0x%x) ; memh (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20248:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (Sp + 0x%x) ; memw (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20265:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (Sp + 0x%x) ; memw (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20282:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memw (Sp + 0x%x) ; memw (Sp + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20298:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memd (Sp + 0x%x) ; allocframe (0x%x)", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20316:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memd (Sp + 0x%x) ; memb (%s + 0x%x) = #0", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20334:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memd (Sp + 0x%x) ; memb (%s + 0x%x) = #1", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20356:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memd (Sp + 0x%x) ; memd (Sp + %d) = %s", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, (st32) hi->ops[2].op.imm, hex_get_sub_regpair(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20376:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memd (Sp + 0x%x) ; memh (%s + 0x%x) = %s", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20394:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memd (Sp + 0x%x) ; memw (%s + 0x%x) = #0", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20412:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memd (Sp + 0x%x) ; memw (%s + 0x%x) = #1", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20430:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = memd (Sp + 0x%x) ; memw (Sp + 0x%x) = %s", hex_get_sub_regpair(hi->ops[0].op.reg), hi->ops[1].op.imm, hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20443:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "deallocframe ; memb (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20456:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "deallocframe ; memb (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20473:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "deallocframe ; memd (Sp + %d) = %s", (st32) hi->ops[0].op.imm, hex_get_sub_regpair(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20488:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "deallocframe ; memh (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20501:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "deallocframe ; memw (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20514:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "deallocframe ; memw (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20527:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "deallocframe ; memw (Sp + 0x%x) = %s", hi->ops[0].op.imm, hex_get_sub_reg(hi->ops[1].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20545:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memb (%s + 0x%x) = #0 ; allocframe (0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20566:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memb (%s + 0x%x) = #0 ; memd (Sp + %d) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, (st32) hi->ops[2].op.imm, hex_get_sub_regpair(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20583:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memb (%s + 0x%x) = #0 ; memw (Sp + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20598:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memb (%s + 0x%x) = #1 ; allocframe (0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20619:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memb (%s + 0x%x) = #1 ; memd (Sp + %d) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, (st32) hi->ops[2].op.imm, hex_get_sub_regpair(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20636:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memb (%s + 0x%x) = #1 ; memw (Sp + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20653:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memb (%s + 0x%x) = #0 ; memb (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20670:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memb (%s + 0x%x) = #0 ; memb (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20689:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memb (%s + 0x%x) = #0 ; memh (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20706:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memb (%s + 0x%x) = #0 ; memw (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20723:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memb (%s + 0x%x) = #0 ; memw (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20740:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memb (%s + 0x%x) = #1 ; memb (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20757:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memb (%s + 0x%x) = #1 ; memb (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20776:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memb (%s + 0x%x) = #1 ; memh (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20793:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memb (%s + 0x%x) = #1 ; memw (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20810:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memb (%s + 0x%x) = #1 ; memw (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20829:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memd (Sp + %d) = %s ; allocframe (0x%x)", (st32) hi->ops[0].op.imm, hex_get_sub_regpair(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20850:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memd (Sp + %d) = %s ; memb (%s + 0x%x) = #0", (st32) hi->ops[0].op.imm, hex_get_sub_regpair(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20871:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memd (Sp + %d) = %s ; memb (%s + 0x%x) = #1", (st32) hi->ops[0].op.imm, hex_get_sub_regpair(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20892:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memd (Sp + %d) = %s ; memw (%s + 0x%x) = #0", (st32) hi->ops[0].op.imm, hex_get_sub_regpair(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20913:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memd (Sp + %d) = %s ; memw (%s + 0x%x) = #1", (st32) hi->ops[0].op.imm, hex_get_sub_regpair(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20938:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memd (Sp + %d) = %s ; memd (Sp + %d) = %s", (st32) hi->ops[0].op.imm, hex_get_sub_regpair(hi->ops[1].op.reg), (st32) hi->ops[2].op.imm, hex_get_sub_regpair(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20961:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memd (Sp + %d) = %s ; memh (%s + 0x%x) = %s", (st32) hi->ops[0].op.imm, hex_get_sub_regpair(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20982:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memd (Sp + %d) = %s ; memw (Sp + 0x%x) = %s", (st32) hi->ops[0].op.imm, hex_get_sub_regpair(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:20999:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memh (%s + 0x%x) = %s ; allocframe (0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21022:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memh (%s + 0x%x) = %s ; memd (Sp + %d) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), (st32) hi->ops[3].op.imm, hex_get_sub_regpair(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21041:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memh (%s + 0x%x) = %s ; memw (Sp + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21060:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memh (%s + 0x%x) = %s ; memb (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21079:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memh (%s + 0x%x) = %s ; memb (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21098:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memh (%s + 0x%x) = %s ; memw (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21117:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memh (%s + 0x%x) = %s ; memw (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21138:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memh (%s + 0x%x) = %s ; memh (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hex_get_sub_reg(hi->ops[3].op.reg), hi->ops[4].op.imm, hex_get_sub_reg(hi->ops[5].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21153:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memw (%s + 0x%x) = #0 ; allocframe (0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21174:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memw (%s + 0x%x) = #0 ; memd (Sp + %d) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, (st32) hi->ops[2].op.imm, hex_get_sub_regpair(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21191:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memw (%s + 0x%x) = #0 ; memw (Sp + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21206:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memw (%s + 0x%x) = #1 ; allocframe (0x%x)", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21227:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memw (%s + 0x%x) = #1 ; memd (Sp + %d) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, (st32) hi->ops[2].op.imm, hex_get_sub_regpair(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21244:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memw (%s + 0x%x) = #1 ; memw (Sp + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21261:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memw (%s + 0x%x) = #0 ; memb (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21278:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memw (%s + 0x%x) = #0 ; memb (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21297:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memw (%s + 0x%x) = #0 ; memh (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21314:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memw (%s + 0x%x) = #0 ; memw (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21331:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memw (%s + 0x%x) = #0 ; memw (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21348:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memw (%s + 0x%x) = #1 ; memb (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21365:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memw (%s + 0x%x) = #1 ; memb (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21384:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memw (%s + 0x%x) = #1 ; memh (%s + 0x%x) = %s", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21401:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memw (%s + 0x%x) = #1 ; memw (%s + 0x%x) = #0", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21418:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memw (%s + 0x%x) = #1 ; memw (%s + 0x%x) = #1", hex_get_sub_reg(hi->ops[0].op.reg), hi->ops[1].op.imm, hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21433:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memw (Sp + 0x%x) = %s ; allocframe (0x%x)", hi->ops[0].op.imm, hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21450:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memw (Sp + 0x%x) = %s ; memb (%s + 0x%x) = #0", hi->ops[0].op.imm, hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21467:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memw (Sp + 0x%x) = %s ; memb (%s + 0x%x) = #1", hi->ops[0].op.imm, hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21484:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memw (Sp + 0x%x) = %s ; memw (%s + 0x%x) = #0", hi->ops[0].op.imm, hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21501:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memw (Sp + 0x%x) = %s ; memw (%s + 0x%x) = #1", hi->ops[0].op.imm, hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21522:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memw (Sp + 0x%x) = %s ; memd (Sp + %d) = %s", hi->ops[0].op.imm, hex_get_sub_reg(hi->ops[1].op.reg), (st32) hi->ops[2].op.imm, hex_get_sub_regpair(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21541:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memw (Sp + 0x%x) = %s ; memh (%s + 0x%x) = %s", hi->ops[0].op.imm, hex_get_sub_reg(hi->ops[1].op.reg), hex_get_sub_reg(hi->ops[2].op.reg), hi->ops[3].op.imm, hex_get_sub_reg(hi->ops[4].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21558:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "memw (Sp + 0x%x) = %s ; memw (Sp + 0x%x) = %s", hi->ops[0].op.imm, hex_get_sub_reg(hi->ops[1].op.reg), hi->ops[2].op.imm, hex_get_sub_reg(hi->ops[3].op.reg));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27399:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = R%d", hex_get_cntl_reg(hi->ops[0].op.cr), hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27412:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%sd = R%d:R%d", hex_get_cntl_reg(hi->ops[0].op.cr), hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27425:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d = %ss", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hex_get_cntl_reg(hi->ops[1].op.cr));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27437:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d = %s", hi->ops[0].op.reg, hex_get_cntl_reg(hi->ops[1].op.cr));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27884:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s = R%d", hex_get_sys_reg(hi->ops[0].op.sys), hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27898:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "%s:%s = R%d:R%d", hex_get_sys_reg(hi->ops[0].op.sys + 1), hex_get_sys_reg(hi->ops[0].op.sys), hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27910:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d = %s", hi->ops[0].op.reg, hex_get_sys_reg(hi->ops[1].op.sys));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27924:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d = %s:%s", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hex_get_sys_reg(hi->ops[1].op.sys + 1), hex_get_sys_reg(hi->ops[1].op.sys));
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41242:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d = cmpy (R%d, R%d) %s:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41261:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d = cmpy (R%d, R%d *) %s:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41280:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d += cmpy (R%d, R%d) %s:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41299:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d -= cmpy (R%d, R%d) %s:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41318:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d += cmpy (R%d, R%d *) %s:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41337:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d -= cmpy (R%d, R%d *) %s:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41416:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d = cmpy (R%d, R%d) %s:rnd:sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41435:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d = cmpy (R%d, R%d *) %s:rnd:sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41456:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d = vcmpyr (R%d:R%d, R%d:R%d) %s:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41477:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d = vcmpyi (R%d:R%d, R%d:R%d) %s:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42081:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d = vmpyweh (R%d:R%d, R%d:R%d) %s:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42102:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d = vmpywoh (R%d:R%d, R%d:R%d) %s:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42124:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d = vmpyweh (R%d:R%d, R%d:R%d) %s:rnd:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42146:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d = vmpywoh (R%d:R%d, R%d:R%d) %s:rnd:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42167:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d += vmpyweh (R%d:R%d, R%d:R%d) %s:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42188:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d += vmpywoh (R%d:R%d, R%d:R%d) %s:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42210:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d += vmpyweh (R%d:R%d, R%d:R%d) %s:rnd:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42232:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d += vmpywoh (R%d:R%d, R%d:R%d) %s:rnd:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42253:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d = vmpyweuh (R%d:R%d, R%d:R%d) %s:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42274:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d = vmpywouh (R%d:R%d, R%d:R%d) %s:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42296:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d = vmpyweuh (R%d:R%d, R%d:R%d) %s:rnd:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42318:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d = vmpywouh (R%d:R%d, R%d:R%d) %s:rnd:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42339:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d += vmpyweuh (R%d:R%d, R%d:R%d) %s:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42360:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d += vmpywouh (R%d:R%d, R%d:R%d) %s:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42382:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d += vmpyweuh (R%d:R%d, R%d:R%d) %s:rnd:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42404:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d += vmpywouh (R%d:R%d, R%d:R%d) %s:rnd:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42422:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d = mpy (R%d.L, R%d.L) %s", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42440:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d = mpy (R%d.L, R%d.H) %s", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42458:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d = mpy (R%d.H, R%d.L) %s", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42476:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d = mpy (R%d.H, R%d.H) %s", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42495:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d = mpy (R%d.L, R%d.L) %s:rnd", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42514:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d = mpy (R%d.L, R%d.H) %s:rnd", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42533:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d = mpy (R%d.H, R%d.L) %s:rnd", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42552:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d = mpy (R%d.H, R%d.H) %s:rnd", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42570:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d += mpy (R%d.L, R%d.L) %s", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42588:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d += mpy (R%d.L, R%d.H) %s", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42606:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d += mpy (R%d.H, R%d.L) %s", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42624:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d += mpy (R%d.H, R%d.H) %s", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42642:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d -= mpy (R%d.L, R%d.L) %s", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42660:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d -= mpy (R%d.L, R%d.H) %s", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42678:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d -= mpy (R%d.H, R%d.L) %s", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42696:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d -= mpy (R%d.H, R%d.H) %s", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42713:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d = mpy (R%d.L, R%d.L) %s", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42730:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d = mpy (R%d.L, R%d.H) %s", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42747:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d = mpy (R%d.H, R%d.L) %s", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42764:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d = mpy (R%d.H, R%d.H) %s", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42782:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d = mpy (R%d.L, R%d.L) %s:sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42800:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d = mpy (R%d.L, R%d.H) %s:sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42818:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d = mpy (R%d.H, R%d.L) %s:sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42836:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d = mpy (R%d.H, R%d.H) %s:sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42854:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d = mpy (R%d.L, R%d.L) %s:rnd", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42872:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d = mpy (R%d.L, R%d.H) %s:rnd", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42890:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d = mpy (R%d.H, R%d.L) %s:rnd", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42908:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d = mpy (R%d.H, R%d.H) %s:rnd", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42927:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d = mpy (R%d.L, R%d.L) %s:rnd:sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42946:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d = mpy (R%d.L, R%d.H) %s:rnd:sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42965:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d = mpy (R%d.H, R%d.L) %s:rnd:sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42984:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d = mpy (R%d.H, R%d.H) %s:rnd:sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43001:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d += mpy (R%d.L, R%d.L) %s", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43018:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d += mpy (R%d.L, R%d.H) %s", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43035:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d += mpy (R%d.H, R%d.L) %s", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43052:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d += mpy (R%d.H, R%d.H) %s", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43070:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d += mpy (R%d.L, R%d.L) %s:sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43088:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d += mpy (R%d.L, R%d.H) %s:sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43106:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d += mpy (R%d.H, R%d.L) %s:sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43124:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d += mpy (R%d.H, R%d.H) %s:sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43141:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d -= mpy (R%d.L, R%d.L) %s", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43158:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d -= mpy (R%d.L, R%d.H) %s", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43175:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d -= mpy (R%d.H, R%d.L) %s", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43192:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d -= mpy (R%d.H, R%d.H) %s", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43210:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d -= mpy (R%d.L, R%d.L) %s:sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43228:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d -= mpy (R%d.L, R%d.H) %s:sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43246:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d -= mpy (R%d.H, R%d.L) %s:sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43264:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d -= mpy (R%d.H, R%d.H) %s:sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43282:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d = mpyu (R%d.L, R%d.L) %s", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43300:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d = mpyu (R%d.L, R%d.H) %s", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43318:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d = mpyu (R%d.H, R%d.L) %s", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43336:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d = mpyu (R%d.H, R%d.H) %s", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43354:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d += mpyu (R%d.L, R%d.L) %s", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43372:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d += mpyu (R%d.L, R%d.H) %s", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43390:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d += mpyu (R%d.H, R%d.L) %s", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43408:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d += mpyu (R%d.H, R%d.H) %s", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43426:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d -= mpyu (R%d.L, R%d.L) %s", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43444:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d -= mpyu (R%d.L, R%d.H) %s", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43462:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d -= mpyu (R%d.H, R%d.L) %s", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43480:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d -= mpyu (R%d.H, R%d.H) %s", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43497:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d = mpyu (R%d.L, R%d.L) %s", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43514:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d = mpyu (R%d.L, R%d.H) %s", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43531:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d = mpyu (R%d.H, R%d.L) %s", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43548:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d = mpyu (R%d.H, R%d.H) %s", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43565:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d += mpyu (R%d.L, R%d.L) %s", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43582:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d += mpyu (R%d.L, R%d.H) %s", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43599:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d += mpyu (R%d.H, R%d.L) %s", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43616:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d += mpyu (R%d.H, R%d.H) %s", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43633:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d -= mpyu (R%d.L, R%d.L) %s", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43650:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d -= mpyu (R%d.L, R%d.H) %s", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43667:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d -= mpyu (R%d.H, R%d.L) %s", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43684:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d -= mpyu (R%d.H, R%d.H) %s", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43734:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d = vrmpywoh (R%d:R%d, R%d:R%d) %s", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43754:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d = vrmpyweh (R%d:R%d, R%d:R%d) %s", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43774:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d += vrmpyweh (R%d:R%d, R%d:R%d) %s", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43794:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d += vrmpywoh (R%d:R%d, R%d:R%d) %s", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43936:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d = mpy (R%d, R%d) %s", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44079:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d = vdmpy (R%d:R%d, R%d:R%d) %s:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44100:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d += vdmpy (R%d:R%d, R%d:R%d) %s:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44121:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d = vdmpy (R%d:R%d, R%d:R%d) %s:rnd:sat", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44246:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d = vmpyeh (R%d:R%d, R%d:R%d) %s:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44284:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d += vmpyeh (R%d:R%d, R%d:R%d) %s:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44303:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d = vmpyh (R%d, R%d) %s:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44337:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d += vmpyh (R%d, R%d) %s:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44356:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d = vmpyh (R%d, R%d) %s:rnd:sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44375:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d = vmpyhsu (R%d, R%d) %s:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44394:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf(hi->mnem, "R%d:R%d += vmpyhsu (R%d, R%d) %s:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, ((hi->pf & HEX_PF_LSH1) == HEX_PF_LSH1) ? ":<<1" : "");
data/radare2-4.3.1+dfsg/libr/asm/arch/i8080/i8080dis.c:114:5:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
    strcat(s, arg->fmt[(cmd >> arg->shift) & arg->mask]);
data/radare2-4.3.1+dfsg/libr/asm/arch/i8080/i8080dis.c:134:7:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
      strcpy(text, op->name);
data/radare2-4.3.1+dfsg/libr/asm/arch/i8080/i8080dis.c:137:31:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
      if (op->arg2.type != 0) strcat(text, (branch ? " " : ", "));
data/radare2-4.3.1+dfsg/libr/asm/arch/mips/mipsasm.c:182:6:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
					strcpy (tmp, w2);
data/radare2-4.3.1+dfsg/libr/asm/arch/mips/mipsasm.c:183:6:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
					strcpy (w2, w3);
data/radare2-4.3.1+dfsg/libr/asm/arch/mips/mipsasm.c:184:6:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
					strcpy (w3, tmp);
data/radare2-4.3.1+dfsg/libr/asm/arch/pic/pic_baseline.c:251:2:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
	strcpy (opbuf, buf_asm);
data/radare2-4.3.1+dfsg/libr/asm/arch/pic/pic_midrange.c:233:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (
data/radare2-4.3.1+dfsg/libr/asm/arch/pic/pic_midrange.c:242:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (opbuf, buf_asm);
data/radare2-4.3.1+dfsg/libr/asm/arch/pic/pic_pic18.c:123:2:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
	strcpy (opbuf, buf_asm);
data/radare2-4.3.1+dfsg/libr/asm/arch/pic/pic_pic18.c:129:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (opbuf, ops[i].name);
data/radare2-4.3.1+dfsg/libr/asm/arch/pic/pic_pic18.c:218:2:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
	strcpy (opbuf, buf_asm);
data/radare2-4.3.1+dfsg/libr/asm/arch/ppc/libvle/vle.c:993:11:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
			add += snprintf (str + add, bufsize - add, " 0x%" PFMT32x, addr + instr->fields[i].value);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:42:2:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
	sprintf (buf+strlen (buf), "%s", s);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:79:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
				sprintf (buf+strlen (buf), "%s",
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:84:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
				sprintf (buf+strlen (buf), "%s",
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:88:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
				sprintf (buf+strlen (buf), "%s", riscv_gpr_names[rd]);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:91:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
				sprintf (buf+strlen (buf), "%s", riscv_gpr_names[X_SP]);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:94:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
				sprintf (buf+strlen (buf), "%s",
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:129:5:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
				sprintf (buf+strlen (buf), "0x%"PFMT64x, (ut64) target);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:133:5:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
				sprintf (buf+strlen (buf), "0x%"PFMT64x, (ut64)target);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:146:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
				sprintf (buf+strlen (buf), "%s",
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:150:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
				sprintf (buf+strlen (buf), "%s",
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:174:4:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
			sprintf (buf+strlen (buf), "%s", riscv_gpr_names[rs1]);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:178:4:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
			sprintf (buf+strlen (buf), "%s",
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:210:4:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
			sprintf (buf+strlen (buf), "0x%"PFMT64x, (ut64)target);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:214:4:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
			sprintf (buf+strlen (buf), "0x%"PFMT64x, (ut64)target);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:217:4:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
			sprintf (buf+strlen (buf), "%s", riscv_gpr_names[rd]);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:220:4:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
			sprintf (buf+strlen (buf), "%s", riscv_gpr_names[0]);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:230:4:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
			sprintf (buf+strlen (buf), "%s", riscv_fpr_names[rs1]);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:233:4:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
			sprintf (buf+strlen (buf), "%s", riscv_fpr_names[EXTRACT_OPERAND (RS2, l)]);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:236:4:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
			sprintf (buf+strlen (buf), "%s", riscv_fpr_names[rd]);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:239:4:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
			sprintf (buf+strlen (buf), "%s", riscv_fpr_names[EXTRACT_OPERAND (RS3, l)]);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:252:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf (buf+strlen (buf), "%s", csr_name);
data/radare2-4.3.1+dfsg/libr/asm/arch/sparc/gnu/sparc-dis.c:294:7:  [4] (format) fprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
      fprintf
data/radare2-4.3.1+dfsg/libr/asm/arch/sparc/gnu/sparc-dis.c:305:7:  [4] (format) fprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
      fprintf
data/radare2-4.3.1+dfsg/libr/asm/arch/sparc/gnu/sparc-dis.c:359:5:  [4] (format) fprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
		  fprintf (stderr,
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/tms320_dasm.c:304:2:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	vsnprintf(data, sizeof(data), fmt, args);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/tms320_dasm.c:395:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		sprintf(str, "%s %s 0", get_freg_str(key & 15, NULL), op[(key >> 4) & 7]);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/tms320_dasm.c:1008:2:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	snprintf(dasm->syntax, sizeof(dasm->syntax), \
data/radare2-4.3.1+dfsg/libr/asm/arch/v850/v850_disas.c:165:2:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	snprintf (cmd->operands, V850_INSTR_MAXLEN - 1, "0x%08"PFMT64x, cmd->addr + delta);
data/radare2-4.3.1+dfsg/libr/asm/arch/xap/dis.c:366:2:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
	sprintf (d->d_asm, "%s ", op);
data/radare2-4.3.1+dfsg/libr/asm/arch/xap/dis.c:374:5:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
				strcat (d->d_asm, r);
data/radare2-4.3.1+dfsg/libr/asm/arch/xap/dis.c:418:2:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	snprintf (tmp, sizeof (tmp), fmt, d->d_operand);
data/radare2-4.3.1+dfsg/libr/asm/arch/xap/dis.c:419:2:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
	strcat (d->d_asm, tmp);
data/radare2-4.3.1+dfsg/libr/asm/arch/xap/dis.c:425:3:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
		strcat(d->d_asm, tmp);
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/elf32-xtensa.c:2234:7:  [4] (format) vsprintf:
  Potential format string problem (CWE-134). Make format string constant.
      vsprintf (message + orig_len, fmt, ap);
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/elf32-xtensa.c:11174:7:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
      strcpy (prop_sec_name, base_name);
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/elf32-xtensa.c:11176:2:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
	strcat (prop_sec_name, suffix);
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/elf32-xtensa.c:11194:7:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
      strcpy (prop_sec_name + linkonce_len, linkonce_kind);
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/elf32-xtensa.c:11201:7:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
      strcat (prop_sec_name + linkonce_len, suffix);
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:563:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
  sprintf (xtisa_error_msg, "format \"%s\" not recognized", fmtname);
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:698:7:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
      sprintf (xtisa_error_msg, "opcode \"%s\" not recognized", opname);
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:747:7:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
      sprintf (xtisa_error_msg,
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:867:7:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
      sprintf (xtisa_error_msg, "invalid functional unit use number (%d); "
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:885:2:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
	sprintf (xtisa_error_msg, "invalid operand number (%d); " \
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:1002:7:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
      sprintf (xtisa_error_msg,
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:1041:7:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
      sprintf (xtisa_error_msg,
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:1316:2:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
	sprintf (xtisa_error_msg, "invalid state operand number (%d); " \
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:1363:2:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
	sprintf (xtisa_error_msg, "invalid interface operand number (%d); " \
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:1425:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
  sprintf (xtisa_error_msg, "regfile \"%s\" not recognized", name);
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:1457:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
  sprintf (xtisa_error_msg, "regfile shortname \"%s\" not recognized",
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:1546:7:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
      sprintf (xtisa_error_msg, "state \"%s\" not recognized", name);
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:1656:7:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
      sprintf (xtisa_error_msg, "sysreg \"%s\" not recognized", name);
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:1733:7:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
      sprintf (xtisa_error_msg, "interface \"%s\" not recognized", ifname);
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:1828:7:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
      sprintf (xtisa_error_msg,
data/radare2-4.3.1+dfsg/libr/asm/arch/z80/z80asm.c:100:3:  [4] (format) vfprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
		vfprintf (stderr, fmt, l);
data/radare2-4.3.1+dfsg/libr/asm/arch/z80/z80asm.c:104:2:  [4] (format) vfprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
	vfprintf (stderr, fmt, l);
data/radare2-4.3.1+dfsg/libr/asm/asm.c:28:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (out , op_buf_asm);
data/radare2-4.3.1+dfsg/libr/asm/asm.c:732:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (val, sizeof (val), "0x%"PFMT64x, a->pc);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_dalvik.c:144:4:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
			snprintf (str, sizeof (str), " v%i:v%i, 0x%"PFMT64x, vA, vA + 1, lB);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_dalvik.c:171:4:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
			snprintf (str, sizeof (str), " 0x%08"PFMT64x, a->pc + (vA * 2)); // vA : word -> byte
data/radare2-4.3.1+dfsg/libr/asm/p/asm_dalvik.c:176:4:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
			snprintf (str, sizeof (str), " 0x%08"PFMT64x, a->pc + (vA * 2)); // vA : word -> byte
data/radare2-4.3.1+dfsg/libr/asm/p/asm_dalvik.c:183:4:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
			snprintf (str, sizeof (str), " v%i, 0x%08"PFMT64x, vA, a->pc + (vB * 2));
data/radare2-4.3.1+dfsg/libr/asm/p/asm_dalvik.c:189:4:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
			snprintf (str, sizeof (str), " 0x%08"PFMT64x, a->pc + (vA*2)); // vA : word -> byte
data/radare2-4.3.1+dfsg/libr/asm/p/asm_dalvik.c:197:4:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
			snprintf (str, sizeof (str)," v%i, v%i, 0x%08"PFMT64x, vA, vB, a->pc + (vC * 2));
data/radare2-4.3.1+dfsg/libr/asm/p/asm_dalvik.c:203:4:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
			snprintf (str, sizeof (str), " v%i, 0x%08"PFMT64x, vA, a->pc + (vB * 2) + 8);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_dalvik.c:273:6:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
					snprintf (str, sizeof (str), " v%i, 0x%"PFMT64x, vA, offset);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_dalvik.c:311:5:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
				snprintf (str, sizeof (str), " v%i, 0x%"PFMT64x, vA, offset);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_dalvik.c:343:5:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
				snprintf (str, sizeof (str), " v%i, 0x%"PFMT64x, vA, offset);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_lm32.c:27:2:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
	strcpy (str, RAsmLm32Regs[match_idx].name);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_lm32.c:91:2:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
	strcpy (str, RAsmLm32Csrs[match_idx].name);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_lm32.c:315:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		sprintf (str, "mv %s, %s", instr->dest_reg_str, instr->src0_reg_str);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_lm32.c:319:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		sprintf (str, "mvhi %s, 0x%x", instr->dest_reg_str, instr->immediate);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_lm32.c:323:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		sprintf (str, "not %s, %s", instr->dest_reg_str, instr->src0_reg_str);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_lm32.c:331:4:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
			sprintf (str, "mvi %s, 0x%x", instr->dest_reg_str, instr->immediate);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_lm32.c:366:2:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
	strcpy (str, instr->op_decode.name);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_lm32.c:371:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		sprintf (str, "%s %s, %s, 0x%x", instr->op_decode.name, instr->dest_reg_str, instr->src0_reg_str,
data/radare2-4.3.1+dfsg/libr/asm/p/asm_lm32.c:376:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		sprintf (str, "%s %s, %s, 0x%x", instr->op_decode.name, instr->dest_reg_str, instr->src0_reg_str,
data/radare2-4.3.1+dfsg/libr/asm/p/asm_lm32.c:381:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		sprintf (str, "%s %s, %s, 0x%x", instr->op_decode.name, instr->dest_reg_str, instr->src0_reg_str,
data/radare2-4.3.1+dfsg/libr/asm/p/asm_lm32.c:385:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		sprintf (str, "%s %s", instr->op_decode.name, instr->src0_reg_str);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_lm32.c:388:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		sprintf (str, "%s %s, %s", instr->op_decode.name, instr->dest_reg_str, instr->src0_reg_str);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_lm32.c:391:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		sprintf (str, "%s %s, %s, %s", instr->op_decode.name, instr->dest_reg_str, instr->src0_reg_str,
data/radare2-4.3.1+dfsg/libr/asm/p/asm_lm32.c:395:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		sprintf (str, "%s %s, %s", instr->op_decode.name, instr->csr_reg_str, instr->src0_reg_str);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_lm32.c:398:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		sprintf (str, "%s %s, %s", instr->op_decode.name, instr->dest_reg_str, instr->csr_reg_str);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_lm32.c:402:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		sprintf (str, "%s 0x%x", instr->op_decode.name, instr->immediate + instr->addr);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_x86_cs.c:139:6:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
					strcpy (ast + 3, tmp + 1);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_x86_cs.c:141:6:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
					strcpy (ast + 1, tmp);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_x86_nz.c:4827:5:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
				strcpy (tmp, str + pos);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_xap.c:20:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (str, d->d_asm);
data/radare2-4.3.1+dfsg/libr/bin/bin.c:845:35:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
	bin->cb_printf = (PrintfCallback)printf;
data/radare2-4.3.1+dfsg/libr/bin/bobj.c:218:4:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
			strcpy (namepad, cls->name);
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c:3251:6:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
					strcpy (d->name, p->name);
data/radare2-4.3.1+dfsg/libr/bin/format/mach0/mach0.c:3661:15:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
		cb_printf = printf;
data/radare2-4.3.1+dfsg/libr/bin/format/nin/nin.h:108:4:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
			strcat (type,gb_card_type_str[cardcode-240]);
data/radare2-4.3.1+dfsg/libr/bin/format/nin/nin.h:120:4:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
			strcat (type,gb_card_type_str[cardcode]);
data/radare2-4.3.1+dfsg/libr/bin/format/wasm/wasm.c:200:3:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
		strcat (buf, r_bin_wasm_valuetype_to_string (ptr->param_types[p]));
data/radare2-4.3.1+dfsg/libr/bin/mangling/cxx/cp-demangle.c:6395:4:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
	  strcpy (output_buffer, demangled);
data/radare2-4.3.1+dfsg/libr/bin/mangling/cxx/libiberty.h:634:12:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
extern int snprintf (char *, size_t, const char *, ...) ATTRIBUTE_PRINTF_3;
data/radare2-4.3.1+dfsg/libr/bin/mangling/cxx/libiberty.h:639:12:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
extern int vsnprintf (char *, size_t, const char *, va_list) ATTRIBUTE_PRINTF(3,0);
data/radare2-4.3.1+dfsg/libr/bin/mangling/objc.c:120:6:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
					strcat (args, arg);
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:331:5:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
				strcat (out, getstring (q, len));
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:376:6:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
					strcat (out, name);
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:381:6:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
					strcat (out, attr);
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:386:6:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
					strcat (out, attr2);
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:406:8:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
							strcat (out, res);
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:417:7:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
						strcat (out, getstring (Q, n));
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:430:8:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
							strcat (out, attr);
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:446:8:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
							strcat (out, getstring (Q, n));
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:498:10:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
									strcat (out, attr);
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:508:9:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
								strcat (out, attr);
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:523:9:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
								strcat (out, is_generic?"<":"(");
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:530:9:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
								strcat (out, attr);
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:534:8:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
							strcat (out, s);
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:536:9:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
								strcat (out, is_generic?">":")");
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:548:9:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
								strcat (out, attr);
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:555:8:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
							strcat (out, attr);
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:585:4:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
			strcat (out, tail);
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:739:6:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
					printf (Color_GREEN"[OK]"Color_RESET"  %s\n", ret);
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:741:6:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
					printf (Color_RED"[XX]"Color_RESET"  %s\n", ret);
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:742:6:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
					printf (Color_YELLOW"[MUSTBE]"Color_RESET"  %s\n", test->dem);
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:747:5:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
				printf (Color_RED"[XX]"Color_RESET"  \"(null)\"\n");
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:748:5:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
				printf (Color_YELLOW"[MUSTBE]"Color_RESET"  %s\n", test->dem);
data/radare2-4.3.1+dfsg/libr/bin/p/bin_dex.c:306:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (signature + pos, buff);
data/radare2-4.3.1+dfsg/libr/bin/p/bin_mach0.c:284:5:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
				snprintf (symstr + 5, sizeof (symstr) - 5 , "%" PFMT64x, ptr->vaddr);
data/radare2-4.3.1+dfsg/libr/bin/pdb/main.c:43:4:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
			strcpy (&pdb.file_name, optarg);
data/radare2-4.3.1+dfsg/libr/bin/pdb/pdb.c:695:4:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
			strcpy (name, tmp);
data/radare2-4.3.1+dfsg/libr/bin/pdb/pdb.c:697:4:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
			sprintf (name, "(%s)%s", tmp, *name_field);
data/radare2-4.3.1+dfsg/libr/bin/pdb/pdb.c:749:4:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
			strcpy (name, tmp);
data/radare2-4.3.1+dfsg/libr/bin/pdb/pdb.c:750:4:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
			sprintf (name, "(%s)%s", tmp, *name_field);
data/radare2-4.3.1+dfsg/libr/bin/pdb/pdb.c:765:4:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
			strcpy (name, tmp);
data/radare2-4.3.1+dfsg/libr/bin/pdb/pdb.c:766:4:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
			sprintf (name, "(%s)%s", tmp, *name_field);
data/radare2-4.3.1+dfsg/libr/bin/pdb/pdb.c:837:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (members_field[i], name);
data/radare2-4.3.1+dfsg/libr/bin/pdb/pdb.c:850:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		sprintf (members_field[i], "%s=%08X", name, offset);
data/radare2-4.3.1+dfsg/libr/bin/pdb/pdb.c:1184:37:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
		pdb->cb_printf = (PrintfCallback) printf;
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1025:3:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
		strcat (*name, tmp_name);
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1061:3:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
		strcat (*name, tmp_name);
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1100:3:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
		strcat (*name, tmp_name);
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1150:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		sprintf (*name, "%s %s : %d", "bitfield", tmp_name, (int)bitfeild_info->length);
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1152:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		sprintf (*name, "%s : %d", "bitfield", (int)bitfeild_info->length);
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1203:3:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
		strcat (*name, tmp_name);
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1234:2:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
	strcpy(*name, tmp1);
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1236:3:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
		strcat (*name, tmp_name);
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1315:2:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
	strcpy (*name, tmp1);
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1317:3:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
		strcat (*name, tmp_name);
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1355:2:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
	strcpy (*name, tmp1);
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1357:3:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
		strcat (*name, tmp_name);
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1403:3:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
		strcat (*name, tmp_name);
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1428:2:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
	strcpy (*name, tmp1);
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1430:3:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
		strcat (*name, tmp_name);
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1466:3:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
		strcat (*name, tmp_name);
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1505:3:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
		strcat (*name, tmp_name);
data/radare2-4.3.1+dfsg/libr/bin/pdb/types.h:506:7:  [4] (race) access:
  This usually indicates a security flaw. If an attacker can change anything
  along the path between the call to access() and the file's actual use
  (e.g., by moving files), the attacker can exploit the race condition
  (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
  and try to open the file directly.
		ut8 access : 2;
data/radare2-4.3.1+dfsg/libr/bp/bp.c:32:34:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
	bp->cb_printf = (PrintfCallback)printf;
data/radare2-4.3.1+dfsg/libr/config/config.c:651:28:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
	cfg->cb_printf = (void *) printf;
data/radare2-4.3.1+dfsg/libr/cons/2048.c:102:4:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
			snprintf (val0,31, "%s%4d"Color_RESET, colorarray [twok_buf [i][x] % 8 ], 1 << twok_buf[i][x]);
data/radare2-4.3.1+dfsg/libr/cons/2048.c:118:3:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
		printf (Color_BBLUE"  +------+------+------+------+\n");
data/radare2-4.3.1+dfsg/libr/cons/2048.c:128:4:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
			printf (Color_BBLUE"  |      |      |      |      |\n");
data/radare2-4.3.1+dfsg/libr/cons/2048.c:133:4:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
			printf ("  +------+------+------+------+\n"Color_RESET);
data/radare2-4.3.1+dfsg/libr/cons/canvas.c:394:5:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
				strcpy (o + olen, rune);
data/radare2-4.3.1+dfsg/libr/cons/cons.c:1108:14:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
			written = vsnprintf (I.context->buffer + I.context->buffer_len, size, format, ap3);
data/radare2-4.3.1+dfsg/libr/cons/cons.c:1596:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (rword, inv[0]);
data/radare2-4.3.1+dfsg/libr/cons/cons.c:1597:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (rword + linv[0], word);
data/radare2-4.3.1+dfsg/libr/cons/cons.c:1598:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (rword + linv[0] + word_len, inv[1]);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:11:9:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
#define printf(...) r_cons_win_printf (false, __VA_ARGS__)
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:1148:5:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
				strcpy (I.buffer.data, gcomp_line);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:1160:5:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
				strcpy (I.buffer.data, gcomp_line);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:1343:5:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
				strcpy (I.buffer.data, gcomp_line);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:1355:5:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
				strcpy (I.buffer.data, gcomp_line);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:1464:8:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
							strcat (I.buffer.data, txt);
data/radare2-4.3.1+dfsg/libr/cons/grep.c:484:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (in, cons->context->buffer);
data/radare2-4.3.1+dfsg/libr/cons/hud.c:256:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (hud_prompt, user_input); 					// to display
data/radare2-4.3.1+dfsg/libr/cons/input.c:377:4:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
			printf (Color_RESET);
data/radare2-4.3.1+dfsg/libr/cons/input.c:384:4:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
			printf (Color_RESET);
data/radare2-4.3.1+dfsg/libr/cons/input.c:390:3:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
		printf (Color_RESET);
data/radare2-4.3.1+dfsg/libr/cons/input.c:646:2:  [4] (format) vfprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
	vfprintf (stderr, fmt, ap);
data/radare2-4.3.1+dfsg/libr/cons/output.c:412:18:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	int num_chars = vsnprintf (NULL, 0, fmt, ap2);
data/radare2-4.3.1+dfsg/libr/cons/output.c:416:9:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		(void)vsnprintf (buf, num_chars, fmt, ap);
data/radare2-4.3.1+dfsg/libr/cons/pal.c:431:4:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
			strcpy (fg, Color_WHITE);
data/radare2-4.3.1+dfsg/libr/cons/pal.c:433:4:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
			strcpy (fg, Color_BLACK);
data/radare2-4.3.1+dfsg/libr/cons/pal.c:489:5:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
				strcpy (fg, ((i < 6) && (j < 5))
data/radare2-4.3.1+dfsg/libr/cons/rgb.c:293:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (outstr, Color_RESET);
data/radare2-4.3.1+dfsg/libr/core/agraph.c:304:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (title, sizeof (title) - 1,
data/radare2-4.3.1+dfsg/libr/core/canal.c:192:5:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
				strcpy ((char*) str, (char*) rstr);
data/radare2-4.3.1+dfsg/libr/core/canal.c:205:4:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
			strcpy ((char*) str, (char*) rstr);
data/radare2-4.3.1+dfsg/libr/core/canal.c:1418:17:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
                snprintf (cmd, sizeof (cmd), "pdb %"PFMT64u" @ 0x%08" PFMT64x, bb->size, bb->addr);
data/radare2-4.3.1+dfsg/libr/core/canal.c:1425:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (cmd, sizeof (cmd), "pD %"PFMT64u" @ 0x%08" PFMT64x, bb->size, bb->addr);
data/radare2-4.3.1+dfsg/libr/core/canal.c:1476:41:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
                                        snprintf (val, sizeof (val), "0x%08"PFMT64x, bbi->jump);
data/radare2-4.3.1+dfsg/libr/core/canal.c:1478:41:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
                                        snprintf (val, sizeof (val), "0x%08"PFMT64x ",0x%08"PFMT64x,
data/radare2-4.3.1+dfsg/libr/core/canal.c:1549:41:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
                                        snprintf (key, sizeof (key),
data/radare2-4.3.1+dfsg/libr/core/canal.c:1833:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (ns, sizeof (ns), "fcn.0x%08"PFMT64x, fcn->addr);
data/radare2-4.3.1+dfsg/libr/core/cconfig.c:1367:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (cmd, sizeof (cmd), "page_size %"PFMT64d, node->i_value);
data/radare2-4.3.1+dfsg/libr/core/cconfig.c:1381:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (cmd, sizeof (cmd), "retries %"PFMT64d, node->i_value);
data/radare2-4.3.1+dfsg/libr/core/cmd.c:4303:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
				sprintf (cmd2, "%s @ 0x%08"PFMT64x"", cmd, addr);
data/radare2-4.3.1+dfsg/libr/core/cmd.c:4322:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf (cmd2, "%s @ 0x%08"PFMT64x"", cmd, addr);
data/radare2-4.3.1+dfsg/libr/core/cmd.c:6304:2:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	vsnprintf (string, sizeof (string), fmt, ap);
data/radare2-4.3.1+dfsg/libr/core/cmd.c:6390:2:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	vsnprintf (string, sizeof (string), fmt, ap);
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:6843:5:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
				snprintf (arg, sizeof (arg), "0x%08"PFMT64x, fcn->addr);
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:6869:4:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
			snprintf (arg, sizeof (arg), "0x%08"PFMT64x, ref->addr);
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:6928:2:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
	strcpy (ba, r_strbuf_get (&asmop.buf_asm));
data/radare2-4.3.1+dfsg/libr/core/cmd_api.c:302:26:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
	mac->cb_printf = (void*)printf;
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:666:2:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	snprintf (tn_key, TN_KEY_LEN, TN_KEY_FMT, tn->addr);
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:3870:2:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	snprintf (dbkey, TN_KEY_LEN, TN_KEY_FMT, addr);
data/radare2-4.3.1+dfsg/libr/core/cmd_flag.c:1051:5:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
				snprintf (cmd, sizeof (cmd), "pD@%"PFMT64d":%"PFMT64d,
data/radare2-4.3.1+dfsg/libr/core/cmd_flag.c:1068:5:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
				snprintf (cmd, sizeof (cmd), "px@%"PFMT64d":%"PFMT64d,
data/radare2-4.3.1+dfsg/libr/core/cmd_help.c:310:4:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
			snprintf (num, sizeof (num), "0x%"PFMT64x, val);
data/radare2-4.3.1+dfsg/libr/core/cmd_magic.c:117:5:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
				strcpy (q + 1, q + ((q[2] == ' ')? 3: 2));
data/radare2-4.3.1+dfsg/libr/core/cmd_magic.c:153:7:  [4] (buffer) sscanf:
  The scanf() family's %s operation, without a limit specification, permits
  buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
  different input function. If the scanf format is influenceable by an
  attacker, it's exploitable.
						sscanf (q + 3, "%"PFMT64x, &addr);
data/radare2-4.3.1+dfsg/libr/core/cmd_magic.c:155:7:  [4] (buffer) sscanf:
  The scanf() family's %s operation, without a limit specification, permits
  buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
  different input function. If the scanf format is influenceable by an
  attacker, it's exploitable.
						sscanf (q + 1, "%"PFMT64d, &addr);
data/radare2-4.3.1+dfsg/libr/core/cmd_meta.c:454:5:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
				strcpy (text, comment);
data/radare2-4.3.1+dfsg/libr/core/cmd_meta.c:456:5:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
				strcat (text, nc);
data/radare2-4.3.1+dfsg/libr/core/cmd_meta.c:586:5:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
				strcpy (text, comment);
data/radare2-4.3.1+dfsg/libr/core/cmd_meta.c:588:5:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
				strcat (text, nc);
data/radare2-4.3.1+dfsg/libr/core/cmd_meta.c:723:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (key, sizeof (key), "meta.%c.0x%" PFMT64x, type, addr);
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:1618:24:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
#define append(x, y) { strcat (x, y); x += strlen (y); }
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:1678:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (bytes, addrpad);
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:1687:3:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
		sprintf (bytes + j, format, (i & 0xf), (i + 1) & 0xf);
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:1729:13:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
		ebytes += sprintf (ebytes, "0x%08"PFMT64x, ea);
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:2008:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (cmd, sizeof (cmd), "pxo %d @ 0x%"PFMT64x,
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:4263:4:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
			strcpy (m, mnem);
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:5513:7:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
						strcpy (fmt + 2, input + 3);
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:7219:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (buf, sizeof (buf), "+0x%"PFMT64x, off);
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:7221:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (buf, sizeof (buf), "0x%08"PFMT64x, off);
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:7279:6:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
					snprintf (space, sizeof (space), "%"PFMT64u, off);
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:7316:6:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
					snprintf (space, sizeof (space), "%"PFMT64u, off);
data/radare2-4.3.1+dfsg/libr/core/cmd_seek.c:400:6:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
					snprintf (key, sizeof (key) - 1, "meta.C.0x%"PFMT64x, addr);
data/radare2-4.3.1+dfsg/libr/core/cmd_write.c:252:6:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
					strcpy ((char *)biniv, iv);
data/radare2-4.3.1+dfsg/libr/core/cmd_write.c:1320:6:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
					snprintf (_fn, sizeof (_fn), "%s.0x%08"PFMT64x, prefix, poff);
data/radare2-4.3.1+dfsg/libr/core/cmd_write.c:1325:5:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
				snprintf (_fn, sizeof (_fn), "%s.0x%08"PFMT64x, prefix, poff);
data/radare2-4.3.1+dfsg/libr/core/cmd_write.c:1333:5:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
				snprintf (_fn, sizeof (_fn), "%s.0x%08"PFMT64x, prefix, poff);
data/radare2-4.3.1+dfsg/libr/core/core.c:2907:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (s, maxlen, "%s + %" PFMT64u, f->name, r->offset - f->offset);
data/radare2-4.3.1+dfsg/libr/core/core.c:2913:3:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
		strcat (s, DOTS);
data/radare2-4.3.1+dfsg/libr/core/core.c:2998:5:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
				snprintf (p, sizeof (p), "0x%016" PFMT64x, r->offset);
data/radare2-4.3.1+dfsg/libr/core/core.c:3000:5:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
				snprintf (p, sizeof (p), "0x%08" PFMT64x, r->offset);
data/radare2-4.3.1+dfsg/libr/core/core.c:3318:6:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
					strcpy ((char *)b+ 5, cmd);
data/radare2-4.3.1+dfsg/libr/core/core.c:3549:2:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	vsnprintf (str, sizeof (str), fmt, ap);
data/radare2-4.3.1+dfsg/libr/core/disasm.c:1119:8:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
							strcpy (ox, fi->name);
data/radare2-4.3.1+dfsg/libr/core/disasm.c:1120:8:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
							strcat (ox, e);
data/radare2-4.3.1+dfsg/libr/core/disasm.c:1465:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (b, ds->opstr);
data/radare2-4.3.1+dfsg/libr/core/disasm.c:1467:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (b, r_asm_op_get_asm (&ds->asmop));
data/radare2-4.3.1+dfsg/libr/core/disasm.c:1502:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (b, t);
data/radare2-4.3.1+dfsg/libr/core/disasm.c:2416:2:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	snprintf (key, sizeof (key) - 1, "meta.0x%"PFMT64x, ds->at);
data/radare2-4.3.1+dfsg/libr/core/disasm.c:2426:5:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
				snprintf (key, sizeof (key) - 1,
data/radare2-4.3.1+dfsg/libr/core/disasm.c:2624:3:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
		strcat (out, Color_RESET);
data/radare2-4.3.1+dfsg/libr/core/disasm.c:2949:2:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	snprintf (key, sizeof (key), "meta.0x%" PFMT64x, ds->at);
data/radare2-4.3.1+dfsg/libr/core/disasm.c:3209:6:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
					strcpy (extra, pad);
data/radare2-4.3.1+dfsg/libr/core/disasm.c:4028:4:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
			snprintf (addrstr, sizeof (addrstr), "0x%" PFMT64x, refaddr);
data/radare2-4.3.1+dfsg/libr/core/disasm.c:4030:5:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
				snprintf (addrstr, sizeof (addrstr), "0x%08" PFMT64x, refaddr);
data/radare2-4.3.1+dfsg/libr/core/disasm.c:4034:7:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
						snprintf (addrstr, sizeof (addrstr), "%" PFMT64u, refaddr);
data/radare2-4.3.1+dfsg/libr/core/disasm.c:4568:2:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	snprintf (key, sizeof (key)-1, "meta.0x%"PFMT64x, at);
data/radare2-4.3.1+dfsg/libr/core/disasm.c:5998:5:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
				strcpy (ba, r_asm_op_get_asm (&asmop));
data/radare2-4.3.1+dfsg/libr/core/disasm.c:6030:5:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
				strcpy (buf, aop);
data/radare2-4.3.1+dfsg/libr/core/p/core_java.c:699:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (s_new_ref, replace_len+3, fmt, s_new);
data/radare2-4.3.1+dfsg/libr/core/p/core_java.c:700:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (s_old_ref, match_len+3, fmt, s_old);
data/radare2-4.3.1+dfsg/libr/core/panels.c:1252:3:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
		strcat (out, filter);
data/radare2-4.3.1+dfsg/libr/core/patch.c:78:5:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
				snprintf (tmp, sizeof (tmp), "0x%08"PFMT64x, *noff);
data/radare2-4.3.1+dfsg/libr/core/rtr.c:19:7:  [4] (race) access:
  This usually indicates a security flaw. If an attacker can change anything
  along the path between the call to access() and the file's actual use
  (e.g., by moving files), the attacker can exploit the race condition
  (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
  and try to open the file directly.
- can access full filesystem
data/radare2-4.3.1+dfsg/libr/core/rtr.c:66:5:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
				vsnprintf (msg, 4095, fmt, ap);
data/radare2-4.3.1+dfsg/libr/core/rtr.c:71:4:  [4] (format) vfprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
			vfprintf (stderr, fmt, ap);
data/radare2-4.3.1+dfsg/libr/core/rtr.c:255:9:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	return snprintf (buf, sz, regsize == 2 ? "%04"PFMT64x
data/radare2-4.3.1+dfsg/libr/core/rtr.c:263:11:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
			return snprintf (buf, sz,
data/radare2-4.3.1+dfsg/libr/core/rtr.c:272:11:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
			return snprintf (buf, sz,
data/radare2-4.3.1+dfsg/libr/core/rtr.c:276:10:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		return snprintf (buf, sz,
data/radare2-4.3.1+dfsg/libr/core/rtr.c:281:11:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
			return snprintf (buf, sz,
data/radare2-4.3.1+dfsg/libr/core/rtr.c:285:10:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		return snprintf (buf, sz,
data/radare2-4.3.1+dfsg/libr/core/rtr.c:314:10:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		return snprintf (dest, sz, "0x%04x%016"PFMT64x,
data/radare2-4.3.1+dfsg/libr/core/rtr.c:324:10:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		return snprintf (dest, sz, "0x%08x%016"PFMT64x,
data/radare2-4.3.1+dfsg/libr/core/rtr.c:334:10:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		return snprintf (dest, sz, "0x%016"PFMT64x"%016"PFMT64x,
data/radare2-4.3.1+dfsg/libr/core/rtr.c:381:8:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
			if (snprintf (out_buf, max_len - 1, "%"PFMT64x, r_debug_get_baddr (core->dbg, NULL)) < 0) {
data/radare2-4.3.1+dfsg/libr/core/rtr.c:514:8:  [4] (buffer) sscanf:
  The scanf() family's %s operation, without a limit specification, permits
  buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
  different input function. If the scanf format is influenceable by an
  attacker, it's exploitable.
			if (sscanf (cmd + 2, "%"PFMT64x",%"PFMT64x, &off, &len) != 2) {
data/radare2-4.3.1+dfsg/libr/core/vasm.c:44:4:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
			strcpy (a->codebuf, a->blockbuf);
data/radare2-4.3.1+dfsg/libr/core/visual.c:3695:5:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
				snprintf (pos, sizeof (pos), "@ %s+%d # 0x%"PFMT64x,
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:1869:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
				sprintf (cmd, "s %s", fs2);
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:2995:3:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
		sprintf (old, "afi @ 0x%08"PFMT64x, addr);
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:4149:3:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
		sprintf (color, rgb_xxx_fmt, rcolor.r, rcolor.g, rcolor.b);
data/radare2-4.3.1+dfsg/libr/debug/debug.c:377:27:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
	dbg->cb_printf = (void *)printf;
data/radare2-4.3.1+dfsg/libr/debug/debug.c:1685:12:  [4] (shell) system:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
		dbg->iob.system (dbg->iob.io, "baddr");
data/radare2-4.3.1+dfsg/libr/debug/dreg.c:179:6:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
					snprintf (strvalue, sizeof (strvalue),"%"PFMT64u, value);
data/radare2-4.3.1+dfsg/libr/debug/dreg.c:182:7:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
						snprintf (strvalue, sizeof (strvalue),"0x%016"PFMT64x, value);
data/radare2-4.3.1+dfsg/libr/debug/dreg.c:184:7:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
						snprintf (strvalue, sizeof (strvalue),"0x%08"PFMT64x, value);
data/radare2-4.3.1+dfsg/libr/debug/dreg.c:239:6:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
					strcpy (whites, kwhites);
data/radare2-4.3.1+dfsg/libr/debug/dreg.c:243:6:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
					snprintf (content, sizeof (content),
data/radare2-4.3.1+dfsg/libr/debug/p/debug_gdb.c:191:9:  [4] (buffer) sscanf:
  The scanf() family's %s operation, without a limit specification, permits
  buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
  different input function.
		ret = sscanf (ptr, "%s %s %"PFMT64x" %*s %*s %[^\n]", &region1[2],
data/radare2-4.3.1+dfsg/libr/debug/p/debug_io.c:8:17:  [4] (shell) system:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
	free (dbg->iob.system (dbg->iob.io, "ds"));
data/radare2-4.3.1+dfsg/libr/debug/p/debug_io.c:13:17:  [4] (shell) system:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
	free (dbg->iob.system (dbg->iob.io, "dso"));
data/radare2-4.3.1+dfsg/libr/debug/p/debug_io.c:19:23:  [4] (shell) system:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
	char *str = dbg->iob.system (dbg->iob.io, "dm");
data/radare2-4.3.1+dfsg/libr/debug/p/debug_io.c:51:4:  [4] (buffer) sscanf:
  The scanf() family's %s operation, without a limit specification, permits
  buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
  different input function.
			sscanf (str, "0x%"PFMT64x" - 0x%"PFMT64x" %s %s",
data/radare2-4.3.1+dfsg/libr/debug/p/debug_io.c:79:23:  [4] (shell) system:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
	char *drp = dbg->iob.system (dbg->iob.io, "drp");
data/radare2-4.3.1+dfsg/libr/debug/p/debug_io.c:94:23:  [4] (shell) system:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
	char *dr8 = dbg->iob.system (dbg->iob.io, "dr8");
data/radare2-4.3.1+dfsg/libr/debug/p/debug_io.c:126:11:  [4] (shell) system:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
	dbg->iob.system (dbg->iob.io, "dc");
data/radare2-4.3.1+dfsg/libr/debug/p/debug_io.c:134:11:  [4] (shell) system:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
	dbg->iob.system (dbg->iob.io, cmd);
data/radare2-4.3.1+dfsg/libr/debug/p/debug_native.c:1009:2:  [4] (shell) system:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
	system (path);
data/radare2-4.3.1+dfsg/libr/debug/p/debug_native.c:1071:7:  [4] (buffer) sscanf:
  The scanf() family's %s operation, without a limit specification, permits
  buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
  different input function.
		if (sscanf (line, "%s %s %d %d 0x%s %3s %d %d",
data/radare2-4.3.1+dfsg/libr/debug/p/debug_native.c:1089:7:  [4] (buffer) sscanf:
  The scanf() family's %s operation, without a limit specification, permits
  buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
  different input function.
		i = sscanf (line, "%s %s %08"PFMT64x" %*s %*s %[^\n]", &region[2], perms, &offset, name);
data/radare2-4.3.1+dfsg/libr/debug/p/native/darwin.c:37:25:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
                        sprintf (buf,"/proc/%s/stat", file->d_name);
data/radare2-4.3.1+dfsg/libr/debug/p/native/darwin.c:41:33:  [4] (buffer) fscanf:
  The scanf() family's %s operation, without a limit specification, permits
  buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
  different input function.
                                fscanf (fd,"%d %s %s %d",
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:155:3:  [4] (buffer) sscanf:
  The scanf() family's %s operation, without a limit specification, permits
  buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
  different input function.
		sscanf (buff,  "%d %s %c %d %d %d %d %d %u %lu %lu %lu %lu"
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:811:3:  [4] (buffer) sscanf:
  The scanf() family's %s operation, without a limit specification, permits
  buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
  different input function.
		sscanf (buff, "%d %s %c %d %d %d %d %d %u %lu %lu %lu %lu"
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/reg/linux-s390x.h:46:64:  [4] (race) access:
  This usually indicates a security flaw. If an attacker can change anything
  along the path between the call to access() and the file's actual use
  (e.g., by moving files), the attacker can exploit the race condition
  (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
  and try to open the file directly.
purpose registers and are designed to be used in the so-called access
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/reg/linux-s390x.h:48:24:  [4] (race) access:
  This usually indicates a security flaw. If an attacker can change anything
  along the path between the call to access() and the file's actual use
  (e.g., by moving files), the attacker can exploit the race condition
  (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
  and try to open the file directly.
Access register 0 (and access register 1 on z/Architecture, which needs a
data/radare2-4.3.1+dfsg/libr/debug/p/native/w32.c:272:6:  [4] (format) _sntprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
					_sntprintf (temp_filename, MAX_PATH, TEXT ("%s%s"),
data/radare2-4.3.1+dfsg/libr/debug/p/native/windows/windows_debug.c:662:5:  [4] (format) _sntprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
				_sntprintf (path, maxlength, TEXT ("%s%s"), drv, tmp);
data/radare2-4.3.1+dfsg/libr/debug/p/native/xnu/xnu_debug.c:1376:5:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
				strcpy (maxperm, r_str_rwx_i (xwr2rwx (
data/radare2-4.3.1+dfsg/libr/debug/p/native/xnu/xnu_debug.c:1405:7:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
						strcpy (mr->name, slash + 1);
data/radare2-4.3.1+dfsg/libr/debug/p/native/xnu/xnu_debug.c:1429:6:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
					strcpy (m2->name, slash + 1);
data/radare2-4.3.1+dfsg/libr/debug/trace.c:170:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (addr_str, sizeof (addr_str), "0x%08"PFMT64x, addr);
data/radare2-4.3.1+dfsg/libr/egg/egg.c:282:8:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	len = vsnprintf (buf, sizeof (buf), fmt, ap);
data/radare2-4.3.1+dfsg/libr/egg/egg_lang.c:205:2:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	snprintf (label, sizeof (label), FRAME_FMT, nf, nb, ct);
data/radare2-4.3.1+dfsg/libr/egg/egg_lang.c:211:2:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	snprintf (label, sizeof (label) - 1, FRAME_END_FMT,
data/radare2-4.3.1+dfsg/libr/egg/egg_lang.c:562:4:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
			strcpy (out, e->retvar);
data/radare2-4.3.1+dfsg/libr/egg/emit_arm.c:67:2:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	vsnprintf (buf, sizeof (buf), fmt, ap);
data/radare2-4.3.1+dfsg/libr/egg/emit_arm.c:181:2:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
	sprintf (str, "  push {%s}\n  b %s\n", ctxpush, label);
data/radare2-4.3.1+dfsg/libr/egg/emit_trace.c:41:2:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	vsnprintf (buf, sizeof (buf), fmt, ap);
data/radare2-4.3.1+dfsg/libr/egg/emit_x86.c:112:2:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	vsnprintf (buf, sizeof (buf), fmt, ap);
data/radare2-4.3.1+dfsg/libr/egg/emit_x86.c:330:2:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
	sprintf (str, "  push %s\n  jmp %s\n", ctxpush, label);
data/radare2-4.3.1+dfsg/libr/egg/emit_x86.c:544:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (out, reg);
data/radare2-4.3.1+dfsg/libr/egg/p/egg_exec.c:5:22:  [4] (shell) execv:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
linux setresuid(0,0)+execv(/bin/sh)
data/radare2-4.3.1+dfsg/libr/egg/rlcc/rlcc.c:4:25:  [4] (format) fprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
#define eprintf(x,y...) fprintf(stderr,x,##y)
data/radare2-4.3.1+dfsg/libr/flag/flag.c:229:33:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
	f->cb_printf = (PrintfCallback)printf;
data/radare2-4.3.1+dfsg/libr/flag/flag.c:700:2:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
	strcpy (newName, name);
data/radare2-4.3.1+dfsg/libr/fs/fs.c:366:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (str, name);
data/radare2-4.3.1+dfsg/libr/fs/fs.c:368:3:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
		strcat (str, file->name);
data/radare2-4.3.1+dfsg/libr/fs/fs.c:374:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (npath, path);
data/radare2-4.3.1+dfsg/libr/fs/fs.c:376:3:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
		strcat (npath, file->name);
data/radare2-4.3.1+dfsg/libr/fs/fs.c:421:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (found, name);
data/radare2-4.3.1+dfsg/libr/fs/fs.c:423:3:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
		strcat (found, item->name);
data/radare2-4.3.1+dfsg/libr/fs/fs.c:464:4:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
			strcpy (found, name);
data/radare2-4.3.1+dfsg/libr/fs/fs.c:466:4:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
			strcat (found, item->name);
data/radare2-4.3.1+dfsg/libr/fs/fs.c:477:4:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
			strcpy (found, name);
data/radare2-4.3.1+dfsg/libr/fs/fs.c:479:4:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
			strcat (found, item->name);
data/radare2-4.3.1+dfsg/libr/fs/p/fs_io.c:9:24:  [4] (shell) system:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
	char *res = root->iob.system (root->iob.io, cmd);
data/radare2-4.3.1+dfsg/libr/fs/p/fs_io.c:43:24:  [4] (shell) system:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
	char *res = root->iob.system (root->iob.io, cmd);
data/radare2-4.3.1+dfsg/libr/fs/p/fs_io.c:88:24:  [4] (shell) system:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
	char *res = root->iob.system (root->iob.io, cmd);
data/radare2-4.3.1+dfsg/libr/fs/p/fs_posix.c:64:2:  [4] (format) swprintf:
  Potential format string problem (CWE-134). Make format string constant.
	swprintf (directory, _countof (directory), L"%ls\\*.*", wcpath);
data/radare2-4.3.1+dfsg/libr/fs/shell.c:185:7:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
						strcat (path, input);
data/radare2-4.3.1+dfsg/libr/fs/shell.c:255:6:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
					strcpy (s, root);
data/radare2-4.3.1+dfsg/libr/fs/shell.c:262:5:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
				strcpy (s, path);
data/radare2-4.3.1+dfsg/libr/fs/shell.c:271:4:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
			strcat (s, input);
data/radare2-4.3.1+dfsg/libr/include/r_anal.h:1633:41:  [4] (race) access:
  This usually indicates a security flaw. If an attacker can change anything
  along the path between the call to access() and the file's actual use
  (e.g., by moving files), the attacker can exploit the race condition
  (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
  and try to open the file directly.
R_API void r_anal_var_access_free(void *access);
data/radare2-4.3.1+dfsg/libr/include/r_io.h:169:10:  [4] (shell) system:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
	char *(*system)(RIO *io, RIODesc *fd, const char *);
data/radare2-4.3.1+dfsg/libr/include/r_io.h:262:12:  [4] (shell) system:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
	RIOSystem system;
data/radare2-4.3.1+dfsg/libr/include/r_socket.h:192:17:  [4] (shell) system:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
	rap_server_cmd system;
data/radare2-4.3.1+dfsg/libr/include/r_types.h:355:22:  [4] (format) fprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
#define eprintf(...) fprintf(stderr,__VA_ARGS__)
data/radare2-4.3.1+dfsg/libr/include/sdb/types.h:12:22:  [4] (format) fprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
#define eprintf(...) fprintf(stderr,__VA_ARGS__)
data/radare2-4.3.1+dfsg/libr/include/sflib/darwin-arm-64/sflib.h:62:33:  [4] (race) access:
  This usually indicates a security flaw. If an attacker can change anything
  along the path between the call to access() and the file's actual use
  (e.g., by moving files), the attacker can exploit the race condition
  (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
  and try to open the file directly.
static inline _sfsyscall2( int, access, const char *, pathname, int, mode )
data/radare2-4.3.1+dfsg/libr/include/sflib/darwin-x86-32/sflib.h:60:33:  [4] (race) access:
  This usually indicates a security flaw. If an attacker can change anything
  along the path between the call to access() and the file's actual use
  (e.g., by moving files), the attacker can exploit the race condition
  (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
  and try to open the file directly.
static inline _sfsyscall2( int, access, const char *, pathname, int, mode )
data/radare2-4.3.1+dfsg/libr/include/sflib/darwin-x86-64/sflib.h:60:33:  [4] (race) access:
  This usually indicates a security flaw. If an attacker can change anything
  along the path between the call to access() and the file's actual use
  (e.g., by moving files), the attacker can exploit the race condition
  (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
  and try to open the file directly.
static inline _sfsyscall2( int, access, const char *, pathname, int, mode )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-arm-32/sflib.h:53:33:  [4] (race) access:
  This usually indicates a security flaw. If an attacker can change anything
  along the path between the call to access() and the file's actual use
  (e.g., by moving files), the attacker can exploit the race condition
  (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
  and try to open the file directly.
static inline _sfsyscall2( int, access, const char *, pathname, int, mode )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-arm-32/sflib.h:135:33:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
static inline _sfsyscall3( int, syslog, int, type, char *, bufp, int, len )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-arm-64/sflib.h:53:33:  [4] (race) access:
  This usually indicates a security flaw. If an attacker can change anything
  along the path between the call to access() and the file's actual use
  (e.g., by moving files), the attacker can exploit the race condition
  (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
  and try to open the file directly.
static inline _sfsyscall2( int, access, const char *, pathname, int, mode )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-arm-64/sflib.h:135:33:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
static inline _sfsyscall3( int, syslog, int, type, char *, bufp, int, len )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-x86-32/sflib.h:64:33:  [4] (race) access:
  This usually indicates a security flaw. If an attacker can change anything
  along the path between the call to access() and the file's actual use
  (e.g., by moving files), the attacker can exploit the race condition
  (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
  and try to open the file directly.
static inline _sfsyscall2( int, access, const char *, pathname, int, mode )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-x86-32/sflib.h:134:33:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
static inline _sfsyscall3( int, syslog, int, type, char *, bufp, int, len )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-x86-64/sflib.h:53:33:  [4] (race) access:
  This usually indicates a security flaw. If an attacker can change anything
  along the path between the call to access() and the file's actual use
  (e.g., by moving files), the attacker can exploit the race condition
  (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
  and try to open the file directly.
static inline _sfsyscall2( int, access, const char *, pathname, int, mode )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-x86-64/sflib.h:135:33:  [4] (format) syslog:
  If syslog's format strings can be influenced by an attacker, they can be
  exploited (CWE-134). Use a constant format string for syslog.
static inline _sfsyscall3( int, syslog, int, type, char *, bufp, int, len )
data/radare2-4.3.1+dfsg/libr/io/io.c:394:62:  [4] (shell) system:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
	if (io && io->desc && io->desc->plugin && io->desc->plugin->system) {
data/radare2-4.3.1+dfsg/libr/io/io.c:395:28:  [4] (shell) system:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
		return io->desc->plugin->system (io, io->desc, cmd);
data/radare2-4.3.1+dfsg/libr/io/p/io_debug.c:446:8:  [4] (shell) execvp:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
			if (execvp (argv[0], argv) == -1) {
data/radare2-4.3.1+dfsg/libr/io/p/io_gprobe.c:256:2:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
	sprintf (escaped_port_name, "\\\\.\\%s", port->name);
data/radare2-4.3.1+dfsg/libr/io/p/io_r2k_linux.c:433:5:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
				sprintf (cmd, "s 0x%"PFMT64x, io->off);
data/radare2-4.3.1+dfsg/libr/io/p/io_self.c:101:3:  [4] (buffer) sscanf:
  The scanf() family's %s operation, without a limit specification, permits
  buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
  different input function.
		sscanf (line, "%s %s %*s %*s %*s %[^\n]", region+2, perms, path);
data/radare2-4.3.1+dfsg/libr/io/p/io_winedbg.c:342:6:  [4] (buffer) sscanf:
  The scanf() family's %s operation, without a limit specification, permits
  buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
  different input function. If the scanf format is influenceable by an
  attacker, it's exploitable.
					sscanf (ptr, "%08"PFMT64x" %08"PFMT64x, &from, &to);
data/radare2-4.3.1+dfsg/libr/lang/lang.c:45:36:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
	lang->cb_printf = (PrintfCallback)printf;
data/radare2-4.3.1+dfsg/libr/lang/p/c.c:27:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		sprintf (name, "%s.c", file);
data/radare2-4.3.1+dfsg/libr/lang/p/c.c:29:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (name, file);
data/radare2-4.3.1+dfsg/libr/lang/p/cpipe.c:16:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		sprintf (name, "%s.c", file);
data/radare2-4.3.1+dfsg/libr/lang/p/cpipe.c:17:7:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
	else strcpy (name, file);
data/radare2-4.3.1+dfsg/libr/lang/p/rust.c:16:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		sprintf (name, "%s.rs", file);
data/radare2-4.3.1+dfsg/libr/lang/p/rust.c:18:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (name, file);
data/radare2-4.3.1+dfsg/libr/lang/p/vala.c:19:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		sprintf (name, "%s.vala", file);
data/radare2-4.3.1+dfsg/libr/lang/p/vala.c:21:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (name, file);
data/radare2-4.3.1+dfsg/libr/lang/p/vala.c:95:8:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	len = snprintf (buf, sizeof (buf), "./lib%s." R_LIB_EXT, libname);
data/radare2-4.3.1+dfsg/libr/magic/apprentice.c:626:4:  [4] (format) swprintf:
  Potential format string problem (CWE-134). Make format string constant.
			swprintf (dir, _countof (dir), L"%ls\\*.*", wcpath);
data/radare2-4.3.1+dfsg/libr/magic/funcs.c:50:12:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	int len = vsnprintf (cbuf, sizeof (cbuf), fmt, ap2);
data/radare2-4.3.1+dfsg/libr/magic/funcs.c:58:9:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		(void)vsnprintf (buf, len + 1, fmt, ap2);
data/radare2-4.3.1+dfsg/libr/magic/print.c:185:9:  [4] (format) vfprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
	(void) vfprintf (stderr, f, va);
data/radare2-4.3.1+dfsg/libr/main/rabin2.c:532:35:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
	bin->cb_printf = (PrintfCallback)printf;
data/radare2-4.3.1+dfsg/libr/main/radiff2.c:138:6:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
					printf (Color_RED);
data/radare2-4.3.1+dfsg/libr/main/radiff2.c:149:6:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
					printf (Color_RESET);
data/radare2-4.3.1+dfsg/libr/main/radiff2.c:157:6:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
					printf (Color_GREEN);
data/radare2-4.3.1+dfsg/libr/main/radiff2.c:167:6:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
					printf (Color_RESET);
data/radare2-4.3.1+dfsg/libr/main/radiff2.c:249:6:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
					printf ("%s"Color_RESET, bufasm);
data/radare2-4.3.1+dfsg/libr/main/radiff2.c:282:6:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
					printf ("%s\n" Color_RESET, bufasm);
data/radare2-4.3.1+dfsg/libr/main/rahash2.c:60:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy ((char *) s.buf, sptr + 2);
data/radare2-4.3.1+dfsg/libr/main/rahash2.c:65:4:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
			strcpy ((char *) s.buf, sptr);
data/radare2-4.3.1+dfsg/libr/main/rahash2.c:538:4:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
			strcpy ((char *) iv, ivseed + 2);
data/radare2-4.3.1+dfsg/libr/main/rahash2.c:543:5:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
				strcpy ((char *) iv, ivseed);
data/radare2-4.3.1+dfsg/libr/main/rax2.c:518:3:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
		printf (start);
data/radare2-4.3.1+dfsg/libr/parse/code.c:16:4:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
			strcpy (p, *s);
data/radare2-4.3.1+dfsg/libr/parse/code.c:19:4:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
			strcpy (p + strlen (p), msg);
data/radare2-4.3.1+dfsg/libr/parse/code.c:86:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (ptr, *p);
data/radare2-4.3.1+dfsg/libr/parse/filter.c:36:2:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
	strcpy (dst, src);
data/radare2-4.3.1+dfsg/libr/parse/filter.c:37:2:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
	strcpy (dst + strlen (src), endNum);
data/radare2-4.3.1+dfsg/libr/parse/filter.c:334:27:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
								char *dptr_left = strcpy (ptr_left + copied_len,
data/radare2-4.3.1+dfsg/libr/parse/filter.c:359:9:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
								snprintf (str, sizeof (str), "..%"PFMT64x, tail);
data/radare2-4.3.1+dfsg/libr/parse/filter.c:482:5:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
				snprintf (num, sizeof (num), "%" PFMT64d, (st64)off);
data/radare2-4.3.1+dfsg/libr/parse/filter.c:505:5:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
				snprintf (num, sizeof (num), "0x%"PFMT64x, (ut64) off);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_6502_pseudo.c:88:7:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
						strcpy(newstr + k, w);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_6502_pseudo.c:98:5:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
				strcat (newstr + k + 3, argv[2]);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_6502_pseudo.c:107:3:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
		strcat (newstr, argv[i]);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_6502_pseudo.c:108:3:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
		strcat (newstr, (i == 0 || i == argc - 1) ? " " : ",");
data/radare2-4.3.1+dfsg/libr/parse/p/parse_arm_pseudo.c:169:8:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
							strcpy (newstr + k, w);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_arm_pseudo.c:188:3:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
		strcat (newstr, argv[i]);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_arm_pseudo.c:189:3:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
		strcat (newstr, (!i || i == argc - 1)? " " : ",");
data/radare2-4.3.1+dfsg/libr/parse/p/parse_arm_pseudo.c:273:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (str, s);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_arm_pseudo.c:427:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy  (str, tstr);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_att2intel.c:45:8:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
							strcpy(newstr+k, w);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_att2intel.c:62:4:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
			strcat (newstr, argv[i]);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_att2intel.c:63:4:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
			strcat (newstr, (i == 0 || i== argc - 1)?" ":",");
data/radare2-4.3.1+dfsg/libr/parse/p/parse_att2intel.c:92:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (str, data);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_att2intel.c:115:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf (ptr, "+%d]%s", n, rest);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_att2intel.c:117:6:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
					sprintf (ptr, "%d]%s", n, rest);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_avr_pseudo.c:110:8:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
							strcpy (newstr + k, w);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_avr_pseudo.c:127:4:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
			strcat (newstr, argv[i]);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_avr_pseudo.c:128:4:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
			strcat (newstr, (i == 0 || i == argc - 1) ? " ":", ");
data/radare2-4.3.1+dfsg/libr/parse/p/parse_chip8_pseudo.c:97:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (str, data);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_dalvik_pseudo.c:204:8:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
							strcpy (newstr+k, w);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_dalvik_pseudo.c:221:4:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
			strcat (newstr, argv[i]);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_dalvik_pseudo.c:222:4:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
			strcat (newstr, (i == 0 || i== argc - 1)?" ":", ");
data/radare2-4.3.1+dfsg/libr/parse/p/parse_dalvik_pseudo.c:334:24:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		int snprintf_len1_ = snprintf (a, 32, x, w1, w1); \
data/radare2-4.3.1+dfsg/libr/parse/p/parse_dalvik_pseudo.c:335:24:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		int snprintf_len2_ = snprintf (b, 32, y, w1); \
data/radare2-4.3.1+dfsg/libr/parse/p/parse_dalvik_pseudo.c:350:2:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
	strcpy (str, p);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_m68k_pseudo.c:76:8:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
							strcpy (newstr+k, w);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_m68k_pseudo.c:93:4:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
			strcat (newstr, argv[i]);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_m68k_pseudo.c:94:4:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
			strcat (newstr, (i == 0 || i== argc - 1)?" ":", ");
data/radare2-4.3.1+dfsg/libr/parse/p/parse_mips_pseudo.c:104:8:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
							strcpy (newstr+k, w);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_mips_pseudo.c:121:4:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
			strcat (newstr, argv[i]);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_mips_pseudo.c:122:4:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
			strcat (newstr, (i == 0 || i== argc - 1)?" ":", ");
data/radare2-4.3.1+dfsg/libr/parse/p/parse_mips_pseudo.c:227:24:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		int snprintf_len1_ = snprintf (a, 32, x, w1, w1); \
data/radare2-4.3.1+dfsg/libr/parse/p/parse_mips_pseudo.c:228:24:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		int snprintf_len2_ = snprintf (b, 32, y, w1);	\
data/radare2-4.3.1+dfsg/libr/parse/p/parse_mips_pseudo.c:244:2:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
	strcpy (str, p);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_mips_pseudo.c:332:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (str, tstr);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_ppc_pseudo.c:1588:8:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
							strcpy (newstr + k, w);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_ppc_pseudo.c:1605:4:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
			strcat (newstr, argv[i]);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_ppc_pseudo.c:1606:4:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
			strcat (newstr, (i == 0 || i == argc - 1) ? " ":", ");
data/radare2-4.3.1+dfsg/libr/parse/p/parse_ppc_pseudo.c:1722:24:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		int snprintf_len1_ = snprintf (a, 64, x, w1, w1); \
data/radare2-4.3.1+dfsg/libr/parse/p/parse_ppc_pseudo.c:1723:24:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		int snprintf_len2_ = snprintf (b, 64, y, w1); \
data/radare2-4.3.1+dfsg/libr/parse/p/parse_ppc_pseudo.c:1739:5:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
				strcpy (str, p);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_sh_pseudo.c:134:8:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
							strcpy (newstr + k, w);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_sh_pseudo.c:151:4:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
			strcat (newstr, argv[i]);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_sh_pseudo.c:152:4:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
			strcat (newstr, (i == 0 || i == argc - 1) ? " ":", ");
data/radare2-4.3.1+dfsg/libr/parse/p/parse_x86_pseudo.c:142:8:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
							strcpy (newstr + k, w);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_x86_pseudo.c:159:4:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
			strcat (newstr, argv[i]);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_x86_pseudo.c:160:4:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
			strcat (newstr, (i == 0 || i == argc - 1)? " ": ",");
data/radare2-4.3.1+dfsg/libr/parse/p/parse_x86_pseudo.c:508:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (str, tstr);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_z80_pseudo.c:52:8:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
							strcpy (newstr+k, w);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_z80_pseudo.c:69:4:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
			strcat (newstr, argv[i]);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_z80_pseudo.c:70:4:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
			strcat (newstr, (i == 0 || i== argc - 1)?" ":", ");
data/radare2-4.3.1+dfsg/libr/reg/profile.c:296:9:  [4] (buffer) sscanf:
  The scanf() family's %s operation, without a limit specification, permits
  buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
  different input function.
		ret = sscanf (ptr, " %s %d %d %d %d %s %s", name, &number, &rel,
data/radare2-4.3.1+dfsg/libr/reg/profile.c:347:18:  [4] (shell) system:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
				type_bits |= system;
data/radare2-4.3.1+dfsg/libr/socket/http_server.c:215:4:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
			strcat (buf, rs->data);
data/radare2-4.3.1+dfsg/libr/socket/proc.c:58:3:  [4] (shell) execv:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
		execv (argv[0], argv);
data/radare2-4.3.1+dfsg/libr/socket/proc.c:120:3:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		vsnprintf (buf, BUFFER_SIZE, fmt, ap);
data/radare2-4.3.1+dfsg/libr/socket/r2pipe.c:328:8:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	ret = vsnprintf (string, sizeof (string) - 1, fmt, ap);
data/radare2-4.3.1+dfsg/libr/socket/r2pipe.c:336:10:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		ret2 = vsnprintf (p, ret + 1, fmt, ap2);
data/radare2-4.3.1+dfsg/libr/socket/run.c:1026:9:  [4] (shell) execv:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
		exit (execv (p->_program, (char* const*)p->_args));
data/radare2-4.3.1+dfsg/libr/socket/run.c:1131:9:  [4] (shell) execv:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
		exit (execv (p->_program, (char* const*)p->_args));
data/radare2-4.3.1+dfsg/libr/socket/socket.c:765:3:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		vsnprintf (buf, BUFFER_SIZE, fmt, ap);
data/radare2-4.3.1+dfsg/libr/util/ctype.c:8:2:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
	sprintf (var, "link.%08"PFMT64x, at);
data/radare2-4.3.1+dfsg/libr/util/file.c:158:2:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	vsnprintf (string, sizeof (string), fmt, ap);
data/radare2-4.3.1+dfsg/libr/util/file.c:1038:2:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	snprintf (name, namesz, "%s/%s.%"PFMT64x, path, prefix, r_sys_now ());
data/radare2-4.3.1+dfsg/libr/util/file.c:1199:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (filename, path);
data/radare2-4.3.1+dfsg/libr/util/file.c:1200:3:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
		strcat (filename, file);
data/radare2-4.3.1+dfsg/libr/util/file.c:1202:4:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
			strcat (filename, R_SYS_DIR);
data/radare2-4.3.1+dfsg/libr/util/lib.c:367:2:  [4] (format) swprintf:
  Potential format string problem (CWE-134). Make format string constant.
	swprintf (directory, _countof (directory), L"%ls\\*.*", wcpath);
data/radare2-4.3.1+dfsg/libr/util/lib.c:375:3:  [4] (format) swprintf:
  Potential format string problem (CWE-134). Make format string constant.
		swprintf (file, _countof (file), L"%ls/%ls", wcpath, dir.cFileName);
data/radare2-4.3.1+dfsg/libr/util/log.c:94:2:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	vsnprintf (output_buf + offset, LOG_OUTPUTBUF_SIZE - offset, fmtstr, args);
data/radare2-4.3.1+dfsg/libr/util/print.c:22:2:  [4] (format) vprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
	vprintf (format, ap);
data/radare2-4.3.1+dfsg/libr/util/print.c:30:2:  [4] (format) vfprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
	vfprintf (stderr, format, ap);
data/radare2-4.3.1+dfsg/libr/util/print.c:478:4:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
			snprintf (space, sizeof (space), "%" PFMT64d, addr);
data/radare2-4.3.1+dfsg/libr/util/print.c:817:45:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
	PrintfCallback printfmt = (PrintfCallback) printf;
data/radare2-4.3.1+dfsg/libr/util/print.c:940:6:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
					snprintf (soff, sizeof (soff), "0x%08" PFMT64x, addr);
data/radare2-4.3.1+dfsg/libr/util/print.c:1363:4:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
			sprintf (fmt, "%s%02x" Color_RESET, p->cons->context->pal.graph_true, a);
data/radare2-4.3.1+dfsg/libr/util/print.c:1365:4:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
			sprintf (fmt, "%s%02x" Color_RESET, p->cons->context->pal.graph_false, a);
data/radare2-4.3.1+dfsg/libr/util/print.c:1377:4:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
			sprintf (fmt, "%s%c" Color_RESET, p->cons->context->pal.graph_true, ch);
data/radare2-4.3.1+dfsg/libr/util/print.c:1379:4:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
			sprintf (fmt, "%s%c" Color_RESET, p->cons->context->pal.graph_false, ch);
data/radare2-4.3.1+dfsg/libr/util/print.c:1468:4:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
			printf (fmt, buf[i]);
data/radare2-4.3.1+dfsg/libr/util/print.c:2065:5:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
				strcpy (o + j, reset);
data/radare2-4.3.1+dfsg/libr/util/print.c:2075:6:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
					strcpy (o + j + 1, color);
data/radare2-4.3.1+dfsg/libr/util/print.c:2100:5:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
				strcpy (o + j, num);
data/radare2-4.3.1+dfsg/libr/util/print.c:2114:5:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
				strcpy (o + j, reg);
data/radare2-4.3.1+dfsg/libr/util/print.c:2127:7:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
						strcpy (o + j, map->name);
data/radare2-4.3.1+dfsg/libr/util/print.c:2145:2:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
	strcpy (o + j, reset);
data/radare2-4.3.1+dfsg/libr/util/sandbox.c:186:10:  [4] (shell) system:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
		return system (x);
data/radare2-4.3.1+dfsg/libr/util/sandbox.c:189:9:  [4] (shell) execl:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
	return execl ("/bin/sh", "sh", "-c", x, (const char*)NULL);
data/radare2-4.3.1+dfsg/libr/util/sandbox.c:227:2:  [4] (shell) execl:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
	execl ("/bin/sh", "sh", "-c", x, (const char*)NULL);
data/radare2-4.3.1+dfsg/libr/util/sandbox.c:409:2:  [4] (format) swprintf:
  Potential format string problem (CWE-134). Make format string constant.
	swprintf (dir, MAX_PATH, L"%ls\\*.*", wcpath);
data/radare2-4.3.1+dfsg/libr/util/str.c:317:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (dst + home_len + 1, str);
data/radare2-4.3.1+dfsg/libr/util/str.c:516:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (out, newstr);
data/radare2-4.3.1+dfsg/libr/util/str.c:753:12:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	int ret = vsnprintf (NULL, 0, fmt, ap2);
data/radare2-4.3.1+dfsg/libr/util/str.c:757:9:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		(void)vsnprintf (p, ret, fmt, ap);
data/radare2-4.3.1+dfsg/libr/util/str.c:939:12:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	int ret = vsnprintf (NULL, 0, fmt, ap2);
data/radare2-4.3.1+dfsg/libr/util/str.c:943:9:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		(void)vsnprintf (p, ret, fmt, ap);
data/radare2-4.3.1+dfsg/libr/util/str.c:3353:5:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
				strcpy (o + j, color);
data/radare2-4.3.1+dfsg/libr/util/str.c:3366:5:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
				strcpy (o + j, color_reset);
data/radare2-4.3.1+dfsg/libr/util/str.c:3375:4:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
			strcpy (o + j, str + i);
data/radare2-4.3.1+dfsg/libr/util/str.c:3468:12:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	int ret = vsnprintf (string, len, fmt, ap);
data/radare2-4.3.1+dfsg/libr/util/strbuf.c:153:7:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	rc = vsnprintf (string, sizeof (string), fmt, ap);
data/radare2-4.3.1+dfsg/libr/util/strbuf.c:160:3:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		vsnprintf (p, rc + 1, fmt, ap2);
data/radare2-4.3.1+dfsg/libr/util/strbuf.c:263:8:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	ret = vsnprintf (string, sizeof (string), fmt, ap);
data/radare2-4.3.1+dfsg/libr/util/strbuf.c:271:3:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		vsnprintf (p, ret + 1, fmt, ap2);
data/radare2-4.3.1+dfsg/libr/util/sys.c:284:2:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	vsnprintf (cmd, sizeof (cmd), fmt, ap);
data/radare2-4.3.1+dfsg/libr/util/sys.c:432:2:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	snprintf (cmd, sizeof(cmd) - 1, crash_handler_cmd, getpid ());
data/radare2-4.3.1+dfsg/libr/util/sys.c:756:2:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	vsnprintf (cmd, sizeof (cmd), fmt, ap);
data/radare2-4.3.1+dfsg/libr/util/unum.c:118:2:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	snprintf (buf, len, fmt_str, fnum, unit);
data/radare2-4.3.1+dfsg/libr/util/unum.c:215:3:  [4] (buffer) sscanf:
  The scanf() family's %s operation, without a limit specification, permits
  buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
  different input function. If the scanf format is influenceable by an
  attacker, it's exploitable.
		sscanf (str, "0x%"PFMT64x, &ret);
data/radare2-4.3.1+dfsg/libr/util/unum.c:223:7:  [4] (buffer) sscanf:
  The scanf() family's %s operation, without a limit specification, permits
  buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
  different input function. If the scanf format is influenceable by an
  attacker, it's exploitable.
		if (sscanf (str + 2, "%"PFMT64o, &ret) != 1) {
data/radare2-4.3.1+dfsg/libr/util/unum.c:743:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (p + 2, hex);
data/radare2-4.3.1+dfsg/libr/util/unum.c:767:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (p + 2, hex);
data/radare2-4.3.1+dfsg/shlr/bochs/include/libbochs.h:47:76:  [4] (format) fprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
#define lprintf(x,y...) { FILE *fd;fd=fopen("bochs.io.log", "a"); if (fd) {fprintf(fd,x,##y);fflush(fd);fclose(fd); }}
data/radare2-4.3.1+dfsg/shlr/bochs/src/libbochs.c:282:10:  [4] (shell) execl:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
		(void) execl (pathBochs, pathBochs, "-q", "-f", pathConfig, NULL);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:747:7:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		if (snprintf (command, sizeof (command) - 1,
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:779:7:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		if (snprintf (command, sizeof (command) - 1,
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:1151:5:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
				strcpy (value + (register_size * 2 - val_len), name_end);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:1509:15:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		if ((ret1 = snprintf (command, sizeof (command) - 1,
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:1656:7:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		if (snprintf (msg, sizeof (msg) - 1,
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/xml.c:20:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (msg, sizeof (msg), "qXfer:features:read:%s:%"PFMT64x
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/xml.c:40:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (ret + retlen, g->data + 1);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/xml.c:115:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (msg, sizeof (msg), "qXfer:osdata:read:%s:%" PFMT64x ",%" PFMT64x, file, off, len);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/xml.c:133:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (ret + retlen, g->data + 1);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbserver/core.c:94:6:  [4] (buffer) sscanf:
  The scanf() family's %s operation, without a limit specification, permits
  buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
  different input function. If the scanf format is influenceable by an
  attacker, it's exploitable.
	if (sscanf (g->data + 1, "%"PFMT64x",%"PFMT64x, &addr, &memlen) != 2) {
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbserver/core.c:107:2:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	snprintf (buf, memlen2 + 63, "wx 0x%s @ 0x%"PFMT64x, memstr, addr);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbserver/core.c:211:2:  [4] (buffer) sscanf:
  The scanf() family's %s operation, without a limit specification, permits
  buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
  different input function. If the scanf format is influenceable by an
  attacker, it's exploitable.
	sscanf (g->data, "%c%d,%"PFMT64x, &set, &type, &addr);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbserver/core.c:219:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (cmd, sizeof (cmd) - 1, "db 0x%"PFMT64x, addr);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbserver/core.c:223:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (cmd, sizeof (cmd) - 1, "db- 0x%"PFMT64x, addr);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbserver/core.c:393:2:  [4] (buffer) sscanf:
  The scanf() family's %s operation, without a limit specification, permits
  buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
  different input function. If the scanf format is influenceable by an
  attacker, it's exploitable.
	sscanf (g->data, "m%"PFMT64x, &addr);
data/radare2-4.3.1+dfsg/shlr/grub/include/grub/err.h:73:68:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
int grub_err_printf (const char *fmt, ...) __attribute__ ((format (printf, 1, 2)));
data/radare2-4.3.1+dfsg/shlr/grub/include/grub/misc.h:240:64:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
int grub_printf (const char *fmt, ...) __attribute__ ((format (printf, 1, 2)));
data/radare2-4.3.1+dfsg/shlr/grub/include/grub/misc.h:241:65:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
int grub_printf_ (const char *fmt, ...) __attribute__ ((format (printf, 1, 2)));
data/radare2-4.3.1+dfsg/shlr/grub/include/grub/misc.h:245:48:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
	const char *fmt, ...) __attribute__ ((format (printf, 4, 5)));
data/radare2-4.3.1+dfsg/shlr/grub/include/grub/misc.h:247:25:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
__attribute__ ((format (printf, 3, 4)));
data/radare2-4.3.1+dfsg/shlr/grub/include/grub/misc.h:249:25:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
__attribute__ ((format (printf, 1, 2)));
data/radare2-4.3.1+dfsg/shlr/grub/include/grub/test.h:53:27:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
  __attribute__ ((format (printf, 5, 6)));
data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/jemalloc.h:165:63:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
#    define JEMALLOC_FORMAT_PRINTF(s, i) JEMALLOC_ATTR(format(printf, s, i))
data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/jemalloc_macros.h:82:63:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
#    define JEMALLOC_FORMAT_PRINTF(s, i) JEMALLOC_ATTR(format(printf, s, i))
data/radare2-4.3.1+dfsg/shlr/java/class.c:16:49:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
static PrintfCallback Eprintf =(PrintfCallback) printf;
data/radare2-4.3.1+dfsg/shlr/java/class.c:583:2:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	snprintf (prototype, prototype_len, fmt, f_val_str, r_val_str, name, p_val_str);
data/radare2-4.3.1+dfsg/shlr/java/class.c:1178:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (str, 49, fmt, access_flags[i].str, access_flags[i].value);
data/radare2-4.3.1+dfsg/shlr/java/class.c:7870:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (number_buffer, sizeof (number_buffer), "0x%04"PFMT64x, file_offset);
data/radare2-4.3.1+dfsg/shlr/java/class.c:7877:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (field_key, key_size, "%s.0x%04"PFMT64x, class_name, field_offset);
data/radare2-4.3.1+dfsg/shlr/java/class.c:7954:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (number_buffer, sizeof (number_buffer), "0x%04"PFMT64x, file_offset);
data/radare2-4.3.1+dfsg/shlr/java/class.c:7962:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (method_key, key_size, "%s.0x%04"PFMT64x, class_name, code_offset);
data/radare2-4.3.1+dfsg/shlr/java/class.c:7971:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (value_buffer, value_buffer_size, "0x%04"PFMT64x, code_offset);
data/radare2-4.3.1+dfsg/shlr/java/class.c:7974:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (value_buffer, value_buffer_size, "0x%04"PFMT64x, code_size);
data/radare2-4.3.1+dfsg/shlr/java/class.c:8426:4:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
			snprintf (str, 34, "0x%"PFMT64x, r_bin_java_raw_to_long (item->info.cp_long.bytes.raw, 0));
data/radare2-4.3.1+dfsg/shlr/java/class.c:9213:39:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
	Eprintf = cb ? cb : (PrintfCallback) printf;
data/radare2-4.3.1+dfsg/shlr/java/code.c:191:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (output, outlen, "%s 0x%04"PFMT64x, JAVA_OPS[idx].name,
data/radare2-4.3.1+dfsg/shlr/java/code.c:199:3:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		snprintf (output, outlen, "%s default: 0x%04"PFMT64x,
data/radare2-4.3.1+dfsg/shlr/java/dsojson.c:58:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (res, is_array? "[": "{");
data/radare2-4.3.1+dfsg/shlr/java/dsojson.c:63:3:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
		strcat (res, is_array?"]": "}");
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:106:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
  strcpy(i->filename, filename);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:112:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
  strcpy(i->string, string);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:135:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
  strcpy(i->filename, filename);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:164:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
  strcpy(i->filename, filename);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:499:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
  strcpy(*o, c);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:543:13:  [4] (format) vsprintf:
  Potential format string problem (CWE-134). Make format string constant.
  (*pos) += vsprintf(buffer + (*pos), fmt, va);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:614:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
  strcpy(x->filename, i->filename);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:619:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
  strcpy(x->expected[0], expected);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:630:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
  strcpy(x->filename, i->filename);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:635:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
  strcpy(x->failure, failure);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:644:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
  strcpy(x->filename, filename);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:649:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
  strcpy(x->failure, failure);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:689:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
  strcpy(x->expected[x->expected_num-1], expected);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:710:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
  strcpy(e->filename, x[fst]->filename);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:723:7:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
      strcpy(e->failure, x[j]->failure);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:762:5:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
    strcpy(expect, prefix);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:763:5:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
    strcat(expect, x->expected[0]);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:781:5:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
    strcpy(expect, prefix);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:783:7:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
      strcat(expect, x->expected[j]); strcat(expect, ", ");
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:785:5:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
    strcat(expect, x->expected[x->expected_num-2]);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:787:5:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
    strcat(expect, x->expected[x->expected_num-1]);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:914:29:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
  for (j = 1; j < n; j++) { strcat(xs[0], xs[j]); mpc_free(i, xs[j]); }
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:1363:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
  strcpy(p->name, name);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:1380:5:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
    strcpy(p->name, a->name);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:1387:7:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
      strcpy(p->data.fail.m, a->data.fail.m);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:1394:7:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
      strcpy(p->data.string.x, a->data.string.x);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:1409:7:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
      strcpy(p->data.expect.m, a->data.expect.m);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:1488:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
  strcpy(p->data.fail.m, m);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:1522:3:  [4] (format) vsprintf:
  Potential format string problem (CWE-134). Make format string constant.
  vsprintf(buffer, fmt, va);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:1563:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
  strcpy(p->data.expect.m, expected);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:1596:3:  [4] (format) vsprintf:
  Potential format string problem (CWE-134). Make format string constant.
  vsprintf(buffer, fmt, va);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:1634:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
  strcpy(p->data.string.x, s);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:1642:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
  strcpy(p->data.string.x, s);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:1658:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
  strcpy(p->data.string.x, s);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2080:9:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
        strcat(range, tmp);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2281:9:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
        strcat(y, output[i]);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2291:7:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
      strcat(y, buff);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2319:9:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
        strcat(y, buff);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2330:7:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
      strcat(y, buff);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2417:5:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
    strcat(xs[0], xs[i]); free(xs[i]);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2660:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
  strcpy(a->tag, tag);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2663:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
  strcpy(a->contents, contents);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2737:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
  strcpy(a->tag, t);
data/radare2-4.3.1+dfsg/shlr/rar/cpu.c:10:24:  [4] (format) fprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
#define eprintf(x,...) fprintf(stderr,x,##__VA_ARGS__)
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:392:4:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
			strcpy (ptr + lval + 1, usr);
data/radare2-4.3.1+dfsg/shlr/sdb/src/dict.c:223:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		sprintf (p, "%s%lld", comma, kv->v);
data/radare2-4.3.1+dfsg/shlr/sdb/src/dict.c:237:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		sprintf (p, "%s%lld", comma, kv->v);
data/radare2-4.3.1+dfsg/shlr/sdb/src/diff.c:8:12:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		int sr = snprintf (str, size, __VA_ARGS__); \
data/radare2-4.3.1+dfsg/shlr/sdb/src/fmt.c:15:4:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
			strcat (o, x);\
data/radare2-4.3.1+dfsg/shlr/sdb/src/fmt.c:33:3:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		vsnprintf (Key[n], KL - 1, fmt, ap);
data/radare2-4.3.1+dfsg/shlr/sdb/src/json.c:127:4:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
			sprintf (b, "{\"%s\":%s%s%s}", p, q, v, q);
data/radare2-4.3.1+dfsg/shlr/sdb/src/json.c:157:13:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
			curlen = sprintf (buf, "{\"%s\":%s%s%s%s",
data/radare2-4.3.1+dfsg/shlr/sdb/src/json.c:159:4:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
			strcpy (buf + curlen, js + 1);
data/radare2-4.3.1+dfsg/shlr/sdb/src/query.c:65:9:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
        vsnprintf (string, sizeof (string), fmt, ap);
data/radare2-4.3.1+dfsg/shlr/sdb/src/query.c:76:9:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
        vsnprintf (string, sizeof (string), fmt, ap);
data/radare2-4.3.1+dfsg/shlr/sdb/src/types.h:12:22:  [4] (format) fprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
#define eprintf(...) fprintf(stderr,__VA_ARGS__)
data/radare2-4.3.1+dfsg/shlr/spp/main.c:15:3:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
		strcat (supported, procs[i]->name);
data/radare2-4.3.1+dfsg/shlr/spp/p/sh.h:28:10:  [4] (shell) system:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
	int r = system (buf);
data/radare2-4.3.1+dfsg/shlr/spp/p/sh.h:56:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		sprintf (str, "echo '%s' | %s", buf, sh_pipe_cmd); // XXX
data/radare2-4.3.1+dfsg/shlr/spp/p/sh.h:58:11:  [4] (shell) system:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
		int r = system (str);
data/radare2-4.3.1+dfsg/shlr/spp/p/spp.h:21:13:  [4] (shell) popen:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
	FILE *fd = popen (cmd, "r");
data/radare2-4.3.1+dfsg/shlr/spp/p/spp.h:196:4:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
			strcat (b, buf);
data/radare2-4.3.1+dfsg/shlr/spp/p/spp.h:325:16:  [4] (shell) popen:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
	spp_pipe_fd = popen (buf, "w");
data/radare2-4.3.1+dfsg/shlr/spp/r_api.h:10:70:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
void out_printf(Output *out, char *str, ...) __attribute__ ((format (printf, 2, 3)));
data/radare2-4.3.1+dfsg/shlr/spp/spp.c:167:5:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
				strcpy (ptrr, s);
data/radare2-4.3.1+dfsg/shlr/spp/spp.c:172:5:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
				strcat (ptrr, p);
data/radare2-4.3.1+dfsg/shlr/spp/spp.c:329:3:  [4] (format) vfprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
		vfprintf (out->fout, str, ap);
data/radare2-4.3.1+dfsg/shlr/spp/spp.c:332:3:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
		vsnprintf (tmp, sizeof (tmp), str, ap);
data/radare2-4.3.1+dfsg/shlr/spp/spp.h:53:9:  [4] (shell) popen:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
#define popen    _popen
data/radare2-4.3.1+dfsg/shlr/spp/spp.h:56:9:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
#define snprintf _snprintf
data/radare2-4.3.1+dfsg/shlr/spp/spp.h:56:18:  [4] (format) _snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
#define snprintf _snprintf
data/radare2-4.3.1+dfsg/shlr/tcc/libtcc.c:205:2:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	vsnprintf (buf + len, buf_size - len, fmt, ap);
data/radare2-4.3.1+dfsg/shlr/tcc/libtcc.c:795:2:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
	vsnprintf (b, sizeof (b), fmt, ap);
data/radare2-4.3.1+dfsg/shlr/tcc/tcc.h:771:9:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
#define snprintf _snprintf
data/radare2-4.3.1+dfsg/shlr/tcc/tcc.h:771:18:  [4] (format) _snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
#define snprintf _snprintf
data/radare2-4.3.1+dfsg/shlr/tcc/tcc.h:772:9:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
#define vsnprintf _vsnprintf
data/radare2-4.3.1+dfsg/shlr/tcc/tcclib.h:43:5:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
int printf(const char *format, ...);
data/radare2-4.3.1+dfsg/shlr/tcc/tcclib.h:44:5:  [4] (format) fprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
int fprintf(FILE *stream, const char *format, ...);
data/radare2-4.3.1+dfsg/shlr/tcc/tcclib.h:45:5:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
int sprintf(char *str, const char *format, ...);
data/radare2-4.3.1+dfsg/shlr/tcc/tcclib.h:46:5:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
int snprintf(char *str, size_t size, const  char  *format, ...);
data/radare2-4.3.1+dfsg/shlr/tcc/tcclib.h:49:5:  [4] (format) vprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
int vprintf(const char *format, va_list ap);
data/radare2-4.3.1+dfsg/shlr/tcc/tcclib.h:50:5:  [4] (format) vfprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
int vfprintf(FILE  *stream,  const  char *format, va_list ap);
data/radare2-4.3.1+dfsg/shlr/tcc/tcclib.h:51:5:  [4] (format) vsprintf:
  Potential format string problem (CWE-134). Make format string constant.
int vsprintf(char *str, const char *format, va_list ap);
data/radare2-4.3.1+dfsg/shlr/tcc/tcclib.h:52:5:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
int vsnprintf(char *str, size_t size, const char  *format, va_list ap);
data/radare2-4.3.1+dfsg/shlr/tcc/tcclib.h:59:7:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
char *strcat(char *dest, const char *src);
data/radare2-4.3.1+dfsg/shlr/tcc/tcclib.h:62:7:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
char *strcpy(char *dest, const char *src);
data/radare2-4.3.1+dfsg/shlr/tcc/tccpp.c:287:4:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
			sprintf (p, "%"PFMT64u, cv->ull);
data/radare2-4.3.1+dfsg/shlr/tcc/tccpp.c:1358:2:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
	strcpy (e->filename, filename);
data/radare2-4.3.1+dfsg/shlr/tcc/tccpp.c:1601:4:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
			strcpy (filepath + filepath_len, buf);
data/radare2-4.3.1+dfsg/shlr/windbg/transport.h:8:24:  [4] (format) fprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
#define eprintf(...) { fprintf(stderr,##__VA_ARGS__); }
data/radare2-4.3.1+dfsg/shlr/windbg/windbg.c:398:3:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
		strcpy (proc->name, (const char *) buf);
data/radare2-4.3.1+dfsg/shlr/zip/include/gzguts.h:78:18:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
#    if !defined(vsnprintf) && !defined(NO_vsnprintf)
data/radare2-4.3.1+dfsg/shlr/zip/include/gzguts.h:80:18:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
#         define vsnprintf _vsnprintf
data/radare2-4.3.1+dfsg/shlr/zip/include/gzguts.h:103:11:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
#  define snprintf _snprintf
data/radare2-4.3.1+dfsg/shlr/zip/include/gzguts.h:103:20:  [4] (format) _snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
#  define snprintf _snprintf
data/radare2-4.3.1+dfsg/shlr/zip/include/zipint.h:83:9:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
#define snprintf	_snprintf
data/radare2-4.3.1+dfsg/shlr/zip/include/zipint.h:83:18:  [4] (format) _snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
#define snprintf	_snprintf
data/radare2-4.3.1+dfsg/shlr/zip/include/zutil.h:226:39:  [4] (format) fprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
#  define Trace(x) {if (z_verbose>=0) fprintf x ;}
data/radare2-4.3.1+dfsg/shlr/zip/include/zutil.h:227:39:  [4] (format) fprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
#  define Tracev(x) {if (z_verbose>0) fprintf x ;}
data/radare2-4.3.1+dfsg/shlr/zip/include/zutil.h:228:40:  [4] (format) fprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
#  define Tracevv(x) {if (z_verbose>1) fprintf x ;}
data/radare2-4.3.1+dfsg/shlr/zip/include/zutil.h:229:48:  [4] (format) fprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
#  define Tracec(c,x) {if (z_verbose>0 && (c)) fprintf x ;}
data/radare2-4.3.1+dfsg/shlr/zip/include/zutil.h:230:49:  [4] (format) fprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
#  define Tracecv(c,x) {if (z_verbose>1 && (c)) fprintf x ;}
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_close.c:602:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(temp, "%s/.zip.XXXXXX", za->tempdir);
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_close.c:609:9:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
        sprintf(temp, "%s.XXXXXX", za->zn);
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_dir_add.c:71:2:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
	strcpy(s, name);
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_error_strerror.c:82:2:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
	sprintf(s, "%s%s%s",
data/radare2-4.3.1+dfsg/shlr/zip/zip/zipint.h:84:9:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
#define snprintf	_snprintf
data/radare2-4.3.1+dfsg/shlr/zip/zip/zipint.h:84:18:  [4] (format) _snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
#define snprintf	_snprintf
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzguts.h:88:18:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
#    if !defined(vsnprintf) && !defined(NO_vsnprintf)
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzguts.h:90:18:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
#         define vsnprintf _vsnprintf
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzguts.h:112:11:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
#  define snprintf _snprintf
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzguts.h:112:20:  [4] (format) _snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
#  define snprintf _snprintf
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzlib.c:216:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy(state->path, path);
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzlib.c:614:5:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
    strcpy(state->msg, state->path);
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzlib.c:616:5:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
    strcat(state->msg, msg);
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzwrite.c:418:11:  [4] (format) vsprintf:
  Potential format string problem (CWE-134). Make format string constant.
    (void)vsprintf(next, format, va);
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzwrite.c:422:11:  [4] (format) vsprintf:
  Potential format string problem (CWE-134). Make format string constant.
    len = vsprintf(next, format, va);
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzwrite.c:426:11:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
    (void)vsnprintf(next, state->size, format, va);
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzwrite.c:429:11:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
    len = vsnprintf(next, state->size, format, va);
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzwrite.c:512:5:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
    sprintf(next, format, a1, a2, a3, a4, a5, a6, a7, a8, a9, a10, a11, a12,
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzwrite.c:518:11:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
    len = sprintf(next, format, a1, a2, a3, a4, a5, a6, a7, a8, a9, a10, a11,
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzwrite.c:523:5:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
    snprintf(next, state->size, format, a1, a2, a3, a4, a5, a6, a7, a8, a9,
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzwrite.c:527:11:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
    len = snprintf(next, state->size, format, a1, a2, a3, a4, a5, a6, a7, a8,
data/radare2-4.3.1+dfsg/shlr/zip/zlib/zutil.h:242:39:  [4] (format) fprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
#  define Trace(x) {if (z_verbose>=0) fprintf x ;}
data/radare2-4.3.1+dfsg/shlr/zip/zlib/zutil.h:243:39:  [4] (format) fprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
#  define Tracev(x) {if (z_verbose>0) fprintf x ;}
data/radare2-4.3.1+dfsg/shlr/zip/zlib/zutil.h:244:40:  [4] (format) fprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
#  define Tracevv(x) {if (z_verbose>1) fprintf x ;}
data/radare2-4.3.1+dfsg/shlr/zip/zlib/zutil.h:245:48:  [4] (format) fprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
#  define Tracec(c,x) {if (z_verbose>0 && (c)) fprintf x ;}
data/radare2-4.3.1+dfsg/shlr/zip/zlib/zutil.h:246:49:  [4] (format) fprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
#  define Tracecv(c,x) {if (z_verbose>1 && (c)) fprintf x ;}
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/copy.c:9:2:  [4] (shell) system:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
	system ("md5 "F);
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/copy.c:10:2:  [4] (shell) system:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
	system ("md5 a");
data/radare2-4.3.1+dfsg/test/unit/minunit.h:45:4:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
			printf(TBOLD TRED "ERR\n[XX] Fail at line %d: " TRESET "%s\n\n", __LINE__, message); \
data/radare2-4.3.1+dfsg/test/unit/minunit.h:47:4:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
			printf(TBOLD TYELLOW "Broken at line %d: " TRESET "%s\n\n", __LINE__, message); \
data/radare2-4.3.1+dfsg/test/unit/minunit.h:55:24:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
#define mu_ignore do { printf(TYELLOW "IGN\n" TRESET); return MU_PASSED; } while(0)
data/radare2-4.3.1+dfsg/test/unit/minunit.h:58:3:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
		printf(TGREEN "OK\n" TRESET); \
data/radare2-4.3.1+dfsg/test/unit/minunit.h:72:4:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
			sprintf(_meqstr, "%s: expected %" PFMT64d ", got %" PFMT64d ".", (message), (ut64)(expected), (ut64)(actual)); \
data/radare2-4.3.1+dfsg/test/unit/minunit.h:79:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		sprintf(_meqstr, "%s: expected not %" PFMT64d ", got %" PFMT64d ".", (message), (expected), (actual)); \
data/radare2-4.3.1+dfsg/test/unit/minunit.h:85:2:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
	sprintf (_meqstr, "%s: expected %p, got %p.", (message), (expected), (actual)); \
data/radare2-4.3.1+dfsg/test/unit/minunit.h:91:2:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
	sprintf (_meqstr, "%s: expected not %p, got %p.", (message), (expected), (actual)); \
data/radare2-4.3.1+dfsg/test/unit/minunit.h:97:2:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
	sprintf(_meqstr, "%s: expected to be NULL but it wasn't.", (message)); \
data/radare2-4.3.1+dfsg/test/unit/minunit.h:103:2:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
	sprintf(_meqstr, "%s: expected to not be NULL but it was.", (message)); \
data/radare2-4.3.1+dfsg/test/unit/minunit.h:110:4:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
			sprintf(_meqstr, "%s: expected "fmt", got "fmt".", (message), (expected), (actual)); \
data/radare2-4.3.1+dfsg/test/unit/minunit.h:117:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		sprintf(_meqstr, "%s: expected %s, got %s.", (message), (expected), (actual)); \
data/radare2-4.3.1+dfsg/test/unit/minunit.h:125:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		sprintf(_meqstr, "%s: expected %s, got %s.", (message), (_expected_str ? _expected_str : "NULL"), (_actual_str ? _actual_str : "NULL")); \
data/radare2-4.3.1+dfsg/test/unit/minunit.h:131:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
		sprintf(_meqstr, "%s: expected ", message); \
data/radare2-4.3.1+dfsg/test/unit/minunit.h:139:3:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
		printf(TBOLD #test TRESET " "); \
data/radare2-4.3.1+dfsg/test/unit/test_intervaltree.c:144:6:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
					printf ("%"PFMT64u, start);
data/radare2-4.3.1+dfsg/binr/rasign2/rasign2.c:28:12:  [3] (buffer) getopt:
  Some older implementations do not protect against internal buffer overflows
  (CWE-120, CWE-20). Check implementation on installation, or limit the size
  of all string inputs.
	while ((c=getopt (argc, argv, "o:hrsj:iV")) !=-1) {
data/radare2-4.3.1+dfsg/libr/bin/mangling/cxx/cp-demangle.c:6668:18:  [3] (buffer) getopt_long:
  Some older implementations do not protect against internal buffer overflows
  (CWE-120, CWE-20). Check implementation on installation, or limit the size
  of all string inputs.
      opt_char = getopt_long (argc, argv, "hpv", long_options, NULL);
data/radare2-4.3.1+dfsg/libr/bin/pdb/main.c:34:7:  [3] (buffer) getopt_long:
  Some older implementations do not protect against internal buffer overflows
  (CWE-120, CWE-20). Check implementation on installation, or limit the size
  of all string inputs.
		c = getopt_long (argc, argv, ":f:tg:h",
data/radare2-4.3.1+dfsg/libr/core/windows_heap.c:124:17:  [3] (misc) LoadLibrary:
  Ensure that the full path to the library is specified, or current directory
  may be used (CWE-829, CWE-20). Use registry entry or GetWindowsDirectory to
  find library path, if you aren't already.
	HANDLE ntdll = LoadLibrary (TEXT ("ntdll.dll"));
data/radare2-4.3.1+dfsg/libr/debug/p/native/w32.c:77:8:  [3] (misc) LoadLibrary:
  Ensure that the full path to the library is specified, or current directory
  may be used (CWE-829, CWE-20). Use registry entry or GetWindowsDirectory to
  find library path, if you aren't already.
	lib = LoadLibrary (TEXT("psapi.dll"));
data/radare2-4.3.1+dfsg/libr/debug/p/native/w32.c:90:8:  [3] (misc) LoadLibrary:
  Ensure that the full path to the library is specified, or current directory
  may be used (CWE-829, CWE-20). Use registry entry or GetWindowsDirectory to
  find library path, if you aren't already.
	lib = LoadLibrary (TEXT("ntdll.dll"));
data/radare2-4.3.1+dfsg/libr/debug/p/native/windows/windows_debug.c:100:8:  [3] (misc) LoadLibrary:
  Ensure that the full path to the library is specified, or current directory
  may be used (CWE-829, CWE-20). Use registry entry or GetWindowsDirectory to
  find library path, if you aren't already.
	lib = LoadLibrary (TEXT ("psapi.dll"));
data/radare2-4.3.1+dfsg/libr/debug/p/native/windows/windows_debug.c:117:8:  [3] (misc) LoadLibrary:
  Ensure that the full path to the library is specified, or current directory
  may be used (CWE-829, CWE-20). Use registry entry or GetWindowsDirectory to
  find library path, if you aren't already.
	lib = LoadLibrary (TEXT ("ntdll.dll"));
data/radare2-4.3.1+dfsg/libr/include/r_getopt.h:25:18:  [3] (buffer) getopt:
  Some older implementations do not protect against internal buffer overflows
  (CWE-120, CWE-20). Check implementation on installation, or limit the size
  of all string inputs.
#define r_getopt getopt
data/radare2-4.3.1+dfsg/libr/include/sflib/darwin-arm-64/sflib.h:88:33:  [3] (misc) chroot:
  chroot can be very helpful, but is hard to use correctly (CWE-250, CWE-22).
  Make sure the program immediately chdir("/"), closes file descriptors, and
  drops root privileges, and that all necessary files (and no more!) are in
  the new root.
static inline _sfsyscall1( int, chroot, const char *, path )
data/radare2-4.3.1+dfsg/libr/include/sflib/darwin-x86-32/sflib.h:86:33:  [3] (misc) chroot:
  chroot can be very helpful, but is hard to use correctly (CWE-250, CWE-22).
  Make sure the program immediately chdir("/"), closes file descriptors, and
  drops root privileges, and that all necessary files (and no more!) are in
  the new root.
static inline _sfsyscall1( int, chroot, const char *, path )
data/radare2-4.3.1+dfsg/libr/include/sflib/darwin-x86-64/sflib.h:86:33:  [3] (misc) chroot:
  chroot can be very helpful, but is hard to use correctly (CWE-250, CWE-22).
  Make sure the program immediately chdir("/"), closes file descriptors, and
  drops root privileges, and that all necessary files (and no more!) are in
  the new root.
static inline _sfsyscall1( int, chroot, const char *, path )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-arm-32/sflib.h:192:33:  [3] (misc) chroot:
  chroot can be very helpful, but is hard to use correctly (CWE-250, CWE-22).
  Make sure the program immediately chdir("/"), closes file descriptors, and
  drops root privileges, and that all necessary files (and no more!) are in
  the new root.
static inline _sfsyscall1( int, chroot, const char *, path )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-arm-64/sflib.h:192:33:  [3] (misc) chroot:
  chroot can be very helpful, but is hard to use correctly (CWE-250, CWE-22).
  Make sure the program immediately chdir("/"), closes file descriptors, and
  drops root privileges, and that all necessary files (and no more!) are in
  the new root.
static inline _sfsyscall1( int, chroot, const char *, path )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-x86-32/sflib.h:92:33:  [3] (misc) chroot:
  chroot can be very helpful, but is hard to use correctly (CWE-250, CWE-22).
  Make sure the program immediately chdir("/"), closes file descriptors, and
  drops root privileges, and that all necessary files (and no more!) are in
  the new root.
static inline _sfsyscall1( int, chroot, const char *, path )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-x86-64/sflib.h:192:33:  [3] (misc) chroot:
  chroot can be very helpful, but is hard to use correctly (CWE-250, CWE-22).
  Make sure the program immediately chdir("/"), closes file descriptors, and
  drops root privileges, and that all necessary files (and no more!) are in
  the new root.
static inline _sfsyscall1( int, chroot, const char *, path )
data/radare2-4.3.1+dfsg/libr/lang/p/pipe.c:43:13:  [3] (shell) CreateProcess:
  This causes a new process to execute and is difficult to use safely
  (CWE-78). Specify the application path in the first argument, NOT as part
  of the second, or embedded spaces could allow an attacker to force a
  different program to run.
	bSuccess = CreateProcess (NULL, cmdline_, NULL, NULL,
data/radare2-4.3.1+dfsg/libr/lang/p/pipe.c:43:13:  [3] (shell) CreateProcess:
  This causes a new process to execute and is difficult to use safely
  (CWE-78). Specify the application path in the first argument, NOT as part
  of the second, or embedded spaces could allow an attacker to force a
  different program to run.
	bSuccess = CreateProcess (NULL, cmdline_, NULL, NULL,
data/radare2-4.3.1+dfsg/libr/search/old_xrefs.c:273:14:  [3] (buffer) getopt:
  Some older implementations do not protect against internal buffer overflows
  (CWE-120, CWE-20). Check implementation on installation, or limit the size
  of all string inputs.
	while ((c = getopt(argc, argv, "qa:d:hves:f:t:r:X:b:")) != -1) {
data/radare2-4.3.1+dfsg/libr/socket/run.c:884:8:  [3] (misc) chroot:
  chroot can be very helpful, but is hard to use correctly (CWE-250, CWE-22).
  Make sure the program immediately chdir("/"), closes file descriptors, and
  drops root privileges, and that all necessary files (and no more!) are in
  the new root.
			if (chroot (".") == -1) {
data/radare2-4.3.1+dfsg/libr/util/file.c:248:18:  [3] (buffer) realpath:
  This function does not protect against buffer overflows, and some
  implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
  destination buffer is at least of size MAXPATHLEN, andto protect against
  implementation problems, the input argument should also be checked to
  ensure it is no larger than MAXPATHLEN.
	char *abspath = realpath (ret, NULL);
data/radare2-4.3.1+dfsg/libr/util/file.c:1058:6:  [3] (tmpfile) GetTempFileName:
  Temporary file race condition in certain cases (e.g., if run as SYSTEM in
  many versions of Windows) (CWE-377).
	if (GetTempFileName (path_, prefix_, 0, name)) {
data/radare2-4.3.1+dfsg/libr/util/lib.c:61:8:  [3] (misc) LoadLibrary:
  Ensure that the full path to the library is specified, or current directory
  may be used (CWE-829, CWE-20). Use registry entry or GetWindowsDirectory to
  find library path, if you aren't already.
	ret = LoadLibrary (libname_);
data/radare2-4.3.1+dfsg/libr/util/sys.c:514:6:  [3] (buffer) getenv:
  Environment variables are untrustable input if they can be set by an
  attacker. They can have any content and length, and the same variable can
  be set more than once (CWE-807, CWE-20). Check environment variables
  carefully before using them.
	b = getenv (key);
data/radare2-4.3.1+dfsg/libr/util/thread_lock.c:25:3:  [3] (misc) InitializeCriticalSection:
  Exceptions can be thrown in low-memory situations. Use
  InitializeCriticalSectionAndSpinCount instead.
		InitializeCriticalSection (&thl->lock);
data/radare2-4.3.1+dfsg/libr/util/thread_lock.c:41:2:  [3] (misc) EnterCriticalSection:
  On some versions of Windows, exceptions can be thrown in low-memory
  situations. Use InitializeCriticalSectionAndSpinCount instead.
	EnterCriticalSection (&thl->lock);
data/radare2-4.3.1+dfsg/libr/util/unum.c:19:2:  [3] (random) srand:
  This function is not sufficiently random for security-related functions
  such as key and nonce creation (CWE-327). Use a more secure technique for
  acquiring random values.
	srand (seed);
data/radare2-4.3.1+dfsg/libr/util/w32-sys.c:137:13:  [3] (shell) CreateProcess:
  This causes a new process to execute and is difficult to use safely
  (CWE-78). Specify the application path in the first argument, NOT as part
  of the second, or embedded spaces could allow an attacker to force a
  different program to run.
	if ((ret = CreateProcess (NULL,
data/radare2-4.3.1+dfsg/libr/util/w32-sys.c:137:13:  [3] (shell) CreateProcess:
  This causes a new process to execute and is difficult to use safely
  (CWE-78). Specify the application path in the first argument, NOT as part
  of the second, or embedded spaces could allow an attacker to force a
  different program to run.
	if ((ret = CreateProcess (NULL,
data/radare2-4.3.1+dfsg/shlr/bochs/src/libbochs.c:223:7:  [3] (shell) CreateProcess:
  This causes a new process to execute and is difficult to use safely
  (CWE-78). Specify the application path in the first argument, NOT as part
  of the second, or embedded spaces could allow an attacker to force a
  different program to run.
		if (CreateProcess (NULL, commandline_, NULL, NULL, TRUE, CREATE_NEW_CONSOLE,
data/radare2-4.3.1+dfsg/shlr/bochs/src/libbochs.c:223:7:  [3] (shell) CreateProcess:
  This causes a new process to execute and is difficult to use safely
  (CWE-78). Specify the application path in the first argument, NOT as part
  of the second, or embedded spaces could allow an attacker to force a
  different program to run.
		if (CreateProcess (NULL, commandline_, NULL, NULL, TRUE, CREATE_NEW_CONSOLE,
data/radare2-4.3.1+dfsg/shlr/grub/include/grub/util/misc.h:93:9:  [3] (buffer) realpath:
  This function does not protect against buffer overflows, and some
  implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
  destination buffer is at least of size MAXPATHLEN, andto protect against
  implementation problems, the input argument should also be checked to
  ensure it is no larger than MAXPATHLEN.
#define realpath(a, b)	(char *) a
data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/mutex.h:94:3:  [3] (misc) EnterCriticalSection:
  On some versions of Windows, exceptions can be thrown in low-memory
  situations. Use InitializeCriticalSectionAndSpinCount instead.
		EnterCriticalSection(&mutex->lock);
data/radare2-4.3.1+dfsg/shlr/spp/p/cpp.h:26:14:  [3] (buffer) getenv:
  Environment variables are untrustable input if they can be set by an
  attacker. They can have any content and length, and the same variable can
  be set more than once (CWE-807, CWE-20). Check environment variables
  carefully before using them.
	char *var = getenv (buf + ((*buf == '!') ? 1 : 0));
data/radare2-4.3.1+dfsg/shlr/spp/p/cpp.h:39:14:  [3] (buffer) getenv:
  Environment variables are untrustable input if they can be set by an
  attacker. They can have any content and length, and the same variable can
  be set more than once (CWE-807, CWE-20). Check environment variables
  carefully before using them.
	char *var = getenv (buf);
data/radare2-4.3.1+dfsg/shlr/spp/p/spp.h:90:2:  [3] (random) srandom:
  This function is not sufficiently random for security-related functions
  such as key and nonce creation (CWE-327). Use a more secure technique for
  acquiring random values.
	srandom (r_sys_getpid()); // TODO: change this to be portable
data/radare2-4.3.1+dfsg/shlr/spp/p/spp.h:189:11:  [3] (buffer) getenv:
  Environment variables are untrustable input if they can be set by an
  attacker. They can have any content and length, and the same variable can
  be set more than once (CWE-807, CWE-20). Check environment variables
  carefully before using them.
	incdir = getenv("SPP_INCDIR");
data/radare2-4.3.1+dfsg/shlr/spp/p/spp.h:297:9:  [3] (buffer) getenv:
  Environment variables are untrustable input if they can be set by an
  attacker. They can have any content and length, and the same variable can
  be set more than once (CWE-807, CWE-20). Check environment variables
  carefully before using them.
		var = getenv(buf);
data/radare2-4.3.1+dfsg/shlr/spp/r_api.c:146:6:  [3] (buffer) getenv:
  Environment variables are untrustable input if they can be set by an
  attacker. They can have any content and length, and the same variable can
  be set more than once (CWE-807, CWE-20). Check environment variables
  carefully before using them.
	b = getenv (key);
data/radare2-4.3.1+dfsg/shlr/spp/spp.h:55:9:  [3] (random) srandom:
  This function is not sufficiently random for security-related functions
  such as key and nonce creation (CWE-327). Use a more secure technique for
  acquiring random values.
#define srandom  srand
data/radare2-4.3.1+dfsg/shlr/spp/spp.h:55:18:  [3] (random) srand:
  This function is not sufficiently random for security-related functions
  such as key and nonce creation (CWE-327). Use a more secure technique for
  acquiring random values.
#define srandom  srand
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/egg/test.c:18:21:  [3] (buffer) getopt:
  Some older implementations do not protect against internal buffer overflows
  (CWE-120, CWE-20). Check implementation on installation, or limit the size
  of all string inputs.
        while ((c = getopt (argc, argv, "ha:b:")) != -1) {
data/radare2-4.3.1+dfsg/test/unit/test_intervaltree.c:339:2:  [3] (random) srand:
  This function is not sufficiently random for security-related functions
  such as key and nonce creation (CWE-327). Use a more secure technique for
  acquiring random values.
	srand (seed);
data/radare2-4.3.1+dfsg/binr/preload/alloc.c:109:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char B[R_MALLOC_MAX];
data/radare2-4.3.1+dfsg/binr/preload/alloc.c:112:11:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
	int fd = open (".mem", O_CREAT|O_RDWR, 0600);
data/radare2-4.3.1+dfsg/binr/preload/alloc.c:127:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (a, "hello");
data/radare2-4.3.1+dfsg/binr/preload/alloc.c:129:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (b, "world");
data/radare2-4.3.1+dfsg/binr/radare2/radare2.c:77:12:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		int in = atoi (_in);
data/radare2-4.3.1+dfsg/binr/radare2/radare2.c:78:13:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		int out = atoi (_out);
data/radare2-4.3.1+dfsg/doc/indent-example.c:7:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char host[512];
data/radare2-4.3.1+dfsg/doc/indent-example.c:9:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char file[1024];
data/radare2-4.3.1+dfsg/libr/anal/class.c:450:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char attr_id[16];
data/radare2-4.3.1+dfsg/libr/anal/class.c:510:24:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	meth->vtable_offset = atoi (cur);
data/radare2-4.3.1+dfsg/libr/anal/cond.c:54:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (c, cond, sizeof (RAnalCond));
data/radare2-4.3.1+dfsg/libr/anal/data.c:42:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	const char zero[8] = { 0, 0, 0, 0, 0, 0, 0, 0 };
data/radare2-4.3.1+dfsg/libr/anal/data.c:220:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (ad->str, p, len);
data/radare2-4.3.1+dfsg/libr/anal/data.c:228:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (ad->buf, ad->str, len + 1);
data/radare2-4.3.1+dfsg/libr/anal/data.c:248:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (ad->buf, buf, l);
data/radare2-4.3.1+dfsg/libr/anal/diff.c:65:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (bb->fingerprint, buf, bb->size);
data/radare2-4.3.1+dfsg/libr/anal/diff.c:104:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (fcn->fingerprint + fcn->fingerprint_size - bb->size, bb->fingerprint, bb->size);
data/radare2-4.3.1+dfsg/libr/anal/esil.c:104:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char t[128];
data/radare2-4.3.1+dfsg/libr/anal/esil.c:429:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char str[64];
data/radare2-4.3.1+dfsg/libr/anal/esil.c:1901:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char res[32];
data/radare2-4.3.1+dfsg/libr/anal/esil.c:2806:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char t[128];
data/radare2-4.3.1+dfsg/libr/anal/esil.c:2978:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char word[64];
data/radare2-4.3.1+dfsg/libr/anal/esil2reil.c:50:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char tmp_buf[REGBUFSZ];
data/radare2-4.3.1+dfsg/libr/anal/esil2reil.c:156:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char tmp_buf[REGBUFSZ];
data/radare2-4.3.1+dfsg/libr/anal/esil2reil.c:192:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char tmp_buf[REGBUFSZ];
data/radare2-4.3.1+dfsg/libr/anal/esil2reil.c:316:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char tmp_buf[REGBUFSZ];
data/radare2-4.3.1+dfsg/libr/anal/esil2reil.c:404:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char tmp_buf[REGBUFSZ];
data/radare2-4.3.1+dfsg/libr/anal/esil2reil.c:567:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char tmp_buf[REGBUFSZ];
data/radare2-4.3.1+dfsg/libr/anal/esil2reil.c:618:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char tmp_buf[REGBUFSZ];
data/radare2-4.3.1+dfsg/libr/anal/esil2reil.c:690:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char tmp_buf[REGBUFSZ];
data/radare2-4.3.1+dfsg/libr/anal/esil2reil.c:767:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char tmp_buf[REGBUFSZ];
data/radare2-4.3.1+dfsg/libr/anal/esil_cfg.c:75:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char t[128];
data/radare2-4.3.1+dfsg/libr/anal/esil_dfg.c:628:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *src[2] = { r_anal_esil_pop (esil), r_anal_esil_pop (esil) };
data/radare2-4.3.1+dfsg/libr/anal/esil_trace.c:213:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char regname[32];
data/radare2-4.3.1+dfsg/libr/anal/esil_trace.c:220:6:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
					memcpy (regname, ptr, len);
data/radare2-4.3.1+dfsg/libr/anal/esil_trace.c:234:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char addr[64];
data/radare2-4.3.1+dfsg/libr/anal/esil_trace.c:241:6:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
					memcpy (addr, ptr, len);
data/radare2-4.3.1+dfsg/libr/anal/fcn.c:65:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (cache, buf, cache_len);
data/radare2-4.3.1+dfsg/libr/anal/fcn.c:74:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (buf, cache + (addr - cache_addr), len);
data/radare2-4.3.1+dfsg/libr/anal/fcn.c:77:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (buf, cache, len);
data/radare2-4.3.1+dfsg/libr/anal/fcn.c:432:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char tmp_buf[MAX_FLG_NAME_SIZE + 5] = "skip";
data/radare2-4.3.1+dfsg/libr/anal/fcn.c:1683:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char str_to_find[40] = "\"type\":\"reg\",\"value\":\"";
data/radare2-4.3.1+dfsg/libr/anal/flirt.c:296:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[R_FLIRT_NAME_MAX];
data/radare2-4.3.1+dfsg/libr/anal/jmptbl.c:225:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char tmp[0x30];
data/radare2-4.3.1+dfsg/libr/anal/meta.c:94:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char key[32];
data/radare2-4.3.1+dfsg/libr/anal/meta.c:107:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char key[100], val[2048];
data/radare2-4.3.1+dfsg/libr/anal/meta.c:146:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char key[100], val[2048], *e_str;
data/radare2-4.3.1+dfsg/libr/anal/meta.c:169:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char key[100];
data/radare2-4.3.1+dfsg/libr/anal/meta.c:196:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char key[100];
data/radare2-4.3.1+dfsg/libr/anal/meta.c:242:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char key[100];
data/radare2-4.3.1+dfsg/libr/anal/meta.c:274:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char item_key[100];
data/radare2-4.3.1+dfsg/libr/anal/meta.c:396:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char key[100], val[2048];
data/radare2-4.3.1+dfsg/libr/anal/meta.c:447:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char key[100];
data/radare2-4.3.1+dfsg/libr/anal/meta.c:852:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char key[100];
data/radare2-4.3.1+dfsg/libr/anal/meta.c:946:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char nk[128], nv[4096];
data/radare2-4.3.1+dfsg/libr/anal/op.c:422:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *cstr, ret[128];
data/radare2-4.3.1+dfsg/libr/anal/op.c:551:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (ret, ";", 2);
data/radare2-4.3.1+dfsg/libr/anal/op.c:554:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (ret, "nop", 4);
data/radare2-4.3.1+dfsg/libr/anal/op.c:557:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (ret, "ret", 4);
data/radare2-4.3.1+dfsg/libr/anal/op.c:565:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
			strcpy (ret, "if (unk) ret");
data/radare2-4.3.1+dfsg/libr/anal/op.c:569:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (ret, "leave", 6);
data/radare2-4.3.1+dfsg/libr/anal/p/anal_6502.c:309:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char addrbuf[64];
data/radare2-4.3.1+dfsg/libr/anal/p/anal_8051.c:1023:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (copy, buf, len >= 3 ? 3 : len);
data/radare2-4.3.1+dfsg/libr/anal/p/anal_arm_cs.c:717:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	const char *close_cond[2];
data/radare2-4.3.1+dfsg/libr/anal/p/anal_arm_cs.c:821:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		sprintf (buf, "%lf", insn->detail->arm.operands[n].fp);
data/radare2-4.3.1+dfsg/libr/anal/p/anal_arm_cs.c:1445:123:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static void arm32math(RAnal *a, RAnalOp *op, ut64 addr, const ut8 *buf, int len, csh *handle, cs_insn *insn, int pcdelta, char (*str)[32], const char *opchar, int negate) {
data/radare2-4.3.1+dfsg/libr/anal/p/anal_arm_cs.c:1479:129:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static void arm32mathaddsub(RAnal *a, RAnalOp *op, ut64 addr, const ut8 *buf, int len, csh *handle, cs_insn *insn, int pcdelta, char (*str)[32], const char *opchar) {
data/radare2-4.3.1+dfsg/libr/anal/p/anal_arm_cs.c:1506:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char str[32][32];
data/radare2-4.3.1+dfsg/libr/anal/p/anal_arm_cs.c:3533:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (ret + idx, "\xf0\x00", 2);
data/radare2-4.3.1+dfsg/libr/anal/p/anal_gb.c:720:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char mn[32];
data/radare2-4.3.1+dfsg/libr/anal/p/anal_gb.c:722:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char reg[32];
data/radare2-4.3.1+dfsg/libr/anal/p/anal_i4004.c:53:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static const char *i4004_e[16] = {
data/radare2-4.3.1+dfsg/libr/anal/p/anal_i4004.c:72:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static const char *i4004_f[16] = {
data/radare2-4.3.1+dfsg/libr/anal/p/anal_i4004.c:101:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char basm[128];
data/radare2-4.3.1+dfsg/libr/anal/p/anal_i8080.c:15:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char out[32];
data/radare2-4.3.1+dfsg/libr/anal/p/anal_mips_cs.c:178:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char str[8][32] = {{0}};
data/radare2-4.3.1+dfsg/libr/anal/p/anal_mips_gnu.c:12:15:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	static const char *REGISTERS[32] = {
data/radare2-4.3.1+dfsg/libr/anal/p/anal_ppc_cs.c:43:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	static char cmask[32];
data/radare2-4.3.1+dfsg/libr/anal/p/anal_ppc_cs.c:57:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	static char cmask[32];
data/radare2-4.3.1+dfsg/libr/anal/p/anal_ppc_cs.c:94:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	static char words[8][64];
data/radare2-4.3.1+dfsg/libr/anal/p/anal_ppc_cs.c:158:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	static char cspr[16];
data/radare2-4.3.1+dfsg/libr/anal/p/anal_riscv.c:21:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char arg[RISCVARGSMAX][RISCVARGSIZE];
data/radare2-4.3.1+dfsg/libr/anal/p/anal_riscv.c:330:40:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		if (isdigit ((ut8)(o->subset[0])) && atoi (o->subset) != xlen) {
data/radare2-4.3.1+dfsg/libr/anal/p/anal_riscv_cs.c:181:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char str[8][32] = {{0}};
data/radare2-4.3.1+dfsg/libr/anal/p/anal_rsp.c:20:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char esil[32];
data/radare2-4.3.1+dfsg/libr/anal/p/anal_sparc_gnu.c:389:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy(&insn, data, sz);
data/radare2-4.3.1+dfsg/libr/anal/p/anal_ws.c:20:91:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		if (buf_asm && (strlen (buf_asm) > 4) && buf_asm[0] == 'm' && buf_asm[1] == 'a' && l == atoi (buf_asm + 5)) {
data/radare2-4.3.1+dfsg/libr/anal/p/anal_ws.c:66:31:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				op->jump = ws_find_label (atoi (buf_asm + 5), anal->iob);
data/radare2-4.3.1+dfsg/libr/anal/p/anal_ws.c:74:30:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				op->jump = ws_find_label(atoi (buf_asm + 4), anal->iob);
data/radare2-4.3.1+dfsg/libr/anal/p/anal_ws.c:77:30:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				op->jump = ws_find_label(atoi(buf_asm + 3), anal->iob);
data/radare2-4.3.1+dfsg/libr/anal/p/anal_ws.c:90:16:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
					if (127 > atoi (buf_asm + 5) && atoi (buf_asm + 5) >= 33) {
data/radare2-4.3.1+dfsg/libr/anal/p/anal_ws.c:90:38:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
					if (127 > atoi (buf_asm + 5) && atoi (buf_asm + 5) >= 33) {
data/radare2-4.3.1+dfsg/libr/anal/p/anal_ws.c:91:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
						char c[4];
data/radare2-4.3.1+dfsg/libr/anal/p/anal_ws.c:94:21:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
						c[1] = (char) atoi (buf_asm + 5);
data/radare2-4.3.1+dfsg/libr/anal/p/anal_x86_cs.c:236:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	static char buf[AR_DIM][BUF_SZ];
data/radare2-4.3.1+dfsg/libr/anal/p/anal_x86_cs.c:275:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char buf_[BUF_SZ] = {0};
data/radare2-4.3.1+dfsg/libr/anal/p/anal_xap.c:51:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (&lol, bytes, sizeof (ins));
data/radare2-4.3.1+dfsg/libr/anal/p/anal_xtensa.c:1265:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char compare_val[4] = "0";
data/radare2-4.3.1+dfsg/libr/anal/p/anal_xtensa.c:1927:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buffer, buf_original, len);
data/radare2-4.3.1+dfsg/libr/anal/pin.c:43:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[64];
data/radare2-4.3.1+dfsg/libr/anal/pin.c:49:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[64];
data/radare2-4.3.1+dfsg/libr/anal/pin.c:55:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[64];
data/radare2-4.3.1+dfsg/libr/anal/reflines.c:427:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char pfx[128];
data/radare2-4.3.1+dfsg/libr/anal/rtti_itanium.c:78:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (cti->name, buf, name_len);
data/radare2-4.3.1+dfsg/libr/anal/rtti_itanium.c:112:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (vmi_cti->name, buf, name_len);
data/radare2-4.3.1+dfsg/libr/anal/rtti_itanium.c:177:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (si_cti->name, buf, name_len);
data/radare2-4.3.1+dfsg/libr/anal/rtti_msvc.c:275:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (td->name, buf, nameLen + 1);
data/radare2-4.3.1+dfsg/libr/anal/session.c:75:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (esil->anal->reg->regset[i].arena->bytes,
data/radare2-4.3.1+dfsg/libr/anal/sign.c:93:10:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		argc = atoi (fcntypes);
data/radare2-4.3.1+dfsg/libr/anal/sign.c:328:11:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			size = atoi (token);
data/radare2-4.3.1+dfsg/libr/anal/sign.c:504:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (dst->bytes->bytes, src->bytes->bytes, src->bytes->size);
data/radare2-4.3.1+dfsg/libr/anal/sign.c:511:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (dst->bytes->mask, src->bytes->mask, src->bytes->size);
data/radare2-4.3.1+dfsg/libr/anal/sign.c:576:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char key[R_SIGN_KEY_MAXSZ], val[R_SIGN_VAL_MAXSZ];
data/radare2-4.3.1+dfsg/libr/anal/sign.c:689:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (it->bytes->bytes, bytes, size);
data/radare2-4.3.1+dfsg/libr/anal/sign.c:694:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (it->bytes->mask, mask, size);
data/radare2-4.3.1+dfsg/libr/anal/sign.c:924:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[R_SIGN_KEY_MAXSZ];
data/radare2-4.3.1+dfsg/libr/anal/sign.c:937:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char k[R_SIGN_KEY_MAXSZ];
data/radare2-4.3.1+dfsg/libr/anal/sign.c:976:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (combined_mask, a->bytes->mask, min_size);
data/radare2-4.3.1+dfsg/libr/anal/sign.c:1015:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char k[R_SIGN_KEY_MAXSZ];
data/radare2-4.3.1+dfsg/libr/anal/sign.c:1116:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char k[R_SIGN_KEY_MAXSZ];
data/radare2-4.3.1+dfsg/libr/anal/sign.c:1755:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char nk[R_SIGN_KEY_MAXSZ], nv[R_SIGN_VAL_MAXSZ];
data/radare2-4.3.1+dfsg/libr/anal/sign.c:1782:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char oprefix[R_SIGN_KEY_MAXSZ];
data/radare2-4.3.1+dfsg/libr/anal/sign.c:1783:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char nprefix[R_SIGN_KEY_MAXSZ];
data/radare2-4.3.1+dfsg/libr/anal/sign.c:1788:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char nk[R_SIGN_KEY_MAXSZ], nv[R_SIGN_VAL_MAXSZ];
data/radare2-4.3.1+dfsg/libr/anal/sign.c:2217:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (ret->bytes->bytes, it->bytes->bytes, it->bytes->size);
data/radare2-4.3.1+dfsg/libr/anal/sign.c:2223:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (ret->bytes->mask, it->bytes->mask, it->bytes->size);
data/radare2-4.3.1+dfsg/libr/anal/sign.c:2271:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char nk[R_SIGN_KEY_MAXSZ], nv[R_SIGN_VAL_MAXSZ];
data/radare2-4.3.1+dfsg/libr/anal/sign.c:2366:20:  [2] (tmpfile) tmpfile:
  Function tmpfile() has a security flaw on some systems (e.g., older System
  V systems) (CWE-377).
	if (!r_file_dump (tmpfile, buf, size, 0)) {
data/radare2-4.3.1+dfsg/libr/anal/sign.c:2372:23:  [2] (tmpfile) tmpfile:
  Function tmpfile() has a security flaw on some systems (e.g., older System
  V systems) (CWE-377).
	if (!r_sign_load (a, tmpfile)) {
data/radare2-4.3.1+dfsg/libr/anal/sign.c:2378:18:  [2] (tmpfile) tmpfile:
  Function tmpfile() has a security flaw on some systems (e.g., older System
  V systems) (CWE-377).
	if (!r_file_rm (tmpfile)) {
data/radare2-4.3.1+dfsg/libr/anal/sign.c:2386:8:  [2] (tmpfile) tmpfile:
  Function tmpfile() has a security flaw on some systems (e.g., older System
  V systems) (CWE-377).
	free (tmpfile);
data/radare2-4.3.1+dfsg/libr/anal/value.c:19:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (v, ov, sizeof (RAnalValue));
data/radare2-4.3.1+dfsg/libr/anal/var.c:429:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char key[128];
data/radare2-4.3.1+dfsg/libr/anal/var.c:516:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char key[128], key2[128];
data/radare2-4.3.1+dfsg/libr/anal/var.c:531:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char key[128], val[128], *v;
data/radare2-4.3.1+dfsg/libr/anal/var.c:925:16:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			int delta = atoi (word + 2);
data/radare2-4.3.1+dfsg/libr/asm/arch/8051/8051_ass.c:1274:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char const*carg[3] = { arg[0], arg[1], arg[2] }; /* aliasing pointers...
data/radare2-4.3.1+dfsg/libr/asm/arch/8051/8051_disas.c:45:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char key[10];
data/radare2-4.3.1+dfsg/libr/asm/arch/8051/8051_disas.c:46:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char subst[10];
data/radare2-4.3.1+dfsg/libr/asm/arch/8051/8051_disas.c:49:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf (key, " 0x%02x", val);
data/radare2-4.3.1+dfsg/libr/asm/arch/8051/8051_disas.c:56:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf (key, "0x%02x.", val);
data/radare2-4.3.1+dfsg/libr/asm/arch/amd29k/amd29k.h:18:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char        type[6];
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-dis.c:233:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  static char id[3 * ARRAY_SIZE (state->addresses)];
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-dis.c:304:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		  sprintf (bp, "0x%x", u);
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-dis.c:314:10:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			      sprintf (bp, "%0*x", size, val);
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-dis.c:316:10:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			      sprintf (bp, "%*x", size, val);
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-dis.c:319:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		      sprintf (bp, "%x", val);
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-dis.c:329:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		      sprintf (bp, "%*d", size, val);
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-dis.c:331:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		      sprintf (bp, "%d", val);
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-dis.c:360:8:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			    sprintf (bp, "r%d", val);
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-dis.c:451:6:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
	    strcat (state->instrBuffer, ".f");
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-dis.c:455:7:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
      strcat (state->instrBuffer, ".d");
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-dis.c:458:7:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
      strcat (state->instrBuffer, ".jd");
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-dis.c:464:6:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
	    strcat (state->instrBuffer, ".x");
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-dis.c:467:6:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
	    strcat (state->instrBuffer, ".a");
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-dis.c:470:6:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
	    strcat (state->instrBuffer, ".di");
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-dis.c:508:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char formatString[60];
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-dis.c:838:7:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
      strcat (formatString, "%s"); /* Address/label name.  */
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-dis.h:70:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  const char *comm[6]; /* instr name, cond, NOP, 3 operands */
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-dis.h:92:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char instrBuffer[40];
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-dis.h:93:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char operandBuffer[allOperandsSize];
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-opc.c:148:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static unsigned char arc_operand_map_a4[256];
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-opc.c:149:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static unsigned char arc_operand_map_ac[256];
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-opc.c:1114:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  static char buf[100];
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-opc.c:1257:8:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
	      sprintf (buf, _("invalid register number `%d'"), reg->value);
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-opc.c:1262:8:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
	      sprintf (buf, _("invalid register number `%d'"), reg->value);
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:324:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  static char id[3*_NELEM(state->addresses)];
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:396:8:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
	      sprintf(bp,"0x%x_%04x",u >> 16, u & 0xffff);
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:398:8:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
	      sprintf(bp,"0x%08x",u);
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:401:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		    sprintf (bp, "0x%x", u);
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:411:8:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			    sprintf (bp, "%0*x", size, val);
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:413:8:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			    sprintf (bp, "%*x", size, val);
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:416:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		    sprintf (bp, "%x", val);
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:425:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		    sprintf (bp, "%*d", size, val);
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:427:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		    sprintf (bp, "%d", val);
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:456:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			  sprintf (bp, "r%d", val);
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:511:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
	    sprintf (bp, "vr%d",val);
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:519:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
	    sprintf (bp, "i%d",val);
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:527:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
	    sprintf (bp, "dr%d",val);
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:585:6:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
	    strcat (state->instrBuffer, ".f");
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:589:7:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
		    strcat (state->instrBuffer, ".d");
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:593:6:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
	    strcat (state->instrBuffer, ".x");
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:596:13:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
    case 1: strcat(state->instrBuffer, ".a"); break;
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:597:13:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
    case 2: strcat(state->instrBuffer, ".ab"); break;
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:598:13:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
    case 3: strcat(state->instrBuffer, ".as"); break;
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:601:4:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
	  strcat (state->instrBuffer, ".di");
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:694:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char formatString[60];
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:2753:8:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
	      strcat (formatString, "%*");
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:2809:8:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
	      strcat (formatString, "%*");
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:2931:7:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
      strcat(formatString, ",%s"); /* address/label name */
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:2985:7:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
      strcat(formatString, "%s"); /* address/label name */
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:3080:7:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
      strcat(formatString, "%s"); /* address/label name */
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:3361:7:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
      strcat(formatString, "%s"); /* address/label name */
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:3383:7:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
      strcat(formatString, ",%s"); /* address/label name */
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:3402:7:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
      strcat(formatString,"[%r]");
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:3526:5:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
    strcat(formatString,"%d");
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:3568:5:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
    strcat(formatString,"%r,%r,%r");
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:3808:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char buf[256];
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-dis.c:2697:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	  memcpy (&copy, inst, sizeof (aarch64_inst));
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-dis.c:2705:8:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	      memcpy (inst, &copy, sizeof (aarch64_inst));
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-dis.c:2717:8:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	      memcpy (inst, &temp, sizeof (aarch64_inst));
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-dis.c:3002:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char str[128];
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-dis.c:3058:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char name[8];
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-dis.c:3076:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char name[8];
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-dis.c:3107:16:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  static const char *err_msg[6] =
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-opc.c:40:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
const char *const aarch64_sve_pattern_array[32] = {
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-opc.c:81:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
const char *const aarch64_sve_prfop_array[16] = {
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-opc.c:2754:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static const char *int_reg[2][2][32] = {
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-opc.c:2766:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static const char *sve_reg[2][32] = {
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-opc.c:2902:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char tb[8];	/* Temporary buffer.  */
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-opc.c:2988:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char tb[16];			/* Temporary buffer.  */
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-opc.h:469:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (&inst->operands[dst], &inst->operands[src],
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-opc.h:479:18:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  const unsigned char ls[16] =
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64.h:904:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  const char *names[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64.h:1199:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
extern const char *const aarch64_sve_pattern_array[32];
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64.h:1200:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
extern const char *const aarch64_sve_prfop_array[16];
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:15:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char op[128];
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:16:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char opstr[128];
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:17:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *a[16]; /* only 15 arguments can be used! */
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:982:4:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
			strcat (temp, ", ");
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:1087:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char type[128];
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:1088:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char arg[128];
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:6098:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
						char rn[8];
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:6572:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[128];
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:6595:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char cmd[32];
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:6603:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char cmd[32];
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/gnu/arm-dis.c:3202:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  const char *reg_names[16];
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/gnu/arm-dis.c:4200:26:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			static const unsigned char enc[16] =
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/gnu/arm-dis.c:4483:42:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                                unsigned char valbytes[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/gnu/arm-dis.c:6206:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char b[2];
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/gnu/arm-dis.c:6509:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char b[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/gnu/floatformat.c:750:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char exten[16];
data/radare2-4.3.1+dfsg/libr/asm/arch/avr/avr_disasm.h:61:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char mnemonic[7];
data/radare2-4.3.1+dfsg/libr/asm/arch/avr/disasm.c:12:3:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
		strcpy (out, "truncated");
data/radare2-4.3.1+dfsg/libr/asm/arch/avr/disasm.c:18:3:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
		strcpy (out, "invalid");
data/radare2-4.3.1+dfsg/libr/asm/arch/avr/disasm.c:23:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
			strcpy (out, "truncated");
data/radare2-4.3.1+dfsg/libr/asm/arch/avr/disasm.c:34:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
			strcpy (out, "invalid");
data/radare2-4.3.1+dfsg/libr/asm/arch/avr/disasm.c:50:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char opcode[65];
data/radare2-4.3.1+dfsg/libr/asm/arch/avr/format.c:43:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char strOperand[256];
data/radare2-4.3.1+dfsg/libr/asm/arch/avr/format.c:59:4:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
			strcat (out, ", ");
data/radare2-4.3.1+dfsg/libr/asm/arch/avr/format.c:78:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char binary[9];
data/radare2-4.3.1+dfsg/libr/asm/arch/avr/format.c:142:14:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				retVal = sprintf(strOperand, "0x%x", dInstruction.address + dInstruction.operands[operandNum]);
data/radare2-4.3.1+dfsg/libr/asm/arch/avr/format.c:149:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			retVal = sprintf(strOperand, "0x%x",
data/radare2-4.3.1+dfsg/libr/asm/arch/avr/format.c:175:12:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		retVal = sprintf(strOperand, "y+%d",
data/radare2-4.3.1+dfsg/libr/asm/arch/avr/format.c:179:12:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		retVal = sprintf(strOperand, "z+%d",
data/radare2-4.3.1+dfsg/libr/asm/arch/avr/format.c:183:28:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
	case OPERAND_XP: retVal = sprintf(strOperand, "x+"); break;
data/radare2-4.3.1+dfsg/libr/asm/arch/avr/format.c:184:28:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
	case OPERAND_MX: retVal = sprintf(strOperand, "-x"); break;
data/radare2-4.3.1+dfsg/libr/asm/arch/avr/format.c:186:28:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
	case OPERAND_YP: retVal = sprintf(strOperand, "y+"); break;
data/radare2-4.3.1+dfsg/libr/asm/arch/avr/format.c:187:28:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
	case OPERAND_MY: retVal = sprintf(strOperand, "-y"); break;
data/radare2-4.3.1+dfsg/libr/asm/arch/avr/format.c:189:28:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
	case OPERAND_ZP: retVal = sprintf(strOperand, "z+"); break;
data/radare2-4.3.1+dfsg/libr/asm/arch/avr/format.c:190:28:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
	case OPERAND_MZ: retVal = sprintf(strOperand, "-z"); break;
data/radare2-4.3.1+dfsg/libr/asm/arch/avr/format.h:74:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char addressLabelPrefix[8];
data/radare2-4.3.1+dfsg/libr/asm/arch/cr16/cr16_disas.h:45:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char instr[CR16_INSTR_MAXLEN];
data/radare2-4.3.1+dfsg/libr/asm/arch/cr16/cr16_disas.h:46:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char operands[CR16_INSTR_MAXLEN];
data/radare2-4.3.1+dfsg/libr/asm/arch/cris/gnu/cris-dis.c:542:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
  sprintf (outbuffer, "0x%lx", number);
data/radare2-4.3.1+dfsg/libr/asm/arch/cris/gnu/cris-dis.c:584:8:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	      strcpy (outbuffer, "acr");
data/radare2-4.3.1+dfsg/libr/asm/arch/cris/gnu/cris-dis.c:586:8:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	      strcpy (outbuffer, "pc");
data/radare2-4.3.1+dfsg/libr/asm/arch/cris/gnu/cris-dis.c:591:7:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
      strcpy (outbuffer, "sp");
data/radare2-4.3.1+dfsg/libr/asm/arch/cris/gnu/cris-dis.c:595:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
      sprintf (outbuffer, "r%d", regno);
data/radare2-4.3.1+dfsg/libr/asm/arch/cris/gnu/cris-dis.c:625:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
  sprintf (outbuffer, "format_sup_reg-BUG");
data/radare2-4.3.1+dfsg/libr/asm/arch/cris/gnu/cris-dis.c:724:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char temp[sizeof (".d [$r13=$r12-2147483648],$r10") * 2];
data/radare2-4.3.1+dfsg/libr/asm/arch/cris/gnu/cris-dis.c:933:3:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
		strcpy (tp, "bug");
data/radare2-4.3.1+dfsg/libr/asm/arch/cris/gnu/cris-dis.c:1151:8:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
			    strcpy (tp, "bug");
data/radare2-4.3.1+dfsg/libr/asm/arch/cris/gnu/cris-dis.c:1342:7:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
      strcpy (tp, "???");
data/radare2-4.3.1+dfsg/libr/asm/arch/cris/gnu/cris-dis.c:1400:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char buffer[MAX_BYTES_PER_CRIS_INSN];
data/radare2-4.3.1+dfsg/libr/asm/arch/dcpu16/asm.c:210:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char line[256] = {0}, *param;
data/radare2-4.3.1+dfsg/libr/asm/arch/dcpu16/asm.c:285:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (out, &first_word, 2);
data/radare2-4.3.1+dfsg/libr/asm/arch/dcpu16/asm.c:287:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (out+2, &wordA, 2);
data/radare2-4.3.1+dfsg/libr/asm/arch/dcpu16/asm.c:291:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (out+off, &wordB, 2);
data/radare2-4.3.1+dfsg/libr/asm/arch/dcpu16/asm.c:324:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (out, &first_word, 2);
data/radare2-4.3.1+dfsg/libr/asm/arch/dcpu16/asm.c:326:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (out+2, &wordX, 2);
data/radare2-4.3.1+dfsg/libr/asm/arch/dcpu16/dis.c:65:27:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
	if (type == 0x1e) return sprintf(out, "[%#hx]", value);
data/radare2-4.3.1+dfsg/libr/asm/arch/dcpu16/dis.c:66:27:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
	if (type == 0x1f) return sprintf(out, "%#hx", value);
data/radare2-4.3.1+dfsg/libr/asm/arch/dcpu16/dis.c:67:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
	return sprintf(out, "%#hx", (short)(type - 0x20));
data/radare2-4.3.1+dfsg/libr/asm/arch/dcpu16/dis.c:71:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char arg[32], arg2[32];
data/radare2-4.3.1+dfsg/libr/asm/arch/dcpu16/dis.c:75:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
			strcpy (out, "invalid");
data/radare2-4.3.1+dfsg/libr/asm/arch/dcpu16/main.c:8:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char out[32];
data/radare2-4.3.1+dfsg/libr/asm/arch/dcpu16/main.c:26:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		unsigned char out[32];
data/radare2-4.3.1+dfsg/libr/asm/arch/ebc/ebc_disas.c:136:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char op1[32] = {0};
data/radare2-4.3.1+dfsg/libr/asm/arch/ebc/ebc_disas.c:181:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char suff[3] = {0};
data/radare2-4.3.1+dfsg/libr/asm/arch/ebc/ebc_disas.c:324:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char index[32] = {0};
data/radare2-4.3.1+dfsg/libr/asm/arch/ebc/ebc_disas.c:366:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char index[32] = {0};
data/radare2-4.3.1+dfsg/libr/asm/arch/ebc/ebc_disas.c:447:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char op1c[32], op2c[32];
data/radare2-4.3.1+dfsg/libr/asm/arch/ebc/ebc_disas.c:448:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char ind1[32] = {0}, ind2[32] = {0};
data/radare2-4.3.1+dfsg/libr/asm/arch/ebc/ebc_disas.c:530:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char op1c[32], op2c[32], sign;
data/radare2-4.3.1+dfsg/libr/asm/arch/ebc/ebc_disas.c:531:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char ind1[32] = {0}, ind2[32] = {0};
data/radare2-4.3.1+dfsg/libr/asm/arch/ebc/ebc_disas.c:596:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char op1c[32];
data/radare2-4.3.1+dfsg/libr/asm/arch/ebc/ebc_disas.c:632:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char op1c[32];
data/radare2-4.3.1+dfsg/libr/asm/arch/ebc/ebc_disas.c:633:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char indx[32] = {0};
data/radare2-4.3.1+dfsg/libr/asm/arch/ebc/ebc_disas.c:634:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char immed[32] = {0};
data/radare2-4.3.1+dfsg/libr/asm/arch/ebc/ebc_disas.c:678:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char op1c[32], op2c[32];
data/radare2-4.3.1+dfsg/libr/asm/arch/ebc/ebc_disas.c:679:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char indx1[32] = {0};
data/radare2-4.3.1+dfsg/libr/asm/arch/ebc/ebc_disas.c:680:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char indx2[32] = {0};
data/radare2-4.3.1+dfsg/libr/asm/arch/ebc/ebc_disas.c:725:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char indx[32] = {0};
data/radare2-4.3.1+dfsg/libr/asm/arch/ebc/ebc_disas.c:726:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char op1[32];
data/radare2-4.3.1+dfsg/libr/asm/arch/ebc/ebc_disas.c:791:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char indx1[32] = {0};
data/radare2-4.3.1+dfsg/libr/asm/arch/ebc/ebc_disas.c:792:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char indx2[32] = {0};
data/radare2-4.3.1+dfsg/libr/asm/arch/ebc/ebc_disas.c:793:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char op1[32];
data/radare2-4.3.1+dfsg/libr/asm/arch/ebc/ebc_disas.c:849:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char op1[32];
data/radare2-4.3.1+dfsg/libr/asm/arch/ebc/ebc_disas.c:850:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char indx[32] = {0};
data/radare2-4.3.1+dfsg/libr/asm/arch/ebc/ebc_disas.h:90:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char instr[EBC_INSTR_MAXLEN];
data/radare2-4.3.1+dfsg/libr/asm/arch/ebc/ebc_disas.h:91:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char operands[EBC_OPERANDS_MAXLEN];
data/radare2-4.3.1+dfsg/libr/asm/arch/gb/gbasm.c:600:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy(r_strbuf_get(&op->buf), opbuf, sizeof(ut8) * len);
data/radare2-4.3.1+dfsg/libr/asm/arch/gb/gbdis.c:173:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		sprintf (reg, "rHDMA%d", offset - 0x50);
data/radare2-4.3.1+dfsg/libr/asm/arch/gb/gbdis.c:198:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		sprintf (reg, "0xff%02x", offset);
data/radare2-4.3.1+dfsg/libr/asm/arch/gb/gbdis.c:210:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char reg[32];
data/radare2-4.3.1+dfsg/libr/asm/arch/h8300/h8300_disas.h:124:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char	instr[H8300_INSTR_MAXLEN];
data/radare2-4.3.1+dfsg/libr/asm/arch/h8300/h8300_disas.h:125:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char	operands[H8300_INSTR_MAXLEN];
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-dis.c:61:3:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
  strcpy(instrBuffer, "<unknown>");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-dis.c:79:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char instrBuffer[100];
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:1664:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  static char buf [500];
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:1694:15:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
              sprintf (buf, "low %d bits of immediate %ld must be zero",
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:1735:8:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
	      sprintf (buf, "value %ld out of range: %ld-%ld", value.s, smin, smax);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:1747:8:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
	      sprintf (buf, "value %lu out of range: %lu-%lu", value.u, umin, umax);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:1812:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char name [4];
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:1872:20:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            static char buf [100];
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:1873:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf (buf, "invalid odd register number: %d", reg_odd);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:1884:20:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            static char buf [100];
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:1885:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf (buf, "invalid even register number: %d", reg_even);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:1896:20:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            static char buf [100];
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:1897:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf (buf, "registers must be consecutive: %d:%d",
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:1935:20:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            static char buf [100];
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:1936:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf (buf, "invalid odd register number: %d", reg_odd);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:1947:20:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            static char buf [100];
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:1948:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf (buf, "invalid even register number: %d", reg_even);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:1959:20:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            static char buf [100];
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:1960:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf (buf, "registers must be consecutive: %d:%d",
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2002:20:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            static char buf [100];
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2003:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf (buf, "invalid odd register number: %d", reg_odd);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2014:20:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            static char buf [100];
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2015:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf (buf, "invalid even register number: %d", reg_even);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2026:20:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            static char buf [100];
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2027:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf (buf, "registers must be consecutive: %d:%d",
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2237:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  static char buf [150];
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2278:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  static char buf [100];
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2293:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf (buf, "invalid odd register number: %d", reg_odd);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2304:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf (buf, "invalid even register number: %d", reg_even);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2315:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf (buf, "registers must be consecutive: %d:%d",
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2361:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  static char buf [150];
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2402:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  static char buf [100];
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2417:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf (buf, "invalid odd register number: %d", reg_odd);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2428:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf (buf, "invalid even register number: %d", reg_even);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2439:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf (buf, "registers must be consecutive: %d:%d",
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2485:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  static char buf [150];
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2526:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  static char buf [100];
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2541:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf (buf, "invalid odd register number: %d", reg_odd);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2552:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf (buf, "invalid even register number: %d", reg_even);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2563:13:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            sprintf (buf, "registers must be consecutive: %d:%d",
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2741:18:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
          static char xx[100];
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2801:18:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
          static char xx [100];
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2802:11:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
          sprintf(xx, "control register not found: %d", value);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2910:18:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
          static char xx [100];
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2911:11:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
          sprintf (xx, "bad return code from sprintf: %d", n);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2923:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  static char temp [40];
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2938:18:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
          dst += sprintf (dst, "  ");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2948:20:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
            dst += sprintf (dst, "%c ", PACKET_BEGIN);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2952:18:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
          dst += sprintf (dst, "  ");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:3008:23:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                      sprintf (buf, "<unknown insn 0x%08x>", insn);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:3020:15:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
              sprintf (buf, "<unknown insn 0x%08x>", insn);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:3069:18:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
          dst += sprintf (dst, " %c", PACKET_END);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:3107:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char buf[100];
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:3158:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char reg_name[100];
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:3159:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  static char xx[100];
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:3188:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char reg_name [100];
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/opcode/hexagon.h:398:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char string [HEXAGON_MAPPED_LEN];
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/safe-ctype.c:191:16:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
const unsigned char _sch_tolower[256] =
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/safe-ctype.c:220:16:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
const unsigned char _sch_toupper[256] =
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon.c:61:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	static char tmp[5];
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon.c:146:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf(tmp, "S%d", opreg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon.h:68:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char mnem[128]; // Instruction mnemonic
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1714:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "deallocframe ; if (! p0) jumpr Lr");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1723:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "deallocframe ; if (! p0.new) jumpr:nt Lr");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1732:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "deallocframe ; if (p0) jumpr Lr");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1741:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "deallocframe ; if (p0.new) jumpr:nt Lr");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:1750:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "deallocframe ; jumpr Lr");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21575:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf(hi->mnem, "immext(#0x%x)", hi->ops[0].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21591:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p0 = cmp.eq (R%d, #-1) ; if (p0.new) jump:nt 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21606:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p0 = cmp.gt (R%d, #-1) ; if (p0.new) jump:nt 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21621:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p0 = tstbit (R%d, #0) ; if (p0.new) jump:nt 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21636:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p0 = cmp.eq (R%d, #-1) ; if (p0.new) jump:t 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21651:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p0 = cmp.gt (R%d, #-1) ; if (p0.new) jump:t 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21666:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p0 = tstbit (R%d, #0) ; if (p0.new) jump:t 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21681:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p0 = cmp.eq (R%d, #-1) ; if (!p0.new) jump:nt 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21696:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p0 = cmp.gt (R%d, #-1) ; if (!p0.new) jump:nt 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21711:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p0 = tstbit (R%d, #0) ; if (!p0.new) jump:nt 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21726:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p0 = cmp.eq (R%d, #-1) ; if (!p0.new) jump:t 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21741:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p0 = cmp.gt (R%d, #-1) ; if (!p0.new) jump:t 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21756:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p0 = tstbit (R%d, #0) ; if (!p0.new) jump:t 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21773:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p0 = cmp.eq (R%d, 0x%x) ; if (p0.new) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21790:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p0 = cmp.eq (R%d, 0x%x) ; if (p0.new) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21807:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p0 = cmp.eq (R%d, 0x%x) ; if (!p0.new) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21824:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p0 = cmp.eq (R%d, 0x%x) ; if (!p0.new) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21841:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p0 = cmp.gt (R%d, 0x%x) ; if (p0.new) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21858:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p0 = cmp.gt (R%d, 0x%x) ; if (p0.new) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21875:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p0 = cmp.gt (R%d, 0x%x) ; if (!p0.new) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21892:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p0 = cmp.gt (R%d, 0x%x) ; if (!p0.new) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21909:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p0 = cmp.gtu (R%d, 0x%x) ; if (p0.new) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21926:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p0 = cmp.gtu (R%d, 0x%x) ; if (p0.new) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21943:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p0 = cmp.gtu (R%d, 0x%x) ; if (!p0.new) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21960:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p0 = cmp.gtu (R%d, 0x%x) ; if (!p0.new) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21975:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p1 = cmp.eq (R%d, #-1) ; if (p1.new) jump:nt 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:21990:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p1 = cmp.gt (R%d, #-1) ; if (p1.new) jump:nt 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22005:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p1 = tstbit (R%d, #0) ; if (p1.new) jump:nt 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22020:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p1 = cmp.eq (R%d, #-1) ; if (p1.new) jump:t 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22035:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p1 = cmp.gt (R%d, #-1) ; if (p1.new) jump:t 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22050:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p1 = tstbit (R%d, #0) ; if (p1.new) jump:t 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22065:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p1 = cmp.eq (R%d, #-1) ; if (!p1.new) jump:nt 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22080:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p1 = cmp.gt (R%d, #-1) ; if (!p1.new) jump:nt 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22095:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p1 = tstbit (R%d, #0) ; if (!p1.new) jump:nt 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22110:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p1 = cmp.eq (R%d, #-1) ; if (!p1.new) jump:t 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22125:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p1 = cmp.gt (R%d, #-1) ; if (!p1.new) jump:t 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22140:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p1 = tstbit (R%d, #0) ; if (!p1.new) jump:t 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22157:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p1 = cmp.eq (R%d, 0x%x) ; if (p1.new) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22174:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p1 = cmp.eq (R%d, 0x%x) ; if (p1.new) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22191:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p1 = cmp.eq (R%d, 0x%x) ; if (!p1.new) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22208:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p1 = cmp.eq (R%d, 0x%x) ; if (!p1.new) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22225:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p1 = cmp.gt (R%d, 0x%x) ; if (p1.new) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22242:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p1 = cmp.gt (R%d, 0x%x) ; if (p1.new) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22259:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p1 = cmp.gt (R%d, 0x%x) ; if (!p1.new) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22276:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p1 = cmp.gt (R%d, 0x%x) ; if (!p1.new) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22293:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p1 = cmp.gtu (R%d, 0x%x) ; if (p1.new) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22310:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p1 = cmp.gtu (R%d, 0x%x) ; if (p1.new) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22327:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p1 = cmp.gtu (R%d, 0x%x) ; if (!p1.new) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22344:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p1 = cmp.gtu (R%d, 0x%x) ; if (!p1.new) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22361:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p0 = cmp.eq (R%d, R%d) ; if (p0.new) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22378:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p1 = cmp.eq (R%d, R%d) ; if (p1.new) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22395:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p0 = cmp.eq (R%d, R%d) ; if (p0.new) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22412:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p1 = cmp.eq (R%d, R%d) ; if (p1.new) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22429:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p0 = cmp.eq (R%d, R%d) ; if (!p0.new) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22446:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p1 = cmp.eq (R%d, R%d) ; if (!p1.new) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22463:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p0 = cmp.eq (R%d, R%d) ; if (!p0.new) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22480:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p1 = cmp.eq (R%d, R%d) ; if (!p1.new) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22497:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p0 = cmp.gt (R%d, R%d) ; if (p0.new) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22514:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p1 = cmp.gt (R%d, R%d) ; if (p1.new) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22531:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p0 = cmp.gt (R%d, R%d) ; if (p0.new) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22548:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p1 = cmp.gt (R%d, R%d) ; if (p1.new) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22565:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p0 = cmp.gt (R%d, R%d) ; if (!p0.new) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22582:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p1 = cmp.gt (R%d, R%d) ; if (!p1.new) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22599:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p0 = cmp.gt (R%d, R%d) ; if (!p0.new) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22616:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p1 = cmp.gt (R%d, R%d) ; if (!p1.new) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22633:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p0 = cmp.gtu (R%d, R%d) ; if (p0.new) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22650:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p1 = cmp.gtu (R%d, R%d) ; if (p1.new) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22667:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p0 = cmp.gtu (R%d, R%d) ; if (p0.new) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22684:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p1 = cmp.gtu (R%d, R%d) ; if (p1.new) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22701:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p0 = cmp.gtu (R%d, R%d) ; if (!p0.new) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22718:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p1 = cmp.gtu (R%d, R%d) ; if (!p1.new) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22735:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p0 = cmp.gtu (R%d, R%d) ; if (!p0.new) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22752:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p1 = cmp.gtu (R%d, R%d) ; if (!p1.new) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22769:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = 0x%x ; jump 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22786:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = R%d ; jump 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22806:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (cmp.eq (R%d, R%d)) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22823:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (cmp.eq (R%d, R%d)) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22840:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (!cmp.eq (R%d, R%d)) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22857:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (!cmp.eq (R%d, R%d)) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22874:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (cmp.gt (R%d, R%d)) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22891:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (cmp.gt (R%d, R%d)) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22908:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (!cmp.gt (R%d, R%d)) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22925:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (!cmp.gt (R%d, R%d)) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22942:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (cmp.gtu (R%d, R%d)) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22959:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (cmp.gtu (R%d, R%d)) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22976:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (!cmp.gtu (R%d, R%d)) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:22993:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (!cmp.gtu (R%d, R%d)) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23010:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (cmp.gt (R%d, R%d)) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23027:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (cmp.gt (R%d, R%d)) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23044:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (!cmp.gt (R%d, R%d)) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23061:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (!cmp.gt (R%d, R%d)) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23078:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (cmp.gtu (R%d, R%d)) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23095:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (cmp.gtu (R%d, R%d)) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23112:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (!cmp.gtu (R%d, R%d)) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23129:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (!cmp.gtu (R%d, R%d)) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.reg, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23147:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (cmp.eq (R%d, 0x%x)) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23165:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (cmp.eq (R%d, 0x%x)) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23183:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (!cmp.eq (R%d, 0x%x)) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23201:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (!cmp.eq (R%d, 0x%x)) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23219:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (cmp.gt (R%d, 0x%x)) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23237:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (cmp.gt (R%d, 0x%x)) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23255:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (!cmp.gt (R%d, 0x%x)) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23273:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (!cmp.gt (R%d, 0x%x)) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23290:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (cmp.gtu (R%d, 0x%x)) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23307:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (cmp.gtu (R%d, 0x%x)) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23324:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (!cmp.gtu (R%d, 0x%x)) jump:nt 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23341:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (!cmp.gtu (R%d, 0x%x)) jump:t 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, addr + (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23356:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (tstbit (R%d, #0)) jump:nt 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23371:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (tstbit (R%d, #0)) jump:t 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23386:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (!tstbit (R%d, #0)) jump:nt 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23401:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (!tstbit (R%d, #0)) jump:t 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23416:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (cmp.eq (R%d, #-1)) jump:nt 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23431:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (cmp.eq (R%d, #-1)) jump:t 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23446:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (!cmp.eq (R%d, #-1)) jump:nt 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23461:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (!cmp.eq (R%d, #-1)) jump:t 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23476:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (cmp.gt (R%d, #-1)) jump:nt 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23491:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (cmp.gt (R%d, #-1)) jump:t 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23506:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (!cmp.gt (R%d, #-1)) jump:nt 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23521:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (!cmp.gt (R%d, #-1)) jump:t 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23541:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = memd (R%d + R%d << 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23560:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) R%d:R%d = memd (R%d + R%d << 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg, hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23579:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d:R%d = memd (R%d + R%d << 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg, hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23598:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d:R%d = memd (R%d + R%d << 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg, hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23617:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d:R%d = memd (R%d + R%d << 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg, hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23633:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memb (R%d + R%d << 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23651:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) R%d = memb (R%d + R%d << 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg, hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23669:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d = memb (R%d + R%d << 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg, hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23687:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d = memb (R%d + R%d << 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg, hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23705:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d = memb (R%d + R%d << 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg, hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23721:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memh (R%d + R%d << 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23739:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) R%d = memh (R%d + R%d << 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg, hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23757:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d = memh (R%d + R%d << 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg, hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23775:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d = memh (R%d + R%d << 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg, hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23793:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d = memh (R%d + R%d << 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg, hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23809:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memub (R%d + R%d << 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23827:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) R%d = memub (R%d + R%d << 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg, hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23845:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d = memub (R%d + R%d << 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg, hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23863:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d = memub (R%d + R%d << 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg, hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23881:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d = memub (R%d + R%d << 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg, hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23897:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memuh (R%d + R%d << 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23915:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) R%d = memuh (R%d + R%d << 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg, hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23933:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d = memuh (R%d + R%d << 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg, hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23951:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d = memuh (R%d + R%d << 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg, hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23969:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d = memuh (R%d + R%d << 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg, hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:23985:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memw (R%d + R%d << 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24003:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) R%d = memw (R%d + R%d << 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg, hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24021:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d = memw (R%d + R%d << 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg, hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24039:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d = memw (R%d + R%d << 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg, hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24057:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d = memw (R%d + R%d << 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg, hi->ops[4].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24071:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memb (R%d + 0x%x) += R%d", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24085:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memb (R%d + 0x%x) -= R%d", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24099:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memb (R%d + 0x%x) &= R%d", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24113:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memb (R%d + 0x%x) |= R%d", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24127:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memb (R%d + 0x%x) += 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24141:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memb (R%d + 0x%x) -= 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24155:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memb (R%d + 0x%x) = clrbit (0x%x)", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24169:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memb (R%d + 0x%x) = setbit (0x%x)", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24183:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (R%d + 0x%x) += R%d", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24197:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (R%d + 0x%x) -= R%d", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24211:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (R%d + 0x%x) &= R%d", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24225:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (R%d + 0x%x) |= R%d", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24239:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (R%d + 0x%x) += 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24253:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (R%d + 0x%x) -= 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24267:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (R%d + 0x%x) = clrbit (0x%x)", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24281:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (R%d + 0x%x) = setbit (0x%x)", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24295:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memw (R%d + 0x%x) += R%d", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24309:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memw (R%d + 0x%x) -= R%d", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24323:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memw (R%d + 0x%x) &= R%d", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24337:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memw (R%d + 0x%x) |= R%d", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24351:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memw (R%d + 0x%x) += 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24365:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memw (R%d + 0x%x) -= 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24379:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memw (R%d + 0x%x) = clrbit (0x%x)", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24393:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memw (R%d + 0x%x) = setbit (0x%x)", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24409:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memb (R%d + R%d << 0x%x) = R%d", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24427:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) memb (R%d + R%d << 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm, hi->ops[4].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24445:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d memb (R%d + R%d << 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm, hi->ops[4].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24463:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) memb (R%d + R%d << 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm, hi->ops[4].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24481:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new memb (R%d + R%d << 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm, hi->ops[4].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24497:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (R%d + R%d << 0x%x) = R%d", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24515:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) memh (R%d + R%d << 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm, hi->ops[4].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24533:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d memh (R%d + R%d << 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm, hi->ops[4].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24551:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) memh (R%d + R%d << 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm, hi->ops[4].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24569:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new memh (R%d + R%d << 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm, hi->ops[4].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24585:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memw (R%d + R%d << 0x%x) = R%d", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24603:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) memw (R%d + R%d << 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm, hi->ops[4].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24621:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d memw (R%d + R%d << 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm, hi->ops[4].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24639:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) memw (R%d + R%d << 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm, hi->ops[4].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24657:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new memw (R%d + R%d << 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm, hi->ops[4].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24674:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memd (R%d + R%d << 0x%x) = R%d:R%d", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg + 1, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24693:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) memd (R%d + R%d << 0x%x) = R%d:R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm, hi->ops[4].op.reg + 1, hi->ops[4].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24712:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d memd (R%d + R%d << 0x%x) = R%d:R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm, hi->ops[4].op.reg + 1, hi->ops[4].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24731:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) memd (R%d + R%d << 0x%x) = R%d:R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm, hi->ops[4].op.reg + 1, hi->ops[4].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24750:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new memd (R%d + R%d << 0x%x) = R%d:R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm, hi->ops[4].op.reg + 1, hi->ops[4].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24766:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memb (R%d + R%d << 0x%x) = R%d", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24784:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memb (R%d + 0x%x) = %d", hi->ops[0].op.reg, hi->ops[1].op.imm, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24802:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) memb (R%d + R%d << 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm, hi->ops[4].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24820:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d memb (R%d + R%d << 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm, hi->ops[4].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24838:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) memb (R%d + R%d << 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm, hi->ops[4].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24856:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new memb (R%d + R%d << 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm, hi->ops[4].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24875:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) memb (R%d + 0x%x) = %d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24894:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d memb (R%d + 0x%x) = %d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24913:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) memb (R%d + 0x%x) = %d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24932:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new memb (R%d + 0x%x) = %d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24948:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (R%d + R%d << 0x%x) = R%d", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24964:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (R%d + R%d << 0x%x) = R%d.H", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:24982:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (R%d + 0x%x) = %d", hi->ops[0].op.reg, hi->ops[1].op.imm, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25000:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) memh (R%d + R%d << 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm, hi->ops[4].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25018:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) memh (R%d + R%d << 0x%x) = R%d.H", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm, hi->ops[4].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25036:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d memh (R%d + R%d << 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm, hi->ops[4].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25054:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d memh (R%d + R%d << 0x%x) = R%d.H", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm, hi->ops[4].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25072:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) memh (R%d + R%d << 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm, hi->ops[4].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25090:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) memh (R%d + R%d << 0x%x) = R%d.H", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm, hi->ops[4].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25108:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new memh (R%d + R%d << 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm, hi->ops[4].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25126:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new memh (R%d + R%d << 0x%x) = R%d.H", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm, hi->ops[4].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25145:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) memh (R%d + 0x%x) = %d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25164:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d memh (R%d + 0x%x) = %d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25183:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) memh (R%d + 0x%x) = %d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25202:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new memh (R%d + 0x%x) = %d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25218:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memw (R%d + R%d << 0x%x) = R%d", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25236:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memw (R%d + 0x%x) = %d", hi->ops[0].op.reg, hi->ops[1].op.imm, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25254:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) memw (R%d + R%d << 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm, hi->ops[4].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25272:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d memw (R%d + R%d << 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm, hi->ops[4].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25290:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) memw (R%d + R%d << 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm, hi->ops[4].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25308:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new memw (R%d + R%d << 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm, hi->ops[4].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25327:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) memw (R%d + 0x%x) = %d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25346:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d memw (R%d + 0x%x) = %d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25365:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) memw (R%d + 0x%x) = %d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25384:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new memw (R%d + 0x%x) = %d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25400:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = memd (gp + 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25418:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) R%d:R%d = memd (R%d + 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25436:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d:R%d = memd (R%d + 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25454:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d:R%d = memd (R%d + 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25472:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d:R%d = memd (R%d + 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25484:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memb (gp + 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25501:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) R%d = memb (R%d + 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25518:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d = memb (R%d + 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25535:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d = memb (R%d + 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25552:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d = memb (R%d + 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25564:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memh (gp + 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25581:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) R%d = memh (R%d + 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25598:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d = memh (R%d + 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25615:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d = memh (R%d + 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25632:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d = memh (R%d + 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25644:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memub (gp + 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25661:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) R%d = memub (R%d + 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25678:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d = memub (R%d + 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25695:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d = memub (R%d + 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25712:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d = memub (R%d + 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25724:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memuh (gp + 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25741:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) R%d = memuh (R%d + 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25758:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d = memuh (R%d + 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25775:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d = memuh (R%d + 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25792:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d = memuh (R%d + 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25805:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memw (gp + 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25822:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) R%d = memw (R%d + 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25839:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d = memw (R%d + 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25856:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d = memw (R%d + 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25873:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d = memw (R%d + 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25886:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memb (gp + 0x%x) = R%d", hi->ops[0].op.imm, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25902:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) memb (R%d + 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25918:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) memb (R%d + 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25934:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d memb (R%d + 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25950:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new memb (R%d + 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25962:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (gp + 0x%x) = R%d", hi->ops[0].op.imm, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25978:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) memh (R%d + 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:25994:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) memh (R%d + 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26010:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d memh (R%d + 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26026:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new memh (R%d + 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26038:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memw (gp + 0x%x) = R%d", hi->ops[0].op.imm, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26054:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) memw (R%d + 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26070:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) memw (R%d + 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26086:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d memw (R%d + 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26102:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new memw (R%d + 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26115:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memd (gp + 0x%x) = R%d:R%d", hi->ops[0].op.imm, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26133:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) memd (R%d + 0x%x) = R%d:R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg + 1, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26151:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) memd (R%d + 0x%x) = R%d:R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg + 1, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26169:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d memd (R%d + 0x%x) = R%d:R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg + 1, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26187:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new memd (R%d + 0x%x) = R%d:R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg + 1, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26200:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memb (gp + 0x%x) = R%d", hi->ops[0].op.imm, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26217:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) memb (R%d + 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26234:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) memb (R%d + 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26251:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d memb (R%d + 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26268:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new memb (R%d + 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26280:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (gp + 0x%x) = R%d", hi->ops[0].op.imm, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26292:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (gp + 0x%x) = R%d.H", hi->ops[0].op.imm, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26309:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) memh (R%d + 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26325:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) memh (R%d + 0x%x) = R%d.H", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26342:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) memh (R%d + 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26358:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) memh (R%d + 0x%x) = R%d.H", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26375:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d memh (R%d + 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26391:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d memh (R%d + 0x%x) = R%d.H", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26408:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new memh (R%d + 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26424:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new memh (R%d + 0x%x) = R%d.H", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26436:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memw (gp + 0x%x) = R%d", hi->ops[0].op.imm, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26453:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) memw (R%d + 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26470:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) memw (R%d + 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26487:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d memw (R%d + 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26504:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new memw (R%d + 0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26517:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "callr R%d", hi->ops[0].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26529:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) callr R%d", hi->ops[0].op.pred, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26541:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d callr R%d", hi->ops[0].op.pred, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26551:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "hintjr (R%d)", hi->ops[0].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26561:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "jumpr R%d", hi->ops[0].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26573:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) jumpr:nt R%d", hi->ops[0].op.pred, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26585:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) jumpr:nt R%d", hi->ops[0].op.pred, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26597:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) jumpr:t R%d", hi->ops[0].op.pred, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26609:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) jumpr:t R%d", hi->ops[0].op.pred, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26621:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d jumpr:nt R%d", hi->ops[0].op.pred, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26633:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new jumpr:nt R%d", hi->ops[0].op.pred, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26645:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d jumpr:t R%d", hi->ops[0].op.pred, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26657:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new jumpr:t R%d", hi->ops[0].op.pred, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26671:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "call 0x%x", addr + (st32) hi->ops[0].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26687:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) call 0x%x", hi->ops[0].op.pred, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26703:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d call 0x%x", hi->ops[0].op.pred, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26717:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "jump 0x%x", addr + (st32) hi->ops[0].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26732:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) jump:nt 0x%x", hi->ops[0].op.pred, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26747:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) jump:t 0x%x", hi->ops[0].op.pred, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26762:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d jump:nt 0x%x", hi->ops[0].op.pred, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26777:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d jump:t 0x%x", hi->ops[0].op.pred, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26792:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) jump:nt 0x%x", hi->ops[0].op.pred, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26807:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) jump:t 0x%x", hi->ops[0].op.pred, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26822:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new jump:nt 0x%x", hi->ops[0].op.pred, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26837:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new jump:t 0x%x", hi->ops[0].op.pred, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26849:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = icdatar (R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26861:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = ictagr (R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26871:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "icinvidx (R%d)", hi->ops[0].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26883:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "ictagw (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26891:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "ickill");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26899:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "rte");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26907:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "rteunlock");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26917:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "icinva (R%d)", hi->ops[0].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26925:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "isync");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26935:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "pause (0x%x)", hi->ops[0].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26945:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "trap0 (0x%x)", hi->ops[0].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26955:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "trap1 (0x%x)", hi->ops[0].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26972:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = fastcorner9 (P%d, P%d)", hi->ops[0].op.pred, hi->ops[1].op.pred, hi->ops[2].op.pred);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26986:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = !fastcorner9 (P%d, P%d)", hi->ops[0].op.pred, hi->ops[1].op.pred, hi->ops[2].op.pred);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:26998:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = any8 (P%d)", hi->ops[0].op.pred, hi->ops[1].op.pred);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27010:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = all8 (P%d)", hi->ops[0].op.pred, hi->ops[1].op.pred);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27026:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "loop0 (0x%x, R%d)", hi->ops[0].op.imm, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27042:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "loop1 (0x%x, R%d)", hi->ops[0].op.imm, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27058:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "loop0 (0x%x, 0x%x)", hi->ops[0].op.imm, hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27074:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "loop1 (0x%x, 0x%x)", hi->ops[0].op.imm, hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27087:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = add (pc, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27102:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p3 = sp1loop0 (0x%x, R%d)", hi->ops[0].op.imm, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27117:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p3 = sp2loop0 (0x%x, R%d)", hi->ops[0].op.imm, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27132:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p3 = sp3loop0 (0x%x, R%d)", hi->ops[0].op.imm, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27147:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p3 = sp1loop0 (0x%x, 0x%x)", hi->ops[0].op.imm, hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27162:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p3 = sp2loop0 (0x%x, 0x%x)", hi->ops[0].op.imm, hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27177:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "p3 = sp3loop0 (0x%x, 0x%x)", hi->ops[0].op.imm, hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27191:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = and (P%d, P%d)", hi->ops[0].op.pred, hi->ops[1].op.pred, hi->ops[2].op.pred);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27207:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = and (P%d, and (P%d, P%d))", hi->ops[0].op.pred, hi->ops[1].op.pred, hi->ops[2].op.pred, hi->ops[3].op.pred);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27221:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = or (P%d, P%d)", hi->ops[0].op.pred, hi->ops[1].op.pred, hi->ops[2].op.pred);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27237:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = and (P%d, or (P%d, P%d))", hi->ops[0].op.pred, hi->ops[1].op.pred, hi->ops[2].op.pred, hi->ops[3].op.pred);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27251:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = xor (P%d, P%d)", hi->ops[0].op.pred, hi->ops[1].op.pred, hi->ops[2].op.pred);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27267:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = or (P%d, and (P%d, P%d))", hi->ops[0].op.pred, hi->ops[1].op.pred, hi->ops[2].op.pred, hi->ops[3].op.pred);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27281:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = and (P%d, !P%d)", hi->ops[0].op.pred, hi->ops[1].op.pred, hi->ops[2].op.pred);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27297:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = or (P%d, or (P%d, P%d))", hi->ops[0].op.pred, hi->ops[1].op.pred, hi->ops[2].op.pred, hi->ops[3].op.pred);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27313:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = and (P%d, and (P%d, !P%d))", hi->ops[0].op.pred, hi->ops[1].op.pred, hi->ops[2].op.pred, hi->ops[3].op.pred);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27329:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = and (P%d, or (P%d, !P%d))", hi->ops[0].op.pred, hi->ops[1].op.pred, hi->ops[2].op.pred, hi->ops[3].op.pred);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27341:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = not (P%d)", hi->ops[0].op.pred, hi->ops[1].op.pred);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27357:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = or (P%d, and (P%d, !P%d))", hi->ops[0].op.pred, hi->ops[1].op.pred, hi->ops[2].op.pred, hi->ops[3].op.pred);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27371:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = or (P%d, !P%d)", hi->ops[0].op.pred, hi->ops[1].op.pred, hi->ops[2].op.pred);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27387:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = or (P%d, or (P%d, !P%d))", hi->ops[0].op.pred, hi->ops[1].op.pred, hi->ops[2].op.pred, hi->ops[3].op.pred);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27452:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (R%d != #0) jump:nt 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27467:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (R%d != #0) jump:t 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27482:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (R%d> = #0) jump:nt 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27497:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (R%d> = #0) jump:t 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27512:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (R%d == #0) jump:nt 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27527:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (R%d == #0) jump:t 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27542:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (R%d< = #0) jump:nt 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27557:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (R%d< = #0) jump:t 0x%x", hi->ops[0].op.reg, addr + (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27569:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = R%d", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27582:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%dd = R%d:R%d", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27595:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = R%ds", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27607:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = R%d", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27617:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "ciad (R%d)", hi->ops[0].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27627:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "crswap (R%d, sgp0)", hi->ops[0].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27637:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "crswap (R%d, sgp1)", hi->ops[0].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27648:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "crswap (R%d:R%d, sgp1:0)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27658:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "cswi (R%d)", hi->ops[0].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27670:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = getimask (R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27678:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "tlblock");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27686:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "k0lock");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27694:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "tlbunlock");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27702:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "k0unlock");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27714:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = iassignr (R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27724:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "iassignw (R%d)", hi->ops[0].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27734:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "nmi (R%d)", hi->ops[0].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27744:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "resume (R%d)", hi->ops[0].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27756:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "setimask (P%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27766:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "siad (R%d)", hi->ops[0].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27776:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "start (R%d)", hi->ops[0].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27786:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "stop (R%d)", hi->ops[0].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27796:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "swi (R%d)", hi->ops[0].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27809:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "tlbw (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27822:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = tlbr (R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27834:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = tlbp (R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27844:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "tlbinvasid (R%d)", hi->ops[0].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27859:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = ctlbw (R%d:R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27872:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = tlboc (R%d:R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27934:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "wait (R%d)", hi->ops[0].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27942:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "brkpt");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27952:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "trace (R%d)", hi->ops[0].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27973:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = and (R%d, %d)", hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27991:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = or (R%d, %d)", hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:27999:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "nop");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28017:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = sub (%d, R%d)", hi->ops[0].op.reg, (st32) hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28029:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = sxtb (R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28041:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = sxth (R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28053:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d.L = 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28065:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d.H = 0x%x", hi->ops[0].op.reg, hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28081:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = %d", hi->ops[0].op.reg, (st32) hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28093:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = R%d", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28105:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = zxth (R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28124:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = combine (R%d, %d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28143:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = combine (%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, (st32) hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28165:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = combine (%d, %d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, (st32) hi->ops[1].op.imm, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28184:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = combine (%d, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, (st32) hi->ops[1].op.imm, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28204:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = mux (P%d, R%d, %d)", hi->ops[0].op.reg, hi->ops[1].op.pred, hi->ops[2].op.reg, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28224:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = mux (P%d, %d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.pred, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28247:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = mux (P%d, %d, %d)", hi->ops[0].op.reg, hi->ops[1].op.pred, (st32) hi->ops[2].op.imm, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28259:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = aslh (R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28271:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = asrh (R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28291:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) R%d = add (R%d, %d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28311:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d = add (R%d, %d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28331:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d = add (R%d, %d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28351:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d = add (R%d, %d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28365:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) R%d = aslh (R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28379:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d = aslh (R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28393:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d = aslh (R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28407:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d = aslh (R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28421:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) R%d = asrh (R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28435:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d = asrh (R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28449:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d = asrh (R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28463:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d = asrh (R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28477:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) R%d = sxtb (R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28491:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d = sxtb (R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28505:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d = sxtb (R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28519:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d = sxtb (R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28533:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) R%d = sxth (R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28547:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d = sxth (R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28561:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d = sxth (R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28575:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d = sxth (R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28593:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) R%d = %d", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28611:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d = %d", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28629:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d = %d", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28647:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d = %d", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28661:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) R%d = zxtb (R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28675:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d = zxtb (R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28689:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d = zxtb (R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28703:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d = zxtb (R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28717:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) R%d = zxth (R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28731:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d = zxth (R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28745:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d = zxth (R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28759:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d = zxth (R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28777:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = cmp.eq (R%d, %d)", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28795:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = !cmp.eq (R%d, %d)", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28813:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = cmp.gt (R%d, %d)", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28831:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = !cmp.gt (R%d, %d)", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28846:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = cmp.gtu (R%d, 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28861:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = !cmp.gtu (R%d, 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28879:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = cmp.eq (R%d, %d)", hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28897:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = !cmp.eq (R%d, %d)", hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28914:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = abs (R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28926:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = abs (R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28939:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = abs (R%d) :sat", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28953:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = not (R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28967:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = neg (R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28980:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = neg (R%d) :sat", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:28994:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = round (R%d:R%d) :sat", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29008:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = cround (R%d, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29022:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = round (R%d, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29037:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = round (R%d, 0x%x) :sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29050:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = sxtw (R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29064:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vabsh (R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29079:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vabsh (R%d:R%d) :sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29093:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vabsw (R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29108:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vabsw (R%d:R%d) :sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29121:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = clb (R%d:R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29134:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = cl0 (R%d:R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29147:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = cl1 (R%d:R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29160:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = normamt (R%d:R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29178:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = add (clb (R%d:R%d), %d)", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29195:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = add (clb (R%d), %d)", hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29207:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = clb (R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29219:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = cl0 (R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29231:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = cl1 (R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29243:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = normamt (R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29256:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = popcount (R%d:R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29269:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = ct0 (R%d:R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29282:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = ct1 (R%d:R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29294:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = ct0 (R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29306:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = ct1 (R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29324:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = extractu (R%d:R%d, 0x%x, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29342:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = extract (R%d:R%d, 0x%x, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29358:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = extractu (R%d, 0x%x, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29374:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = extract (R%d, 0x%x, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29392:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = insert (R%d:R%d, 0x%x, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29408:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = insert (R%d, 0x%x, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29422:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = deinterleave (R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29436:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = interleave (R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29450:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = brev (R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29462:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = brev (R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29476:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = setbit (R%d, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29490:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = clrbit (R%d, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29504:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = togglebit (R%d, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29519:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = bitsplit (R%d, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29539:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = tableidxb (R%d, 0x%x, %d) :raw", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29559:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = tableidxh (R%d, 0x%x, %d) :raw", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29579:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = tableidxw (R%d, 0x%x, %d) :raw", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29599:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = tableidxd (R%d, 0x%x, %d) :raw", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29614:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vconj (R%d:R%d) :sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29628:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = sfclass (R%d, 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29641:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = convert_sf2df (R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29654:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = convert_df2sf (R%d:R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29668:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = convert_ud2df (R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29682:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = convert_d2df (R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29695:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = convert_uw2df (R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29708:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = convert_w2df (R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29721:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = convert_ud2sf (R%d:R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29734:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = convert_d2sf (R%d:R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29746:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = convert_uw2sf (R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29758:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = convert_w2sf (R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29772:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = convert_df2d (R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29786:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = convert_df2ud (R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29801:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = convert_df2d (R%d:R%d) :chop", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29816:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = convert_df2ud (R%d:R%d) :chop", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29829:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = convert_sf2ud (R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29842:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = convert_sf2d (R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29855:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = convert_sf2ud (R%d) :ch", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29869:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = convert_sf2d (R%d) :chop", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29882:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = convert_df2uw (R%d:R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29895:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = convert_df2w (R%d:R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29909:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = convert_df2uw (R%d:R%d) :chop", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29923:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = convert_df2w (R%d:R%d) :chop", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29935:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = convert_sf2uw (R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29948:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = convert_sf2uw (R%d) :chop", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29960:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = convert_sf2w (R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29973:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = convert_sf2w (R%d) :chop", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29985:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = sffixupr (R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:29999:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d, P%d = sfinvsqrta (R%d)", hi->ops[0].op.reg, hi->ops[1].op.pred, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30012:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = sat (R%d:R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30024:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = sath (R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30036:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = satuh (R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30048:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = satub (R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30060:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = satb (R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30072:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = swiz (R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30085:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = vrndwh (R%d:R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30099:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = vrndwh (R%d:R%d) :sat", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30112:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = vsathub (R%d:R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30125:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = vsatwh (R%d:R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30138:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = vsatwuh (R%d:R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30151:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = vsathb (R%d:R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30163:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = vsathb (R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30175:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = vsathub (R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30189:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vsathub (R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30203:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vsatwuh (R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30217:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vsatwh (R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30231:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vsathb (R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30244:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vsplatb (R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30256:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = vsplatb (R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30269:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vsplath (R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30282:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vsxtbh (R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30295:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vsxthw (R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30308:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = vtrunohb (R%d:R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30321:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = vtrunehb (R%d:R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30334:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vzxtbh (R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30347:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vzxthw (R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30361:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = bitsclr (R%d, 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30375:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = !bitsclr (R%d, 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30388:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = mask (P%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.pred);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30400:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30412:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = P%d", hi->ops[0].op.reg, hi->ops[1].op.pred);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30426:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = tstbit (R%d, 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30440:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = !tstbit (R%d, 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30454:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = vitpack (P%d, P%d)", hi->ops[0].op.reg, hi->ops[1].op.pred, hi->ops[2].op.pred);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30470:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = asr (R%d:R%d, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30486:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = lsr (R%d:R%d, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30502:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = asl (R%d:R%d, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30518:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = rol (R%d:R%d, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30532:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = asr (R%d, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30546:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = lsr (R%d, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30560:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = asl (R%d, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30574:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = rol (R%d, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30590:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d -= asr (R%d:R%d, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30606:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d -= lsr (R%d:R%d, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30622:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d -= asl (R%d:R%d, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30638:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d -= rol (R%d:R%d, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30654:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d += asr (R%d:R%d, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30670:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d += lsr (R%d:R%d, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30686:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d += asl (R%d:R%d, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30702:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d += rol (R%d:R%d, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30716:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d -= asr (R%d, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30730:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d -= lsr (R%d, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30744:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d -= asl (R%d, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30758:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d -= rol (R%d, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30772:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d += asr (R%d, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30786:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d += lsr (R%d, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30800:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d += asl (R%d, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30814:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d += rol (R%d, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30830:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d &= asr (R%d:R%d, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30846:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d &= lsr (R%d:R%d, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30862:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d &= asl (R%d:R%d, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30878:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d &= rol (R%d:R%d, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30894:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d |= asr (R%d:R%d, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30910:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d |= lsr (R%d:R%d, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30926:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d |= asl (R%d:R%d, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30942:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d |= rol (R%d:R%d, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30958:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d ^= lsr (R%d:R%d, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30974:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d ^= asl (R%d:R%d, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:30990:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d ^= rol (R%d:R%d, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31004:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d &= asr (R%d, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31018:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d &= lsr (R%d, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31032:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d &= asl (R%d, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31046:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d &= rol (R%d, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31060:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d |= asr (R%d, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31074:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d |= lsr (R%d, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31088:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d |= asl (R%d, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31102:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d |= rol (R%d, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31116:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d ^= lsr (R%d, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31130:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d ^= asl (R%d, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31144:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d ^= rol (R%d, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31161:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = asr (R%d:R%d, 0x%x) :rnd", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31176:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = asr (R%d, 0x%x) :rnd", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31191:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = asl (R%d, 0x%x) :sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31207:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vasrh (R%d:R%d, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31223:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vlsrh (R%d:R%d, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31239:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vaslh (R%d:R%d, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31256:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vasrh (R%d:R%d, 0x%x) :raw", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31272:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = vasrhub (R%d:R%d, 0x%x) :raw", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31288:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = vasrhub (R%d:R%d, 0x%x) :sat", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31304:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vasrw (R%d:R%d, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31320:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vlsrw (R%d:R%d, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31336:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vaslw (R%d:R%d, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31351:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = vasrw (R%d:R%d, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31373:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = memd (R%d + %d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31393:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = memd (R%d ++ %d:circ (R%d))", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31408:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = memd (R%d ++ I:circ (R%d))", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31424:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = memd (R%d = 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31442:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = memd (R%d ++ %d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31460:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = memd (R%d << 0x%x + 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31475:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = memd (R%d ++ R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31490:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = memd (R%d ++ R%d:brev)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31510:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) R%d:R%d = memd (R%d ++ %d)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31530:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d:R%d = memd (R%d ++ %d)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31550:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d:R%d = memd (R%d ++ %d)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31570:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d:R%d = memd (R%d ++ %d)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31586:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) R%d:R%d = memd (0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31602:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d:R%d = memd (0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31618:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d:R%d = memd (0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31634:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d:R%d = memd (0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31652:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memb (R%d + %d)", hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31671:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memb (R%d ++ %d:circ (R%d))", hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31685:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memb (R%d ++ I:circ (R%d))", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31700:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memb (R%d = 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31717:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memb (R%d ++ %d)", hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31734:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memb (R%d << 0x%x + 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31748:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memb (R%d ++ R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31762:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memb (R%d ++ R%d:brev)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31781:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) R%d = memb (R%d ++ %d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31800:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d = memb (R%d ++ %d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31819:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d = memb (R%d ++ %d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31838:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d = memb (R%d ++ %d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31853:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) R%d = memb (0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31868:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d = memb (0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31883:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d = memb (0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31898:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d = memb (0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31916:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = memb_fifo (R%d + %d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31936:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = memb_fifo (R%d ++ %d:circ (R%d))", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31951:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = memb_fifo (R%d ++ I:circ (R%d))", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31966:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = memb_fifo (R%d = 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:31984:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = memb_fifo (R%d ++ %d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32001:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = memb_fifo (R%d << 0x%x + 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32016:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = memb_fifo (R%d ++ R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32031:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = memb_fifo (R%d ++ R%d:brev)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32049:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = memh_fifo (R%d + %d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32069:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = memh_fifo (R%d ++ %d:circ (R%d))", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32084:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = memh_fifo (R%d ++ I:circ (R%d))", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32099:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = memh_fifo (R%d = 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32117:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = memh_fifo (R%d ++ %d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32134:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = memh_fifo (R%d << 0x%x + 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32149:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = memh_fifo (R%d ++ R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32164:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = memh_fifo (R%d ++ R%d:brev)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32182:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memh (R%d + %d)", hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32201:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memh (R%d ++ %d:circ (R%d))", hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32215:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memh (R%d ++ I:circ (R%d))", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32230:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memh (R%d = 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32247:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memh (R%d ++ %d)", hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32264:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memh (R%d << 0x%x + 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32278:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memh (R%d ++ R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32292:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memh (R%d ++ R%d:brev)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32311:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) P%d = memh (R%d ++ %d)", hi->ops[0].op.pred, hi->ops[1].op.pred, hi->ops[2].op.reg, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32330:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d = memh (R%d ++ %d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32349:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d = memh (R%d ++ %d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32368:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d = memh (R%d ++ %d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32383:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) R%d = memh (0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32398:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d = memh (0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32413:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d = memh (0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32428:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d = memh (0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32446:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memub (R%d + %d)", hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32465:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memub (R%d ++ %d:circ (R%d))", hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32479:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memub (R%d ++ I:circ (R%d))", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32494:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memub (R%d = 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32511:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memub (R%d ++ %d)", hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32528:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memub (R%d << 0x%x + 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32542:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memub (R%d ++ R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32556:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memub (R%d ++ R%d:brev)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32575:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) R%d = memub (R%d ++ %d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32594:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d = memub (R%d ++ %d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32613:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d = memub (R%d ++ %d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32632:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d = memub (R%d ++ %d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32647:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) R%d = memub (0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32662:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d = memub (0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32677:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d = memub (0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32692:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d = memub (0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32710:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memuh (R%d + %d)", hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32729:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memuh (R%d ++ %d:circ (R%d))", hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32743:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memuh (R%d ++ I:circ (R%d))", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32758:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memuh (R%d = 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32775:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memuh (R%d ++ %d)", hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32792:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memuh (R%d << 0x%x + 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32806:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memuh (R%d ++ R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32820:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memuh (R%d ++ R%d:brev)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32839:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) R%d = memuh (R%d ++ %d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32858:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d = memuh (R%d ++ %d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32877:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d = memuh (R%d ++ %d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32896:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d = memuh (R%d ++ %d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32911:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) R%d = memuh (0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32926:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d = memuh (0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32941:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d = memuh (0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32956:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d = memuh (0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32974:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memw (R%d + %d)", hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:32993:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memw (R%d ++ %d:circ (R%d))", hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33007:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memw (R%d ++ I:circ (R%d))", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33022:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memw (R%d = 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33039:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memw (R%d ++ %d)", hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33056:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memw (R%d << 0x%x + 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33070:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memw (R%d ++ R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33084:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memw (R%d ++ R%d:brev)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33103:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) R%d = memw (R%d ++ %d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33122:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d = memw (R%d ++ %d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33141:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d = memw (R%d ++ %d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33160:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d = memw (R%d ++ %d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33175:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) R%d = memw (0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33190:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d = memw (0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33205:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d = memw (0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33220:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d = memw (0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33228:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "deallocframe");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33236:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "dealloc_return");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33246:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) dealloc_return:nt", hi->ops[0].op.pred);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33256:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) dealloc_return", hi->ops[0].op.pred);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33266:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) dealloc_return:t", hi->ops[0].op.pred);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33276:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new dealloc_return:nt", hi->ops[0].op.pred);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33286:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d dealloc_return", hi->ops[0].op.pred);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33296:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new dealloc_return:t", hi->ops[0].op.pred);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33313:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = membh (R%d + %d)", hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33330:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memubh (R%d + %d)", hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33348:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = memubh (R%d + %d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33366:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = membh (R%d + %d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33385:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = membh (R%d ++ %d:circ (R%d))", hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33399:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = membh (R%d ++ I:circ (R%d))", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33418:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memubh (R%d ++ %d:circ (R%d))", hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33432:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memubh (R%d ++ I:circ (R%d))", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33452:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = memubh (R%d ++ %d:circ (R%d))", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33467:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = memubh (R%d ++ I:circ (R%d))", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33487:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = membh (R%d ++ %d:circ (R%d))", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33502:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = membh (R%d ++ I:circ (R%d))", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33516:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = membh (R%d = 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33533:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = membh (R%d ++ %d)", hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33547:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memubh (R%d = 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33564:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memubh (R%d ++ %d)", hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33579:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = memubh (R%d = 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33597:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = memubh (R%d ++ %d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33612:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = membh (R%d = 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33630:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = membh (R%d ++ %d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33646:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = membh (R%d << 0x%x + 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33660:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = membh (R%d ++ R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33676:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memubh (R%d << 0x%x + 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33690:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memubh (R%d ++ R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33707:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = memubh (R%d << 0x%x + 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33722:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = memubh (R%d ++ R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33739:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = membh (R%d << 0x%x + 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33754:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = membh (R%d ++ R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33768:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = membh (R%d ++ R%d:brev)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33782:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memubh (R%d ++ R%d:brev)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33797:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = memubh (R%d ++ R%d:brev)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33812:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = membh (R%d ++ R%d:brev)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33826:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memw_phys (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33838:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = memw_locked (R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33851:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = memd_locked (R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33863:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "dcfetch (R%d + 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33884:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memb (R%d + %d) = R%d", hi->ops[0].op.reg, (st32) hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33898:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memb (R%d ++ I:circ (R%d)) = R%d", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33917:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memb (R%d ++ %d:circ (R%d)) = R%d", hi->ops[0].op.reg, (st32) hi->ops[1].op.imm, hi->ops[2].op.reg, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33931:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memb (R%d = 0x%x) = R%d", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33948:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memb (R%d ++ %d) = R%d", hi->ops[0].op.reg, (st32) hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33965:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memb (R%d << 0x%x + 0x%x) = R%d", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33979:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memb (R%d ++ R%d) = R%d", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:33993:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memb (R%d ++ R%d:brev) = R%d", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34012:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) memb (R%d ++ %d) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34031:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d memb (R%d ++ %d) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34050:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) memb (R%d ++ %d) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34069:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new memb (R%d ++ %d) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34083:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) memb (0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34097:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d memb (0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34111:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) memb (0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34125:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new memb (0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34143:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (R%d + %d) = R%d", hi->ops[0].op.reg, (st32) hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34157:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (R%d ++ I:circ (R%d)) = R%d", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34176:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (R%d ++ %d:circ (R%d)) = R%d", hi->ops[0].op.reg, (st32) hi->ops[1].op.imm, hi->ops[2].op.reg, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34190:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (R%d = 0x%x) = R%d", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34207:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (R%d ++ %d) = R%d", hi->ops[0].op.reg, (st32) hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34224:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (R%d << 0x%x + 0x%x) = R%d", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34238:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (R%d ++ R%d) = R%d", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34252:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (R%d ++ R%d:brev) = R%d", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34271:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) memh (R%d ++ %d) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34290:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d memh (R%d ++ %d) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34309:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) memh (R%d ++ %d) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34328:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new memh (R%d ++ %d) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34342:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) memh (0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34356:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d memh (0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34370:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) memh (0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34384:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new memh (0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34402:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memw (R%d + %d) = R%d", hi->ops[0].op.reg, (st32) hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34416:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memw (R%d ++ I:circ (R%d)) = R%d", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34435:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memw (R%d ++ %d:circ (R%d)) = R%d", hi->ops[0].op.reg, (st32) hi->ops[1].op.imm, hi->ops[2].op.reg, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34449:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memw (R%d = 0x%x) = R%d", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34466:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memw (R%d ++ %d) = R%d", hi->ops[0].op.reg, (st32) hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34483:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memw (R%d << 0x%x + 0x%x) = R%d", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34497:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memw (R%d ++ R%d) = R%d", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34511:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memw (R%d ++ R%d:brev) = R%d", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34530:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) memw (R%d ++ %d) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34549:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d memw (R%d ++ %d) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34568:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) memw (R%d ++ %d) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34587:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new memw (R%d ++ %d) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34602:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) memw (0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34617:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d memw (0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34632:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) memw (0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34647:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new memw (0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34666:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memd (R%d + %d) = R%d:R%d", hi->ops[0].op.reg, (st32) hi->ops[1].op.imm, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34681:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memd (R%d ++ I:circ (R%d)) = R%d:R%d", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34701:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memd (R%d ++ %d:circ (R%d)) = R%d:R%d", hi->ops[0].op.reg, (st32) hi->ops[1].op.imm, hi->ops[2].op.reg, hi->ops[3].op.reg + 1, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34717:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memd (R%d = 0x%x) = R%d:R%d", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34735:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memd (R%d ++ %d) = R%d:R%d", hi->ops[0].op.reg, (st32) hi->ops[1].op.imm, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34753:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memd (R%d << 0x%x + 0x%x) = R%d:R%d", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.imm, hi->ops[3].op.reg + 1, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34768:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memd (R%d ++ R%d) = R%d:R%d", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34783:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memd (R%d ++ R%d:brev) = R%d:R%d", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34803:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) memd (R%d ++ %d) = R%d:R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg + 1, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34823:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d memd (R%d ++ %d) = R%d:R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg + 1, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34843:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) memd (R%d ++ %d) = R%d:R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg + 1, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34863:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new memd (R%d ++ %d) = R%d:R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg + 1, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34878:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) memd (0x%x) = R%d:R%d", hi->ops[0].op.pred, hi->ops[1].op.imm, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34893:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d memd (0x%x) = R%d:R%d", hi->ops[0].op.pred, hi->ops[1].op.imm, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34908:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) memd (0x%x) = R%d:R%d", hi->ops[0].op.pred, hi->ops[1].op.imm, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34923:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new memd (0x%x) = R%d:R%d", hi->ops[0].op.pred, hi->ops[1].op.imm, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34941:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memb (R%d + %d) = R%d", hi->ops[0].op.reg, (st32) hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34955:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memb (R%d ++ I:circ (R%d)) = R%d", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34974:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memb (R%d ++ %d:circ (R%d)) = R%d", hi->ops[0].op.reg, (st32) hi->ops[1].op.imm, hi->ops[2].op.reg, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:34989:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memb (R%d = 0x%x) = R%d", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35006:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memb (R%d ++ %d) = R%d", hi->ops[0].op.reg, (st32) hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35023:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memb (R%d << 0x%x + 0x%x) = R%d", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35037:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memb (R%d ++ R%d) = R%d", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35051:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memb (R%d ++ R%d:brev) = R%d", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35070:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) memb (R%d ++ %d) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35089:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d memb (R%d ++ %d) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35108:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) memb (R%d ++ %d) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35127:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new memb (R%d ++ %d) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35141:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) memb (0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35155:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d memb (0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35169:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) memb (0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35183:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new memb (0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35201:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (R%d + %d) = R%d", hi->ops[0].op.reg, (st32) hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35218:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (R%d + %d) = R%d.H", hi->ops[0].op.reg, (st32) hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35232:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (R%d ++ I:circ (R%d)) = R%d", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35251:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (R%d ++ %d:circ (R%d)) = R%d", hi->ops[0].op.reg, (st32) hi->ops[1].op.imm, hi->ops[2].op.reg, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35265:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (R%d ++ I:circ (R%d)) = R%d.H", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35284:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (R%d ++ %d:circ (R%d)) = R%d.H", hi->ops[0].op.reg, (st32) hi->ops[1].op.imm, hi->ops[2].op.reg, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35299:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (R%d = 0x%x) = R%d", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35316:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (R%d ++ %d) = R%d", hi->ops[0].op.reg, (st32) hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35330:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (R%d = 0x%x) = R%d.H", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35347:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (R%d ++ %d) = R%d.H", hi->ops[0].op.reg, (st32) hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35364:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (R%d << 0x%x + 0x%x) = R%d", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35378:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (R%d ++ R%d) = R%d", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35394:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (R%d << 0x%x + 0x%x) = R%d.H", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35408:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (R%d ++ R%d) = R%d.H", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35422:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (R%d ++ R%d:brev) = R%d", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35436:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memh (R%d ++ R%d:brev) = R%d.H", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35455:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) memh (R%d ++ %d) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35474:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d memh (R%d ++ %d) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35493:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) memh (R%d ++ %d) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35512:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new memh (R%d ++ %d) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35531:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) memh (R%d ++ %d) = R%d.H", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35550:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d memh (R%d ++ %d) = R%d.H", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35569:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) memh (R%d ++ %d) = R%d.H", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35588:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new memh (R%d ++ %d) = R%d.H", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35602:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) memh (0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35616:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d memh (0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35630:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) memh (0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35644:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new memh (0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35658:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) memh (0x%x) = R%d.H", hi->ops[0].op.pred, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35672:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d memh (0x%x) = R%d.H", hi->ops[0].op.pred, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35686:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) memh (0x%x) = R%d.H", hi->ops[0].op.pred, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35700:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new memh (0x%x) = R%d.H", hi->ops[0].op.pred, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35718:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memw (R%d + %d) = R%d", hi->ops[0].op.reg, (st32) hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35732:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memw (R%d ++ I:circ (R%d)) = R%d", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35751:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memw (R%d ++ %d:circ (R%d)) = R%d", hi->ops[0].op.reg, (st32) hi->ops[1].op.imm, hi->ops[2].op.reg, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35766:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memw (R%d = 0x%x) = R%d", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35783:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memw (R%d ++ %d) = R%d", hi->ops[0].op.reg, (st32) hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35800:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memw (R%d << 0x%x + 0x%x) = R%d", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35814:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memw (R%d ++ R%d) = R%d", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35828:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memw (R%d ++ R%d:brev) = R%d", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35847:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) memw (R%d ++ %d) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35866:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d memw (R%d ++ %d) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35885:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) memw (R%d ++ %d) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35904:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new memw (R%d ++ %d) = R%d", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35919:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) memw (0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35934:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d memw (0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35949:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) memw (0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35964:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new memw (0x%x) = R%d", hi->ops[0].op.pred, hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35974:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "allocframe (0x%x)", hi->ops[0].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35982:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "dckill");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:35992:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "dccleanidx (R%d)", hi->ops[0].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36002:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "dcinvidx (R%d)", hi->ops[0].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36012:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "dccleaninvidx (R%d)", hi->ops[0].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36024:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "dctagw (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36036:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = dctagr (R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36046:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "l2cleanidx (R%d)", hi->ops[0].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36056:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "l2invidx (R%d)", hi->ops[0].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36066:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "l2cleaninvidx (R%d)", hi->ops[0].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36077:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "l2gclean (R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36088:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "l2gcleaninv (R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36096:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "l2kill");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36104:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "l2gunlock");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36112:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "l2gclean");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36120:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "l2gcleaninv");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36132:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = l2locka (R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36142:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "l2unlocka (R%d)", hi->ops[0].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36154:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "l2tagw (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36166:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = l2tagr (R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36180:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memw_locked (R%d, P%d) = R%d", hi->ops[0].op.reg, hi->ops[1].op.pred, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36195:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "memd_locked (R%d, P%d) = R%d:R%d", hi->ops[0].op.reg, hi->ops[1].op.pred, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36205:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "dczeroa (R%d)", hi->ops[0].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36213:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "barrier");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36223:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "dccleana (R%d)", hi->ops[0].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36233:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "dcinva (R%d)", hi->ops[0].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36243:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "dccleaninva (R%d)", hi->ops[0].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36255:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "l2fetch (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36268:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "l2fetch (R%d, R%d:R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36276:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "syncht");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36297:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = add (R%d, %d)", hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36319:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = add (R%d:R%d, R%d:R%d, P%d) :carry", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg, hi->ops[3].op.pred);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36338:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = sub (R%d:R%d, R%d:R%d, P%d) :carry", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg, hi->ops[3].op.pred);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36355:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d ^= xor (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36369:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = cround (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36383:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = round (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36398:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = round (R%d, R%d) :sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36415:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = vaddhub (R%d:R%d, R%d:R%d) :sat", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36431:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vcnegh (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36447:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d += vrcnegh (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36463:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vrmaxh (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36479:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vrmaxuh (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36495:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vrmaxw (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36511:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vrmaxuw (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36527:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vrminh (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36543:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vrminuh (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36559:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vrminw (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36575:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vrminuw (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36592:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = extractu (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36609:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = extract (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36624:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = extractu (R%d, R%d:R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36639:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = extract (R%d, R%d:R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36654:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = insert (R%d, R%d:R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36671:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = insert (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36688:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = lfs (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36702:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = setbit (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36716:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = clrbit (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36730:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = togglebit (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36748:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vxaddsubh (R%d:R%d, R%d:R%d) :sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36766:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vxsubaddh (R%d:R%d, R%d:R%d) :sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36786:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vxaddsubh (R%d:R%d, R%d:R%d) :rnd:>>1:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36806:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vxsubaddh (R%d:R%d, R%d:R%d) :rnd:>>1:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36824:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vxaddsubw (R%d:R%d, R%d:R%d) :sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36842:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vxsubaddw (R%d:R%d, R%d:R%d) :sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36860:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = cmpyiwh (R%d:R%d, R%d) :<<1:rnd:sat", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36878:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = cmpyiwh (R%d:R%d, R%d *) :<<1:rnd:sat", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36896:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = cmpyrwh (R%d:R%d, R%d) :<<1:rnd:sat", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36914:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = cmpyrwh (R%d:R%d, R%d *) :<<1:rnd:sat", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36930:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vcrotate (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36948:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vrcrotate (R%d:R%d, R%d, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36966:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d += vrcrotate (R%d:R%d, R%d, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36980:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = cmp.ge (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:36994:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = cmp.uo (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37008:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = cmp.eq (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37022:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = cmp.gt (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37039:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = decbin (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37058:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = valignb (R%d:R%d, R%d:R%d, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37077:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = valignb (R%d:R%d, R%d:R%d, P%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg, hi->ops[3].op.pred);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37094:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = shuffeb (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37111:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = shuffob (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37128:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = shuffeh (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37145:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = shuffoh (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37164:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vspliceb (R%d:R%d, R%d:R%d, 0x%x)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37183:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vspliceb (R%d:R%d, R%d:R%d, P%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg, hi->ops[3].op.pred);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37200:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vtrunewh (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37217:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vtrunehb (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37234:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vtrunowh (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37251:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vtrunohb (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37265:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = cmpb.gt (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37279:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = cmpb.eq (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37293:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = cmpb.gtu (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37307:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = cmph.eq (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37321:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = cmph.gt (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37335:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = cmph.gtu (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37349:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = bitsset (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37363:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = !bitsset (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37377:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = bitsclr (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37391:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = !bitsclr (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37405:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = tstbit (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37419:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = !tstbit (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37435:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = addasl (R%d, R%d, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37451:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = asr (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37467:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = lsr (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37483:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = asl (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37499:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = lsl (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37513:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = asr (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37527:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = lsr (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37541:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = asl (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37555:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = lsl (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37572:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = lsl (%d, R%d)", hi->ops[0].op.reg, (st32) hi->ops[1].op.imm, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37588:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d -= asr (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37604:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d -= lsr (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37620:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d -= asl (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37636:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d -= lsl (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37652:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d += asr (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37668:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d += lsr (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37684:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d += asl (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37700:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d += lsl (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37714:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d -= asr (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37728:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d -= lsr (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37742:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d -= asl (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37756:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d -= lsl (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37770:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d += asr (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37784:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d += lsr (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37798:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d += asl (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37812:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d += lsl (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37828:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d |= asr (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37844:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d |= lsr (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37860:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d |= asl (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37876:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d |= lsl (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37892:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d &= asr (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37908:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d &= lsr (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37924:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d &= asl (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37940:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d &= lsl (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37956:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d ^= asr (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37972:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d ^= lsr (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:37988:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d ^= asl (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38004:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d ^= lsl (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38018:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d |= asr (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38032:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d |= lsr (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38046:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d |= asl (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38060:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d |= lsl (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38074:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d &= asr (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38088:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d &= lsr (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38102:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d &= asl (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38116:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d &= lsl (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38131:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = asr (R%d, R%d) :sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38146:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = asl (R%d, R%d) :sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38162:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vasrh (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38178:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vlsrh (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38194:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vaslh (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38210:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vlslh (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38226:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vasrw (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38242:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vlsrw (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38258:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vaslw (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38274:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vlslw (R%d:R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38289:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = vasrw (R%d:R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38312:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = add (R%d, add (R%d, %d))", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, (st32) hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38332:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = add (R%d, sub (%d, R%d))", hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38349:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = add (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38367:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = add (R%d:R%d, R%d:R%d) :sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38386:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = add (R%d:R%d, R%d:R%d) :raw:lo", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38405:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = add (R%d:R%d, R%d:R%d) :raw:hi", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38421:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = add (R%d, R%d) :sat:deprecated", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38435:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = add (R%d.L, R%d.L)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38449:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = add (R%d.L, R%d.H)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38464:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = add (R%d.L, R%d.L) :sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38479:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = add (R%d.L, R%d.H) :sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38495:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = add (R%d.L, R%d.L) :<<16", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38511:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = add (R%d.L, R%d.H) :<<16", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38527:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = add (R%d.H, R%d.L) :<<16", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38543:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = add (R%d.H, R%d.H) :<<16", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38560:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = add (R%d.L, R%d.L) :sat:<<16", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38577:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = add (R%d.L, R%d.H) :sat:<<16", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38594:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = add (R%d.H, R%d.L) :sat:<<16", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38611:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = add (R%d.H, R%d.H) :sat:<<16", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38628:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = and (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38645:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = and (R%d:R%d, ~R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38662:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = or (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38679:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = or (R%d:R%d, ~R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38696:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = xor (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38713:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d |= and (R%d, %d)", hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38730:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = or (R%d, and (Rx, %d))", hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38747:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d |= or (R%d, %d)", hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38761:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = max (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38775:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = maxu (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38792:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = max (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38809:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = maxu (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38823:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = min (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38837:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = minu (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38854:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = min (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38871:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = minu (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38885:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = modwrap (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38902:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = sub (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38918:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = sub (R%d, R%d) :sat:deprecated", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38932:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = sub (R%d.L, R%d.L)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38946:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = sub (R%d.L, R%d.H)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38961:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = sub (R%d.L, R%d.L) :sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38976:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = sub (R%d.L, R%d.H) :sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:38992:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = sub (R%d.L, R%d.L) :<<16", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39008:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = sub (R%d.L, R%d.H) :<<16", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39024:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = sub (R%d.H, R%d.L) :<<16", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39040:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = sub (R%d.H, R%d.H) :<<16", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39057:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = sub (R%d.L, R%d.L) :sat:<<16", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39074:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = sub (R%d.L, R%d.H) :sat:<<16", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39091:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = sub (R%d.H, R%d.L) :sat:<<16", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39108:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = sub (R%d.H, R%d.H) :sat:<<16", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39125:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vaddh (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39143:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vaddh (R%d:R%d, R%d:R%d) :sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39161:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vadduh (R%d:R%d, R%d:R%d) :sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39178:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vaddub (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39196:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vaddub (R%d:R%d, R%d:R%d) :sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39213:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vaddw (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39231:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vaddw (R%d:R%d, R%d:R%d) :sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39248:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vavgh (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39266:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vavgh (R%d:R%d, R%d:R%d) :rnd", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39284:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vavgh (R%d:R%d, R%d:R%d) :crnd", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39301:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vavguh (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39319:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vavguh (R%d:R%d, R%d:R%d) :rnd", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39336:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vnavgh (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39355:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vnavgh (R%d:R%d, R%d:R%d) :rnd:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39374:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vnavgh (R%d:R%d, R%d:R%d) :crnd:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39391:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vavgub (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39409:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vavgub (R%d:R%d, R%d:R%d) :rnd", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39426:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vavgw (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39444:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vavgw (R%d:R%d, R%d:R%d) :rnd", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39462:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vavgw (R%d:R%d, R%d:R%d) :crnd", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39479:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vavguw (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39497:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vavguw (R%d:R%d, R%d:R%d) :rnd", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39514:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vnavgw (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39533:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vnavgw (R%d:R%d, R%d:R%d) :rnd:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39552:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vnavgw (R%d:R%d, R%d:R%d) :crnd:sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39569:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vmaxub (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39586:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vmaxb (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39603:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vmaxh (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39620:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vmaxuh (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39637:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vmaxuw (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39654:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vmaxw (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39671:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vminub (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39688:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vminb (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39705:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vminh (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39722:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vminuh (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39739:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vminw (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39756:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vminuw (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39773:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vsubh (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39791:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vsubh (R%d:R%d, R%d:R%d) :sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39809:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vsubuh (R%d:R%d, R%d:R%d) :sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39826:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vsubub (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39844:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vsubub (R%d:R%d, R%d:R%d) :sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39861:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vsubw (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39879:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vsubw (R%d:R%d, R%d:R%d) :sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39895:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = parity (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39909:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = parity (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39924:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = bitsplit (R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39939:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = dfclass (R%d:R%d, 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39955:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = cmp.eq (R%d:R%d, R%d:R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39971:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = cmp.gt (R%d:R%d, R%d:R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:39987:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = cmp.ge (R%d:R%d, R%d:R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40003:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = cmp.uo (R%d:R%d, R%d:R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40016:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = sfmake (0x%x) :pos", hi->ops[0].op.reg, hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40029:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = sfmake (0x%x) :neg", hi->ops[0].op.reg, hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40043:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = dfmake (0x%x) :pos", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40057:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = dfmake (0x%x) :neg", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40073:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = add (0x%x, mpyi (R%d, R%d))", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.reg, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40089:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = add (0x%x, mpyi (R%d, 0x%x))", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.reg, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40105:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = add (R%d, mpyi (0x%x, R%d))", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40121:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = add (R%d, mpyi (R%d, 0x%x))", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40139:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = boundscheck (R%d:R%d, R%d:R%d) :raw:lo", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40157:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = boundscheck (R%d:R%d, R%d:R%d) :raw:hi", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40172:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = cmpb.eq (R%d, 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40190:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = cmpb.gt (R%d, %d)", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40205:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = cmpb.gtu (R%d, 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40223:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = cmph.eq (R%d, %d)", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40241:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = cmph.gt (R%d, %d)", hi->ops[0].op.pred, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40256:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = cmph.gtu (R%d, 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40272:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = cmp.eq (R%d:R%d, R%d:R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40288:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = cmp.gt (R%d:R%d, R%d:R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40304:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = cmp.gtu (R%d:R%d, R%d:R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40319:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = tlbmatch (R%d:R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40335:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = vcmph.eq (R%d:R%d, R%d:R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40351:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = vcmph.gt (R%d:R%d, R%d:R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40367:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = vcmph.gtu (R%d:R%d, R%d:R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40385:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = vcmph.eq (R%d:R%d, %d)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40403:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = vcmph.gt (R%d:R%d, %d)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40418:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = vcmph.gtu (R%d:R%d, 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40434:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = any8 (vcmpb.eq (R%d:R%d, R%d:R%d))", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40450:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = vcmpb.eq (R%d:R%d, R%d:R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40466:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = vcmpb.gtu (R%d:R%d, R%d:R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40482:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = vcmpb.gt (R%d:R%d, R%d:R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40497:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = vcmpb.eq (R%d:R%d, 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40515:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = vcmpb.gt (R%d:R%d, %d)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40530:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = vcmpb.gtu (R%d:R%d, 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40546:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = vcmpw.eq (R%d:R%d, R%d:R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40562:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = vcmpw.gt (R%d:R%d, R%d:R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40578:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = vcmpw.gtu (R%d:R%d, R%d:R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40596:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = vcmpw.eq (R%d:R%d, %d)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40614:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = vcmpw.gt (R%d:R%d, %d)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40629:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = vcmpw.gtu (R%d:R%d, 0x%x)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40648:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vmux (P%d, R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.pred, hi->ops[2].op.reg + 1, hi->ops[2].op.reg, hi->ops[3].op.reg + 1, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40663:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = add (0x%x, asl (Rx, 0x%x))", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40678:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = sub (0x%x, asl (Rx, 0x%x))", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40693:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = add (0x%x, lsr (Rx, 0x%x))", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40708:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = sub (0x%x, lsr (Rx, 0x%x))", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40723:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = and (0x%x, asl (Rx, 0x%x))", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40738:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = or (0x%x, asl (Rx, 0x%x))", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40753:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = and (0x%x, lsr (Rx, 0x%x))", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40768:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = or (0x%x, lsr (Rx, 0x%x))", hi->ops[0].op.reg, hi->ops[1].op.imm, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40789:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d += add (R%d, %d)", hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40807:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d -= add (R%d, %d)", hi->ops[0].op.reg, hi->ops[1].op.reg, (st32) hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40821:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d += add (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40835:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d -= add (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40849:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d |= and (R%d, ~R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40863:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d &= and (R%d, ~R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40877:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d ^= and (R%d, ~R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40891:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d &= and (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40905:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d &= or (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40919:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d &= xor (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40933:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d |= and (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40947:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d ^= xor (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40961:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d |= or (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40975:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d |= xor (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:40989:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d ^= and (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41003:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d ^= or (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41017:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d += sub (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41034:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vabsdiffub (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41051:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vabsdiffb (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41068:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vabsdiffh (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41085:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vabsdiffw (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41104:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d, P%d = vacsh (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.pred, hi->ops[2].op.reg + 1, hi->ops[2].op.reg, hi->ops[3].op.reg + 1, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41121:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vraddub (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41138:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d += vraddub (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41154:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = vradduh (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41170:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = vraddh (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41189:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d, P%d = vminub (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.pred, hi->ops[2].op.reg + 1, hi->ops[2].op.reg, hi->ops[3].op.reg + 1, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41206:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vrsadub (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41223:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d += vrsadub (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41352:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = cmpyi (R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41367:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = cmpyr (R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41382:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d += cmpyi (R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41397:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d += cmpyr (R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41495:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d += vcmpyr (R%d:R%d, R%d:R%d) :sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41513:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d += vcmpyi (R%d:R%d, R%d:R%d) :sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41530:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vrcmpyi (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41547:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vrcmpyr (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41564:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vrcmpyi (R%d:R%d, R%d:R%d *)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41581:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vrcmpyr (R%d:R%d, R%d:R%d *)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41598:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d += vrcmpyi (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41615:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d += vrcmpyr (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41632:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d += vrcmpyi (R%d:R%d, R%d:R%d *)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41649:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d += vrcmpyr (R%d:R%d, R%d:R%d *)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41670:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vrcmpys (R%d:R%d, R%d:R%d) :<<1:sat:raw:hi", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41691:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vrcmpys (R%d:R%d, R%d:R%d) :<<1:sat:raw:lo", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41712:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d += vrcmpys (R%d:R%d, R%d:R%d) :<<1:sat:raw:hi", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41733:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d += vrcmpys (R%d:R%d, R%d:R%d) :<<1:sat:raw:lo", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41754:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = vrcmpys (R%d:R%d, R%d:R%d) :<<1:rnd:sat:raw:hi", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41775:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = vrcmpys (R%d:R%d, R%d:R%d) :<<1:rnd:sat:raw:lo", hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41789:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = sfadd (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41803:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = sffixupn (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41817:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = sffixupd (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41831:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d += sfmpy (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41845:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d -= sfmpy (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41862:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d += sfmpy (R%d, R%d, P%d) :scale", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.pred);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41876:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d += sfmpy (R%d, R%d) :lib", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41890:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d -= sfmpy (R%d, R%d) :lib", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41904:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = sfmax (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41918:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = sfmin (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41932:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = sfmpy (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41948:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d, P%d = sfrecipa (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.pred, hi->ops[2].op.reg, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41962:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = sfsub (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41976:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = add (R%d, mpyi (Ry, R%d))", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:41990:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = + mpyi (R%d, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42004:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = - mpyi (R%d, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42018:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d += mpyi (R%d, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42032:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d -= mpyi (R%d, 0x%x)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.imm);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42046:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = mpyi (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:42060:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d += mpyi (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43699:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = pmpyw (R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43714:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d ^= pmpyw (R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43809:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = mpy (R%d, R%d) :rnd", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43823:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = mpyu (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43837:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = mpysu (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43853:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = mpy (R%d, R%d.H) :<<1:sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43869:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = mpy (R%d, R%d.L) :<<1:sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43886:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = mpy (R%d, R%d.H) :<<1:rnd:sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43902:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = mpy (R%d, R%d) :<<1:sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43919:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = mpy (R%d, R%d.L) :<<1:rnd:sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43952:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d += mpy (R%d, R%d) :<<1:sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43968:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d -= mpy (R%d, R%d) :<<1:sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43983:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = mpy (R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:43998:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = mpyu (R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44013:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d += mpy (R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44028:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d -= mpy (R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44043:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d += mpyu (R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44058:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d -= mpyu (R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44138:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vrmpybu (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44155:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vrmpybsu (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44172:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d += vrmpybu (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44189:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d += vrmpybsu (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44207:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vdmpybsu (R%d:R%d, R%d:R%d) :sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44225:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d += vdmpybsu (R%d:R%d, R%d:R%d) :sat", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44263:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d += vmpyeh (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44318:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d += vmpyh (R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44411:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vrmpyh (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44428:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d += vrmpyh (R%d:R%d, R%d:R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg + 1, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44443:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vmpybsu (R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44458:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vmpybu (R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44473:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d += vmpybu (R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44488:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d += vmpybsu (R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44503:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = vpmpyh (R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44518:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d ^= vpmpyh (R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44535:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = add (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44550:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = add (R%d, R%d) :sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44564:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = and (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44578:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = or (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44592:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = xor (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44606:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = and (R%d, ~R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44620:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = or (R%d, ~R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44634:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = sub (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44649:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = sub (R%d, R%d) :sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44663:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = vaddh (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44678:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = vaddh (R%d, R%d) :sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44693:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = vadduh (R%d, R%d) :sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44707:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = vavgh (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44722:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = vavgh (R%d, R%d) :rnd", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44736:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = vnavgh (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44750:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = vsubh (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44765:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = vsubh (R%d, R%d) :sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44780:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = vsubuh (R%d, R%d) :sat", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44794:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = combine (R%d.H, R%d.H)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44808:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = combine (R%d.H, R%d.L)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44822:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = combine (R%d.L, R%d.H)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44836:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = combine (R%d.L, R%d.L)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44851:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = combine (R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44867:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = mux (P%d, R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.pred, hi->ops[2].op.reg, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44882:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d:R%d = packhl (R%d, R%d)", hi->ops[0].op.reg + 1, hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44898:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) R%d = add (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44914:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d = add (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44930:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d = add (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44946:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d = add (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44963:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) R%d:R%d = combine (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44980:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d:R%d = combine (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:44997:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d:R%d = combine (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:45014:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d:R%d = combine (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg + 1, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:45030:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) R%d = and (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:45046:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d = and (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:45062:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d = and (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:45078:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d = and (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:45094:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) R%d = or (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:45110:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d = or (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:45126:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d = or (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:45142:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d = or (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:45158:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) R%d = xor (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:45174:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d = xor (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:45190:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d = xor (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:45206:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d = xor (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:45222:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d) R%d = sub (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:45238:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d R%d = sub (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:45254:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if (P%d.new) R%d = sub (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:45270:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "if !P%d.new R%d = sub (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg, hi->ops[3].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:45284:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = cmp.eq (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:45298:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = !cmp.eq (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:45312:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = cmp.gt (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:45326:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = !cmp.gt (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:45340:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = cmp.gtu (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:45354:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "P%d = !cmp.gtu (R%d, R%d)", hi->ops[0].op.pred, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:45368:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = cmp.eq (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/hexagon_disas.c:45382:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(hi->mnem, "R%d = !cmp.eq (R%d, R%d)", hi->ops[0].op.reg, hi->ops[1].op.reg, hi->ops[2].op.reg);
data/radare2-4.3.1+dfsg/libr/asm/arch/i4004/i4004dis.c:13:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static const char *i4004_e[16] = {
data/radare2-4.3.1+dfsg/libr/asm/arch/i4004/i4004dis.c:32:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static const char *i4004_f[16] = {
data/radare2-4.3.1+dfsg/libr/asm/arch/i8080/i8080dis.c:117:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
      sprintf(s, "%02X", val & 0xff);
data/radare2-4.3.1+dfsg/libr/asm/arch/i8080/i8080dis.c:119:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
      sprintf(s, "%04X", val);
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:41:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	e_ident[16];		/* ELF "magic number" */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:42:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	e_type[2];		/* Identifies object file type */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:43:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	e_machine[2];		/* Specifies required architecture */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:44:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	e_version[4];		/* Identifies object file version */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:45:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	e_entry[4];		/* Entry point virtual address */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:46:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	e_phoff[4];		/* Program header table file offset */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:47:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	e_shoff[4];		/* Section header table file offset */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:48:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	e_flags[4];		/* Processor-specific flags */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:49:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	e_ehsize[2];		/* ELF header size in bytes */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:50:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	e_phentsize[2];		/* Program header table entry size */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:51:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	e_phnum[2];		/* Program header table entry count */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:52:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	e_shentsize[2];		/* Section header table entry size */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:53:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	e_shnum[2];		/* Section header table entry count */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:54:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	e_shstrndx[2];		/* Section header string table index */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:58:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	e_ident[16];		/* ELF "magic number" */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:59:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	e_type[2];		/* Identifies object file type */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:60:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	e_machine[2];		/* Specifies required architecture */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:61:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	e_version[4];		/* Identifies object file version */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:62:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	e_entry[8];		/* Entry point virtual address */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:63:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	e_phoff[8];		/* Program header table file offset */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:64:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	e_shoff[8];		/* Section header table file offset */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:65:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	e_flags[4];		/* Processor-specific flags */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:66:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	e_ehsize[2];		/* ELF header size in bytes */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:67:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	e_phentsize[2];		/* Program header table entry size */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:68:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	e_phnum[2];		/* Program header table entry count */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:69:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	e_shentsize[2];		/* Section header table entry size */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:70:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	e_shnum[2];		/* Section header table entry count */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:71:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	e_shstrndx[2];		/* Section header string table index */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:77:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	p_type[4];		/* Identifies program segment type */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:78:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	p_offset[4];		/* Segment file offset */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:79:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	p_vaddr[4];		/* Segment virtual address */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:80:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	p_paddr[4];		/* Segment physical address */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:81:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	p_filesz[4];		/* Segment size in file */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:82:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	p_memsz[4];		/* Segment size in memory */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:83:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	p_flags[4];		/* Segment flags */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:84:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	p_align[4];		/* Segment alignment, file & memory */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:88:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	p_type[4];		/* Identifies program segment type */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:89:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	p_flags[4];		/* Segment flags */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:90:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	p_offset[8];		/* Segment file offset */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:91:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	p_vaddr[8];		/* Segment virtual address */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:92:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	p_paddr[8];		/* Segment physical address */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:93:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	p_filesz[8];		/* Segment size in file */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:94:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	p_memsz[8];		/* Segment size in memory */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:95:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	p_align[8];		/* Segment alignment, file & memory */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:101:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	sh_name[4];		/* Section name, index in string tbl */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:102:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	sh_type[4];		/* Type of section */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:103:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	sh_flags[4];		/* Miscellaneous section attributes */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:104:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	sh_addr[4];		/* Section virtual addr at execution */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:105:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	sh_offset[4];		/* Section file offset */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:106:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	sh_size[4];		/* Size of section in bytes */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:107:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	sh_link[4];		/* Index of another section */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:108:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	sh_info[4];		/* Additional section information */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:109:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	sh_addralign[4];	/* Section alignment */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:110:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	sh_entsize[4];		/* Entry size if section holds table */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:114:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	sh_name[4];		/* Section name, index in string tbl */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:115:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	sh_type[4];		/* Type of section */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:116:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	sh_flags[8];		/* Miscellaneous section attributes */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:117:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	sh_addr[8];		/* Section virtual addr at execution */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:118:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	sh_offset[8];		/* Section file offset */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:119:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	sh_size[8];		/* Size of section in bytes */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:120:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	sh_link[4];		/* Index of another section */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:121:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	sh_info[4];		/* Additional section information */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:122:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	sh_addralign[8];	/* Section alignment */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:123:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	sh_entsize[8];		/* Entry size if section holds table */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:129:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	st_name[4];		/* Symbol name, index in string tbl */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:130:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	st_value[4];		/* Value of the symbol */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:131:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	st_size[4];		/* Associated symbol size */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:132:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	st_info[1];		/* Type and binding attributes */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:133:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	st_other[1];		/* No defined meaning, 0 */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:134:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	st_shndx[2];		/* Associated section index */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:138:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	st_name[4];		/* Symbol name, index in string tbl */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:139:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	st_info[1];		/* Type and binding attributes */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:140:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	st_other[1];		/* No defined meaning, 0 */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:141:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	st_shndx[2];		/* Associated section index */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:142:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	st_value[8];		/* Value of the symbol */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:143:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	st_size[8];		/* Associated symbol size */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:147:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char est_shndx[4];		/* Section index */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:153:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	namesz[4];		/* Size of entry's owner string */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:154:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	descsz[4];		/* Size of the note descriptor */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:155:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	type[4];		/* Interpretation of the descriptor */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:156:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char		name[1];		/* Start of the name+desc data */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:161:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char r_offset[4];	/* Location at which to apply the action */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:162:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	r_info[4];	/* index and type of relocation */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:166:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char r_offset[4];	/* Location at which to apply the action */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:167:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	r_info[4];	/* index and type of relocation */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:168:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	r_addend[4];	/* Constant addend used to compute value */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:172:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char r_offset[8];	/* Location at which to apply the action */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:173:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	r_info[8];	/* index and type of relocation */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:177:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char r_offset[8];	/* Location at which to apply the action */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:178:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	r_info[8];	/* index and type of relocation */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:179:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	r_addend[8];	/* Constant addend used to compute value */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:185:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	d_tag[4];		/* entry tag value */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:187:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    unsigned char	d_val[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:188:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    unsigned char	d_ptr[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:193:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	d_tag[8];		/* entry tag value */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:195:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    unsigned char	d_val[8];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:196:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    unsigned char	d_ptr[8];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:207:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char		vd_version[2];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:208:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char		vd_flags[2];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:209:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char		vd_ndx[2];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:210:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char		vd_cnt[2];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:211:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char		vd_hash[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:212:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char		vd_aux[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:213:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char		vd_next[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:219:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char		vda_name[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:220:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char		vda_next[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:226:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char		vn_version[2];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:227:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char		vn_cnt[2];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:228:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char		vn_file[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:229:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char		vn_aux[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:230:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char		vn_next[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:236:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char		vna_hash[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:237:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char		vna_flags[2];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:238:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char		vna_other[2];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:239:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char		vna_name[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:240:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char		vna_next[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:247:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char		vs_vers[2];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:253:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char		si_boundto[2];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:254:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char		si_flags[2];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:261:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char		a_type[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:262:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char		a_val[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:267:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char		a_type[8];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/external.h:268:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char		a_val[8];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/internal.h:45:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char		e_ident[EI_NIDENT]; /* ELF "magic number" */
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h:388:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char l_name[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h:389:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char l_time_stamp[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h:390:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char l_checksum[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h:391:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char l_version[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h:392:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char l_flags[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h:420:18:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
typedef unsigned char Elf32_External_Conflict[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h:423:18:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
typedef unsigned char Elf64_External_Conflict[8];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h:457:16:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      unsigned char gt_current_g_value[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h:458:16:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      unsigned char gt_unused[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h:462:16:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      unsigned char gt_g_value[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h:463:16:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      unsigned char gt_bytes[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h:482:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char ri_gprmask[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h:483:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char ri_cprmask[4][4];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h:484:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char ri_gp_value[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h:746:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char r_offset[8];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h:748:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char r_sym[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h:750:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char r_ssym[1];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h:752:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char r_type3[1];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h:754:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char r_type2[1];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h:756:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char r_type[1];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h:780:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char r_offset[8];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h:782:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char r_sym[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h:784:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char r_ssym[1];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h:786:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char r_type3[1];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h:788:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char r_type2[1];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h:790:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char r_type[1];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h:792:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char r_addend[8];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h:839:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char kind[1];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h:841:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char size[1];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h:843:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char section[2];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h:845:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char info[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h:909:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char ri_gprmask[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h:911:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char ri_pad[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h:913:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char ri_cprmask[4][4];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h:915:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char ri_gp_value[8];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h:934:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char ms_hash_value[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/elf/mips.h:942:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char ms_info[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/libiberty.h:343:23:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
extern const unsigned char _hex_value[_hex_array_size];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/libiberty.h:590:13:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
   (char *) memcpy (libiberty_nptr, libiberty_optr, libiberty_len); }))
data/radare2-4.3.1+dfsg/libr/asm/arch/include/libiberty.h:604:13:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
   (char *) memcpy (libiberty_nptr, libiberty_optr, libiberty_len))
data/radare2-4.3.1+dfsg/libr/asm/arch/include/mybfd.h:115:26:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
#define sprintf_vma(s,x) sprintf (s, "%016lx", x)
data/radare2-4.3.1+dfsg/libr/asm/arch/include/mybfd.h:123:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
  sprintf ((s), "%08lx%08lx", _bfd_int64_high (x), _bfd_int64_low (x))
data/radare2-4.3.1+dfsg/libr/asm/arch/include/mybfd.h:145:26:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
#define sprintf_vma(s,x) sprintf (s, "%08lx", x)
data/radare2-4.3.1+dfsg/libr/asm/arch/include/mybfd.h:958:13:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
    void *(*open) (struct bfd *nbfd,
data/radare2-4.3.1+dfsg/libr/asm/arch/include/opcode/hexagon.h:397:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char string [HEXAGON_MAPPED_LEN];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/opcode/ppc.h:52:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char operands[8];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/safe-ctype.h:110:23:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
extern const unsigned char  _sch_toupper[256];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/safe-ctype.h:111:23:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
extern const unsigned char  _sch_tolower[256];
data/radare2-4.3.1+dfsg/libr/asm/arch/include/wine-arm.h:148:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char  name[100];
data/radare2-4.3.1+dfsg/libr/asm/arch/lanai/gnu/lanai-dis.c:117:15:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      qsort ((char *) lanai_opcodes, NUMOPCODES,
data/radare2-4.3.1+dfsg/libr/asm/arch/lh5801/lh5801.c:864:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char mnembuf[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/lh5801/lh5801.c:865:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char regbuf[8];
data/radare2-4.3.1+dfsg/libr/asm/arch/lh5801/lh5801.h:92:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char mnem[4];		/* Assembler mnemonic */
data/radare2-4.3.1+dfsg/libr/asm/arch/lm32/lm32_isa.h:14:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[RAsmLm32RegNameLength];
data/radare2-4.3.1+dfsg/libr/asm/arch/lm32/lm32_isa.h:45:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[RAsmLm32RegNameLength];
data/radare2-4.3.1+dfsg/libr/asm/arch/lm32/lm32_isa.h:176:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[RAsmLm32OpNameLength];
data/radare2-4.3.1+dfsg/libr/asm/arch/lm32/lm32_isa.h:260:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char dest_reg_str[RAsmLm32RegNameLength];
data/radare2-4.3.1+dfsg/libr/asm/arch/lm32/lm32_isa.h:263:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char src0_reg_str[RAsmLm32RegNameLength];
data/radare2-4.3.1+dfsg/libr/asm/arch/lm32/lm32_isa.h:266:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char src1_reg_str[RAsmLm32RegNameLength];
data/radare2-4.3.1+dfsg/libr/asm/arch/lm32/lm32_isa.h:269:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char csr_reg_str[RAsmLm32RegNameLength];
data/radare2-4.3.1+dfsg/libr/asm/arch/mips/gnu/mips-dis.c:67:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static const char * const mips_gpr_names_numeric[32] =
data/radare2-4.3.1+dfsg/libr/asm/arch/mips/gnu/mips-dis.c:75:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
const char * const mips_gpr_names_oldabi[32] =
data/radare2-4.3.1+dfsg/libr/asm/arch/mips/gnu/mips-dis.c:83:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
const char * const mips_gpr_names_newabi[32] =
data/radare2-4.3.1+dfsg/libr/asm/arch/mips/gnu/mips-dis.c:91:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static const char * const mips_fpr_names_numeric[32] =
data/radare2-4.3.1+dfsg/libr/asm/arch/mips/gnu/mips-dis.c:99:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static const char * const mips_fpr_names_32[32] =
data/radare2-4.3.1+dfsg/libr/asm/arch/mips/gnu/mips-dis.c:107:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static const char * const mips_fpr_names_n32[32] =
data/radare2-4.3.1+dfsg/libr/asm/arch/mips/gnu/mips-dis.c:115:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static const char * const mips_fpr_names_64[32] =
data/radare2-4.3.1+dfsg/libr/asm/arch/mips/gnu/mips-dis.c:123:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static const char * const mips_cp0_names_numeric[32] =
data/radare2-4.3.1+dfsg/libr/asm/arch/mips/gnu/mips-dis.c:131:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static const char * const mips_cp0_names_mips3264[32] =
data/radare2-4.3.1+dfsg/libr/asm/arch/mips/gnu/mips-dis.c:176:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static const char * const mips_cp0_names_mips3264r2[32] =
data/radare2-4.3.1+dfsg/libr/asm/arch/mips/gnu/mips-dis.c:265:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static const char * const mips_cp0_names_sb1[32] =
data/radare2-4.3.1+dfsg/libr/asm/arch/mips/gnu/mips-dis.c:302:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static const char * const mips_hwr_names_numeric[32] =
data/radare2-4.3.1+dfsg/libr/asm/arch/mips/gnu/mips-dis.c:310:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static const char * const mips_hwr_names_mips3264r2[32] =
data/radare2-4.3.1+dfsg/libr/asm/arch/mips/mipsasm.c:6:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static const char *const regs[33] = {
data/radare2-4.3.1+dfsg/libr/asm/arch/mips/mipsasm.c:150:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w0[32], w1[32], w2[32], w3[32];
data/radare2-4.3.1+dfsg/libr/asm/arch/mips/mipsasm.c:158:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char opstr[32];
data/radare2-4.3.1+dfsg/libr/asm/arch/mips/mipsasm.c:181:6:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
					char tmp[32];
data/radare2-4.3.1+dfsg/libr/asm/arch/msp430/msp430_disas.c:205:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char dstbuf[16];
data/radare2-4.3.1+dfsg/libr/asm/arch/msp430/msp430_disas.h:85:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char	instr[7 + 1];
data/radare2-4.3.1+dfsg/libr/asm/arch/msp430/msp430_disas.h:90:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char	operands[2 * (2 + 4 + 2 + 3) + 2 + 1];
data/radare2-4.3.1+dfsg/libr/asm/arch/pic/pic_baseline.c:197:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (opbuf, "invalid"); \
data/radare2-4.3.1+dfsg/libr/asm/arch/pic/pic_midrange.c:158:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char fsr_op[6];
data/radare2-4.3.1+dfsg/libr/asm/arch/pic/pic_midrange.c:163:3:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
		strcpy (opbuf, "invalid"); \
data/radare2-4.3.1+dfsg/libr/asm/arch/pic/pic_pic18.c:115:3:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
		strcpy (opbuf, "invalid");
data/radare2-4.3.1+dfsg/libr/asm/arch/ppc/gnu/ppc-dis.c:364:18:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				static const char *cbnames[4] = {"lt", "gt", "eq", "so"};
data/radare2-4.3.1+dfsg/libr/asm/arch/ppc/libps/libps_internal.h:121:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    unsigned char operands[6];
data/radare2-4.3.1+dfsg/libr/asm/arch/propeller/propeller_disas.h:116:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char	prefix[16];
data/radare2-4.3.1+dfsg/libr/asm/arch/propeller/propeller_disas.h:117:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char	instr[PROP_INSTR_MAXLEN];
data/radare2-4.3.1+dfsg/libr/asm/arch/propeller/propeller_disas.h:118:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char	operands[PROP_INSTR_MAXLEN];
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv-opc.c:28:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static const char * const riscv_gpr_names_numeric[NGPR] =
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv-opc.c:36:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static const char * const riscv_gpr_names_abi[NGPR] = {
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv-opc.c:43:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static const char * const riscv_fpr_names_numeric[NFPR] =
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv-opc.c:51:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static const char * const riscv_fpr_names_abi[NFPR] = {
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:61:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf (buf+strlen (buf), "%d", rd);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:64:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf (buf+strlen (buf), "%d", rs1);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:67:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf (buf+strlen (buf), "%d", (int) EXTRACT_OPERAND (RS2, l));
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:70:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf (buf+strlen (buf), "%d", (int) EXTRACT_OPERAND (CUSTOM_IMM, l));
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:98:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf (buf+strlen (buf), "%d", (int)EXTRACT_RVC_SIMM3 (l));
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:101:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf (buf+strlen (buf), "%d", (int)EXTRACT_RVC_IMM (l));
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:104:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf (buf+strlen (buf), "%d", (int)EXTRACT_RVC_LW_IMM (l));
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:107:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf (buf+strlen (buf), "%d", (int)EXTRACT_RVC_LD_IMM (l));
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:110:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf (buf+strlen (buf), "%d", (int)EXTRACT_RVC_LWSP_IMM (l));
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:113:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf (buf+strlen (buf), "%d", (int)EXTRACT_RVC_LDSP_IMM (l));
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:116:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf (buf+strlen (buf), "%d", (int)EXTRACT_RVC_ADDI4SPN_IMM (l));
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:119:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf (buf+strlen (buf), "%d", (int)EXTRACT_RVC_ADDI16SP_IMM (l));
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:122:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf (buf+strlen (buf), "%d", (int)EXTRACT_RVC_SWSP_IMM (l));
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:125:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf (buf+strlen (buf), "%d", (int)EXTRACT_RVC_SDSP_IMM (l));
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:136:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf (buf+strlen (buf), "0x%x",
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:140:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf (buf+strlen (buf), "0x%x", (int) EXTRACT_RVC_IMM (l) & 0x3f);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:143:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf (buf+strlen (buf), "0x%x", (int) EXTRACT_RVC_IMM (l) & 0x1f);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:157:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf (buf+strlen (buf), "%c ", *d);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:163:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf (buf+strlen (buf), "%c", *d);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:183:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf (buf+strlen (buf), "0x%x",
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:203:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf (buf+strlen (buf), "%d", (int) EXTRACT_ITYPE_IMM (l));
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:206:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf (buf+strlen (buf), "%d", (int) EXTRACT_STYPE_IMM (l));
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:223:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf (buf+strlen (buf), "0x%x", (int) EXTRACT_OPERAND (SHAMT, l));
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:226:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf (buf+strlen (buf), "0x%x", (int) EXTRACT_OPERAND (SHAMTW, l));
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:254:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf (buf+strlen (buf), "0x%x", csr);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:259:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf (buf+strlen (buf), "%d", rs1);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:263:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf (buf+strlen (buf), "# internal error, undefined modifier (%c)",
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:301:39:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		if (isdigit ((ut8)op->subset[0]) && atoi (op->subset) != xlen ) {
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.h:44:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static const char * const riscv_rm[8] =
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.h:49:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static const char * const riscv_pred_succ[16] =
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.h:338:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
extern const char * const riscv_gpr_names_numeric[NGPR];
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.h:339:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
extern const char * const riscv_gpr_names_abi[NGPR];
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.h:340:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
extern const char * const riscv_fpr_names_numeric[NFPR];
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.h:341:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
extern const char * const riscv_fpr_names_abi[NFPR];
data/radare2-4.3.1+dfsg/libr/asm/arch/sh/gnu/sh-dis.c:36:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char insn[2];
data/radare2-4.3.1+dfsg/libr/asm/arch/sh/gnu/sh-dis.c:37:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char nibs[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/sparc/gnu/sparc-dis.c:507:15:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      qsort ((char *) sorted_opcodes, sparc_num_opcodes,
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/c55plus_decode.c:227:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char token_aux[80];
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/c55plus_decode.c:276:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy(token_aux, pos, len);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/c55plus_decode.c:531:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buff_aux[512];
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/c55plus_decode.c:578:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		sprintf(buff_aux, "#0x%x", (ins_bits << (32 - ins_token_len) >> (32 - ins_token_len)));
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/c55plus_decode.c:597:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf(buff_aux, "#0x%lx", (long unsigned int)ins_bits);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/c55plus_decode.c:599:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf(buff_aux, "-#0x%lx", (long unsigned int)ins_bits);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/c55plus_decode.c:630:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf(buff_aux, "#0x%06lx", (long unsigned int)ins_bits);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:65:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		sprintf(res, "*ar-%ld", (long int)ins_bits & 0xF);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:68:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		sprintf(res, "*ar+%ld", (long int)ins_bits & 0xF);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:71:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		sprintf(res, "*ar%ld(t0)", (long int)ins_bits & 0xF);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:74:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		sprintf(res, "*ar%ld", (long int)ins_bits & 0xF);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:77:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		sprintf(res, "*(ar%ld-t0)", (long int)ins_bits & 0xF);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:80:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		sprintf(res, "*(ar%ld-t1)", (long int)ins_bits & 0xF);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:83:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		sprintf(res, "*(ar%ld+t0)", (long int)ins_bits & 0xF);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:86:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		sprintf(res, "*(ar%ld+t1)", (long int)ins_bits & 0xF);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:109:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf (res, "*ar%ld(short(#0x%lx))",
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:112:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf(res, "*ar%ld", (long int)reg_num);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:117:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf(res, "@#0x%lx", (long int)idx * (reg_num | 16 * (op & 7)));
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:119:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf(res, "*sp(#0x%lx)", (long int)idx * (reg_num | 16 * (op & 7)));
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:124:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf(res, "*ar%ld-", (long int)reg_num);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:127:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf(res, "*ar%ld+", (long int)reg_num);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:130:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf(res, "*ar%ld(t0)", (long int)reg_num);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:133:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf(res, "*ar%ld(t1)", (long int)reg_num);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:136:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf(res, "*(ar%ld-t0)", (long int)reg_num);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:139:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf(res, "*(ar%ld-t1)", (long int)reg_num);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:142:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf(res, "*(ar%ld+t0)", (long int)reg_num);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:145:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf(res, "*(ar%ld+t1)", (long int)reg_num);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:148:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf(res, "*-ar%ld", (long int)reg_num);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:151:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf(res, "*+ar%ld", (long int)reg_num);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:154:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf(res, "*ar%ld(t2)", (long int)reg_num);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:157:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf(res, "*ar%ld(t3)", (long int)reg_num);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:160:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf(res, "*(ar%ld-t2)", (long int)reg_num);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:163:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf(res, "*(ar%ld-t3)", (long int)reg_num);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:166:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf(res, "*(ar%ld+t2)", (long int)reg_num);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:169:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf(res, "*(ar%ld+t3)", (long int)reg_num);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:172:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf(res, "*(ar%ld-t0b)", (long int)reg_num);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:175:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf(res, "*(ar%ld+t0b)", (long int)reg_num);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:178:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf(res, "*ar%ld(t0<<#1)", (long int)reg_num);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:181:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf(res, "*ar%ld(t1<<#1)", (long int)reg_num);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:184:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf(res, "*ar%ld(xar15)", (long int)reg_num);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:197:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(res, "*ar%ld(#%ld)", (long int)reg_num, (long int)op * idx);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:200:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(res, "*+ar%ld(#%ld)", (long int)reg_num, (long int)op * idx);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:203:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(res, "*abs16(#0x%lx)", (long int)idx);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:206:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(res, "*port(#0x%lx)",  (long int)idx);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:219:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(res, "*ar%ld(#0x%lx)", (long int)reg_num, (long int)idx * op);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:222:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(res, "*+ar%ld(#0x%lx)", (long int)reg_num, (long int)idx * op);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:225:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf(res, "*(#0x%lx)", (long int)idx);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/decode_funcs.c:1088:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		sprintf (aux, "@#0x%x", code);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/utils.c:20:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (res, s1, len_s1);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/utils.c:23:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (res + len_s1, s2, len_s2);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/utils.c:38:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char aux[3];
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/tms320_dasm.c:296:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char data[64];
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/tms320_dasm.c:338:15:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	static const char * table[16] = {
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/tms320_dasm.c:348:15:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	static const char * table[16] = {
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/tms320_dasm.c:394:16:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		static const char * op[6] = { "==", "!=", "<", "<=", ">", ">=" };
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/tms320_dasm.c:401:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		sprintf(str, "overflow(ac%d)", key & 3);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/tms320_dasm.c:407:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		sprintf(str, "!overflow(ac%d)", key & 3);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/tms320_dasm.c:440:15:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	static const char * table[2] = {
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/tms320_dasm.c:449:15:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	static const char * table[2] = {
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/tms320_dasm.c:458:15:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	static const char * table[4] = {
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/tms320_dasm.c:471:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		sprintf(str, "*sp(#%Xh)", key >> 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/tms320_dasm.c:473:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		sprintf(str, "@0x%02X", key >> 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/tms320_dasm.c:743:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char tmp[64];
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/tms320_dasm.c:759:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char tmp[64];
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/tms320_dasm.c:937:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char str[64], tmp[64];
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/tms320_dasm.c:1085:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy(dasm->syntax, "invalid");
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/tms320_dasm.c:1134:3:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
		strcpy (dasm->syntax, "invalid"), dasm->length = 1;
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/tms320_dasm.h:124:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char			syntax[1024];
data/radare2-4.3.1+dfsg/libr/asm/arch/v810/v810_disas.h:140:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char instr[V810_INSTR_MAXLEN];
data/radare2-4.3.1+dfsg/libr/asm/arch/v810/v810_disas.h:141:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char operands[V810_INSTR_MAXLEN];
data/radare2-4.3.1+dfsg/libr/asm/arch/v850/v850_disas.h:172:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char	instr[V850_INSTR_MAXLEN];
data/radare2-4.3.1+dfsg/libr/asm/arch/v850/v850_disas.h:173:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char	operands[V850_INSTR_MAXLEN];
data/radare2-4.3.1+dfsg/libr/asm/arch/wasm/wasm.c:259:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char tmp[256];
data/radare2-4.3.1+dfsg/libr/asm/arch/xap/dis.c:42:2:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
	sprintf (d->d_asm, "DC 0x%4x", i2u16(&d->d_inst));
data/radare2-4.3.1+dfsg/libr/asm/arch/xap/dis.c:53:3:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
		strcpy(d->d_asm, "nop");
data/radare2-4.3.1+dfsg/libr/asm/arch/xap/dis.c:55:17:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	case INST_BRK: strcpy(d->d_asm, "brk"); break;
data/radare2-4.3.1+dfsg/libr/asm/arch/xap/dis.c:56:19:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	case INST_SLEEP: strcpy(d->d_asm, "sleep"); break;
data/radare2-4.3.1+dfsg/libr/asm/arch/xap/dis.c:57:17:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	case INST_SIF: strcpy(d->d_asm, "sif"); break;
data/radare2-4.3.1+dfsg/libr/asm/arch/xap/dis.c:58:16:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	case INST_BC: strcpy(d->d_asm, "bc"); break;
data/radare2-4.3.1+dfsg/libr/asm/arch/xap/dis.c:59:18:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	case INST_BRXL: strcpy(d->d_asm, "brxl"); break;
data/radare2-4.3.1+dfsg/libr/asm/arch/xap/dis.c:61:17:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	case INST_RTS: strcpy(d->d_asm, "rts"); break;
data/radare2-4.3.1+dfsg/libr/asm/arch/xap/dis.c:98:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char fmt[16];
data/radare2-4.3.1+dfsg/libr/asm/arch/xap/dis.c:99:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char tmp[128];
data/radare2-4.3.1+dfsg/libr/asm/arch/xap/dis.c:375:5:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
				strcat (d->d_asm, ", ");
data/radare2-4.3.1+dfsg/libr/asm/arch/xap/dis.c:439:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
			strcpy(s->s_nopd->d_asm, "nop");
data/radare2-4.3.1+dfsg/libr/asm/arch/xap/dis.c:492:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char fname[128];
data/radare2-4.3.1+dfsg/libr/asm/arch/xap/dis.c:510:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
			strcpy(last->d_asm, "DC\t0x8000");
data/radare2-4.3.1+dfsg/libr/asm/arch/xap/dis.c:512:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf(d->d_asm, "DC\t0x%.4x", i2u16(&d->d_inst));
data/radare2-4.3.1+dfsg/libr/asm/arch/xap/dis.h:27:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char			d_asm[128];
data/radare2-4.3.1+dfsg/libr/asm/arch/xap/dis.h:32:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char			l_name[128];
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/elf32-xtensa.c:1523:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
      sprintf (sname, ".plt.%u", chunk);
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/elf32-xtensa.c:1530:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
      sprintf (sname, ".got.plt.%u", chunk);
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/elf32-xtensa.c:2233:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (message, origmsg, orig_len);
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/elf32-xtensa.c:2385:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (splt->contents + code_offset,
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/elf32-xtensa.c:3301:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (sgotloc->contents, contents, section_size);
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/elf32-xtensa.c:9911:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	  memcpy (contents, dup_contents, final_size);
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/elf32-xtensa.c:10317:6:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	    memcpy (new_relocs, *internal_relocs_p,
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/elf32-xtensa.c:10323:6:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	    memcpy (new_relocs + insert_at + 1,
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/elf32-xtensa.c:10886:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char plt_name[10];
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/elf32-xtensa.c:10898:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
  sprintf (plt_name, ".plt.%u", chunk);
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/elf32-xtensa.c:10908:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char got_name[14];
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/elf32-xtensa.c:10919:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
  sprintf (got_name, ".got.plt.%u", chunk);
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/elf32-xtensa.c:11193:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
      memcpy (prop_sec_name, ".gnu.linkonce.", linkonce_len);
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/elf32-xtensa.c:11302:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	  char got_name[14];
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/elf32-xtensa.c:11308:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
	  sprintf (got_name, ".got.plt.%u", chunk);
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:35:1:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
char xtisa_error_msg[1024];
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:57:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (xtisa_error_msg, "out of memory"); \
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:67:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (xtisa_error_msg, "out of memory"); \
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:172:7:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
      strcpy (xtisa_error_msg, "output buffer too small for instruction");
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:516:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (xtisa_error_msg, "invalid format specifier"); \
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:527:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (xtisa_error_msg, "invalid slot specifier"); \
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:551:7:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
      strcpy (xtisa_error_msg, "invalid format name");
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:580:3:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
  strcpy (xtisa_error_msg, "cannot decode instruction format");
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:668:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (xtisa_error_msg, "invalid opcode specifier"); \
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:683:7:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
      strcpy (xtisa_error_msg, "invalid opcode name");
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:725:3:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
  strcpy (xtisa_error_msg, "cannot decode opcode");
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:995:7:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
      strcpy (xtisa_error_msg, "implicit operand has no field");
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:1034:7:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
      strcpy (xtisa_error_msg, "implicit operand has no field");
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:1083:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	  strcpy (xtisa_error_msg, "operand has no field");
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:1104:7:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
      strcpy (xtisa_error_msg, "field does not exist in any slot");
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:1118:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
      sprintf (xtisa_error_msg, "cannot encode operand value 0x%08x", *valp);
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:1146:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
      sprintf (xtisa_error_msg, "cannot decode operand value 0x%08x", *valp);
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:1256:7:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
      strcpy (xtisa_error_msg, "operand missing do_reloc function");
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:1263:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
      sprintf (xtisa_error_msg,
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:1291:7:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
      strcpy (xtisa_error_msg, "operand missing undo_reloc function");
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:1298:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
      sprintf (xtisa_error_msg,
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:1397:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (xtisa_error_msg, "invalid regfile specifier"); \
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:1412:7:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
      strcpy (xtisa_error_msg, "invalid regfile name");
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:1439:7:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
      strcpy (xtisa_error_msg, "invalid regfile shortname");
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:1517:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (xtisa_error_msg, "invalid state specifier"); \
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:1532:7:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
      strcpy (xtisa_error_msg, "invalid state name");
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:1605:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (xtisa_error_msg, "invalid sysreg specifier"); \
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:1624:7:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
      strcpy (xtisa_error_msg, "sysreg not recognized");
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:1641:7:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
      strcpy (xtisa_error_msg, "invalid sysreg name");
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:1703:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (xtisa_error_msg, "invalid interface specifier"); \
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:1718:7:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
      strcpy (xtisa_error_msg, "invalid interface name");
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:1798:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (xtisa_error_msg, "invalid functional unit specifier"); \
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/xtensa-isa.c:1813:7:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
      strcpy (xtisa_error_msg, "invalid functional unit name");
data/radare2-4.3.1+dfsg/libr/asm/arch/z80/z80.c:92:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		cb_tab = (char **) z_op[buf[0]].op_moar;
data/radare2-4.3.1+dfsg/libr/asm/arch/z80/z80.c:118:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			cb_tab = (char **) z_op[res].op_moar;
data/radare2-4.3.1+dfsg/libr/asm/arch/z80/z80asm.c:1549:11:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	unsigned char buf[4];
data/radare2-4.3.1+dfsg/libr/asm/arch/z80/z80asm.h:86:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char name[1];			/* space with name in it */
data/radare2-4.3.1+dfsg/libr/asm/arch/z80/z80asm.h:100:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char name[1];
data/radare2-4.3.1+dfsg/libr/asm/arch/z80/z80asm.h:107:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char name[1];
data/radare2-4.3.1+dfsg/libr/asm/arch/z80/z80asm.h:167:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char input[1];		/* variable size buffer containing formula */
data/radare2-4.3.1+dfsg/libr/asm/asm.c:147:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (&buf[i], &value, sizeof(value));
data/radare2-4.3.1+dfsg/libr/asm/asm.c:629:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (acode->bytes, buf, len);
data/radare2-4.3.1+dfsg/libr/asm/asm.c:731:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char val[32];
data/radare2-4.3.1+dfsg/libr/asm/asm.c:736:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char val[32];
data/radare2-4.3.1+dfsg/libr/asm/asm.c:894:31:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
					r_asm_set_big_endian (a, atoi (ptr + 7));
data/radare2-4.3.1+dfsg/libr/asm/asm.c:1020:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (acode->bytes + idx, r_strbuf_get (&op.buf), r_strbuf_length (&op.buf));
data/radare2-4.3.1+dfsg/libr/asm/p/asm_amd29k.c:14:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf_asm[64];
data/radare2-4.3.1+dfsg/libr/asm/p/asm_arc.c:32:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (myaddr, bytes + delta, R_MIN (buf_len - delta, length));
data/radare2-4.3.1+dfsg/libr/asm/p/asm_arc.c:57:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (bytes, buf, len); // TODO handle compact
data/radare2-4.3.1+dfsg/libr/asm/p/asm_arm_gnu.c:71:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static unsigned char bytes[8];
data/radare2-4.3.1+dfsg/libr/asm/p/asm_arm_gnu.c:82:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (myaddr, bytes + delta, length);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_arm_gnu.c:108:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (bytes, buf, R_MIN (len, 4));
data/radare2-4.3.1+dfsg/libr/asm/p/asm_arm_gnu.c:134:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		const char name[32];
data/radare2-4.3.1+dfsg/libr/asm/p/asm_arm_gnu.c:157:14:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			cpucode = atoi (a->cpu);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_arm_gnu.c:189:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (bytes, buf, 4);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_avr.c:17:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf_asm[32] = {0};
data/radare2-4.3.1+dfsg/libr/asm/p/asm_avr.c:35:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char reg[4];
data/radare2-4.3.1+dfsg/libr/asm/p/asm_avr.c:95:40:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static int search_instruction(RAsm *a, char instr[3][MAX_TOKEN_SIZE], int args) {
data/radare2-4.3.1+dfsg/libr/asm/p/asm_avr.c:209:11:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			fnum = atoi(first+1);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_avr.c:210:11:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			snum = atoi(second+1);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_avr.c:223:11:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			snum = atoi(first+1);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_avr.c:336:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char tokens[3][MAX_TOKEN_SIZE];
data/radare2-4.3.1+dfsg/libr/asm/p/asm_bf.c:71:8:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			n = atoi (arg + 1);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_bf.c:79:8:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			n = atoi (arg + 1);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_bf.c:96:8:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			n = atoi (arg + 1);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_bf.c:105:8:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			n = atoi (arg + 1);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_bf.c:119:8:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			n = atoi (arg + 1);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_bf.c:127:8:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			n = atoi (arg + 1);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_cris_gnu.c:26:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static unsigned char bytes[8];
data/radare2-4.3.1+dfsg/libr/asm/p/asm_cris_gnu.c:29:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (myaddr, bytes, length);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_cris_gnu.c:62:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (bytes, buf, R_MIN (len, 8)); // TODO handle thumb
data/radare2-4.3.1+dfsg/libr/asm/p/asm_dalvik.c:17:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char str[1024], *strasm = NULL;
data/radare2-4.3.1+dfsg/libr/asm/p/asm_dcpu16.c:15:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf_asm[32];
data/radare2-4.3.1+dfsg/libr/asm/p/asm_hexagon_gnu.c:20:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static unsigned char bytes[4];
data/radare2-4.3.1+dfsg/libr/asm/p/asm_hexagon_gnu.c:23:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (myaddr, bytes, length);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_hppa_gnu.c:17:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static unsigned char bytes[4];
data/radare2-4.3.1+dfsg/libr/asm/p/asm_hppa_gnu.c:30:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (myaddr, bytes, length);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_hppa_gnu.c:52:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (bytes, buf, 4); // TODO handle thumb
data/radare2-4.3.1+dfsg/libr/asm/p/asm_java.c:23:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf_asm[256];
data/radare2-4.3.1+dfsg/libr/asm/p/asm_lanai_gnu.c:14:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static unsigned char bytes[4];
data/radare2-4.3.1+dfsg/libr/asm/p/asm_lanai_gnu.c:17:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (myaddr, bytes, length);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_lanai_gnu.c:39:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (bytes, buf, 4); // TODO handle thumb
data/radare2-4.3.1+dfsg/libr/asm/p/asm_lh5801.c:20:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf_asm[128] = {0};
data/radare2-4.3.1+dfsg/libr/asm/p/asm_lm32.c:311:3:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
		strcpy (str, "ret");
data/radare2-4.3.1+dfsg/libr/asm/p/asm_lm32.c:329:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
			strcpy (str, "nop");
data/radare2-4.3.1+dfsg/libr/asm/p/asm_lm32.c:338:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
			strcpy (str, "break");
data/radare2-4.3.1+dfsg/libr/asm/p/asm_lm32.c:341:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
			strcpy (str, "scall");
data/radare2-4.3.1+dfsg/libr/asm/p/asm_m68k_cs.c:81:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (mybuf, buf, mylen);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_mcore.c:11:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char tmp[256];
data/radare2-4.3.1+dfsg/libr/asm/p/asm_mips_gnu.c:19:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static unsigned char bytes[4];
data/radare2-4.3.1+dfsg/libr/asm/p/asm_mips_gnu.c:22:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (myaddr, bytes, length);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_mips_gnu.c:44:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (bytes, buf, 4); // TODO handle thumb
data/radare2-4.3.1+dfsg/libr/asm/p/asm_nios2.c:19:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static unsigned char bytes[4];
data/radare2-4.3.1+dfsg/libr/asm/p/asm_nios2.c:22:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (myaddr, bytes, length);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_nios2.c:44:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (bytes, buf, 4); // TODO handle thumb
data/radare2-4.3.1+dfsg/libr/asm/p/asm_pic.c:12:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char opbuf[128];
data/radare2-4.3.1+dfsg/libr/asm/p/asm_pic.c:14:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (opbuf, "invalid");
data/radare2-4.3.1+dfsg/libr/asm/p/asm_ppc_cs.c:27:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char buf_asm[64];
data/radare2-4.3.1+dfsg/libr/asm/p/asm_ppc_cs.c:50:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf_asm[64];
data/radare2-4.3.1+dfsg/libr/asm/p/asm_ppc_gnu.c:17:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static unsigned char bytes[4];
data/radare2-4.3.1+dfsg/libr/asm/p/asm_ppc_gnu.c:20:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (myaddr, bytes, length);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_ppc_gnu.c:42:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (bytes, buf, 4); // TODO handle thumb
data/radare2-4.3.1+dfsg/libr/asm/p/asm_sh.c:14:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static unsigned char bytes[4];
data/radare2-4.3.1+dfsg/libr/asm/p/asm_sh.c:18:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (myaddr, bytes, length);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_sh.c:43:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (bytes, buf, 2);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_sparc_gnu.c:15:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static unsigned char bytes[4];
data/radare2-4.3.1+dfsg/libr/asm/p/asm_sparc_gnu.c:18:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (myaddr, bytes, length);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_tricore.c:22:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (myaddr, bytes + delta, length);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_tricore.c:42:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (bytes, buf, R_MIN (len, 8)); // TODO handle thumb
data/radare2-4.3.1+dfsg/libr/asm/p/asm_vax.c:30:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (myaddr, bytes + delta, R_MIN (length, bytes_size));
data/radare2-4.3.1+dfsg/libr/asm/p/asm_x86_cs.c:123:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (buf_asm, "jz", 2);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_x86_cs.c:125:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (buf_asm, "jnz", 3);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_x86_cs.c:138:6:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
					strcpy (ast, " * ");
data/radare2-4.3.1+dfsg/libr/asm/p/asm_x86_nz.c:120:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char rep_op[MAX_REPOP_LENGTH];
data/radare2-4.3.1+dfsg/libr/asm/p/asm_x86_nz.c:4111:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char mnemonic[12];
data/radare2-4.3.1+dfsg/libr/asm/p/asm_x86_nz.c:5001:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char op[128];
data/radare2-4.3.1+dfsg/libr/asm/p/asm_xap.c:27:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		sprintf(d->d_asm, "DC\t0x%x", i2u16(&d->d_inst));
data/radare2-4.3.1+dfsg/libr/asm/p/asm_xtensa.c:24:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (myaddr, bytes, length);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_xtensa.c:46:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (bytes, buf, len); // TODO handle thumb
data/radare2-4.3.1+dfsg/libr/bin/bfile.c:883:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char hash[128];
data/radare2-4.3.1+dfsg/libr/bin/bin.c:418:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (plugin, foo, sizeof (RBinPlugin));
data/radare2-4.3.1+dfsg/libr/bin/bin.c:996:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char unk[128];
data/radare2-4.3.1+dfsg/libr/bin/bin.c:997:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char archline[128];
data/radare2-4.3.1+dfsg/libr/bin/dbginfo.c:23:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char file[4096];
data/radare2-4.3.1+dfsg/libr/bin/dbginfo.c:37:12:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				line = atoi (token);
data/radare2-4.3.1+dfsg/libr/bin/dbginfo.c:100:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char file[1024];
data/radare2-4.3.1+dfsg/libr/bin/demangle.c:143:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *out, str[128];
data/radare2-4.3.1+dfsg/libr/bin/dwarf.c:396:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char offset[64];
data/radare2-4.3.1+dfsg/libr/bin/dwarf.c:1690:13:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
					line = atoi (tok);
data/radare2-4.3.1+dfsg/libr/bin/format/bflt/bflt.h:20:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char magic[4];
data/radare2-4.3.1+dfsg/libr/bin/format/coff/coff.c:26:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char n[256] = {0};
data/radare2-4.3.1+dfsg/libr/bin/format/coff/coff.c:29:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char name[8]; 
data/radare2-4.3.1+dfsg/libr/bin/format/coff/coff_specs.h:159:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char s_name[8];	/* Section Name */
data/radare2-4.3.1+dfsg/libr/bin/format/coff/coff_specs.h:173:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char n_name[8];	/* Symbol Name */
data/radare2-4.3.1+dfsg/libr/bin/format/dex/dex.h:122:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char str[R_BIN_DEX_MAXSTR];
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c:182:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (&bin->ehdr.e_ident, ehdr, 16);
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c:622:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	static char buff[32];
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c:629:3:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
		strcpy (buff, "BASE ");
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c:633:4:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
			strcat (buff, "| ");
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c:635:3:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
		strcat (buff, "WEAK ");
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c:639:3:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
		strcat (buff, "| <unknown>");
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c:695:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char key[32] = { 0 };
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c:866:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char key[32] = { 0 };
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c:1030:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char key[32] = { 0 };
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c:1080:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char name [16];
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c:1137:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char key[32] = {0};
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c:2885:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char unknown_s[32], invalid_s[32];
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c:3144:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (ret[ret_ctr].name, &bin->strtab[st_name], len);
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c:3277:6:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
					memcpy (&ret[++nsym], p, sizeof (RBinElfSymbol));
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c:3667:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (&import_ret[import_ret_ctr], &ret[i], sizeof (RBinElfSymbol));
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c:3930:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char str[512] = {0};
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.h:29:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[ELF_STRING_LENGTH];
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.h:40:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[ELF_STRING_LENGTH];
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.h:41:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char libname[ELF_STRING_LENGTH];
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.h:63:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[ELF_STRING_LENGTH];
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.h:71:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char string[ELF_STRING_LENGTH];
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.h:76:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[ELF_STRING_LENGTH];
data/radare2-4.3.1+dfsg/libr/bin/format/elf/glibc_elf.h:71:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	e_ident[EI_NIDENT];	/* Magic number and other info */
data/radare2-4.3.1+dfsg/libr/bin/format/elf/glibc_elf.h:89:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	e_ident[EI_NIDENT];	/* Magic number and other info */
data/radare2-4.3.1+dfsg/libr/bin/format/mach0/dyldcache.h:18:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char path[1024];
data/radare2-4.3.1+dfsg/libr/bin/format/mach0/mach0.c:355:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (&bin->segs[j].segname, &segcom[i], 16);
data/radare2-4.3.1+dfsg/libr/bin/format/mach0/mach0.c:443:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (&bin->sects[k].sectname, &sec[i], 16);
data/radare2-4.3.1+dfsg/libr/bin/format/mach0/mach0.c:445:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (&bin->sects[k].segname, &sec[i], 16);
data/radare2-4.3.1+dfsg/libr/bin/format/mach0/mach0.c:1633:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char key[128];
data/radare2-4.3.1+dfsg/libr/bin/format/mach0/mach0.c:1634:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char val[128];
data/radare2-4.3.1+dfsg/libr/bin/format/mach0/mach0.c:2094:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char segname[32], sectname[32], raw_segname[17];
data/radare2-4.3.1+dfsg/libr/bin/format/mach0/mach0.c:2146:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (raw_segname, bin->sects[i].segname, 16);
data/radare2-4.3.1+dfsg/libr/bin/format/mach0/mach0.c:2775:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf (symbols[j].name, "entry%d\n", i);
data/radare2-4.3.1+dfsg/libr/bin/format/mach0/mach0.h:47:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[R_BIN_MACH0_STRING_LENGTH];
data/radare2-4.3.1+dfsg/libr/bin/format/mach0/mach0.h:57:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[R_BIN_MACH0_STRING_LENGTH];
data/radare2-4.3.1+dfsg/libr/bin/format/mach0/mach0.h:62:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[R_BIN_MACH0_STRING_LENGTH];
data/radare2-4.3.1+dfsg/libr/bin/format/mach0/mach0.h:74:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[256];
data/radare2-4.3.1+dfsg/libr/bin/format/mach0/mach0.h:88:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[R_BIN_MACH0_STRING_LENGTH];
data/radare2-4.3.1+dfsg/libr/bin/format/mach0/mach0.h:150:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char (*libs)[R_BIN_MACH0_STRING_LENGTH];
data/radare2-4.3.1+dfsg/libr/bin/format/mach0/mach0_defines.h:617:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char segname[16];
data/radare2-4.3.1+dfsg/libr/bin/format/mach0/mach0_defines.h:631:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char segname[16];
data/radare2-4.3.1+dfsg/libr/bin/format/mach0/mach0_defines.h:643:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char sectname[16];
data/radare2-4.3.1+dfsg/libr/bin/format/mach0/mach0_defines.h:644:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char segname[16];
data/radare2-4.3.1+dfsg/libr/bin/format/mach0/mach0_defines.h:657:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char sectname[16];
data/radare2-4.3.1+dfsg/libr/bin/format/mach0/mach0_defines.h:658:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char segname[16];
data/radare2-4.3.1+dfsg/libr/bin/format/mach0/mach0_defines.h:1317:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char mmst_reg[10];
data/radare2-4.3.1+dfsg/libr/bin/format/mach0/mach0_defines.h:1318:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char mmst_rsrv[6];
data/radare2-4.3.1+dfsg/libr/bin/format/mach0/mach0_defines.h:1322:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char xmm_reg[16];
data/radare2-4.3.1+dfsg/libr/bin/format/mach0/mach0_defines.h:1364:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char fpu_rsrv4[6*16];
data/radare2-4.3.1+dfsg/libr/bin/format/mach0/mach0_specs.h:192:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char version[16];
data/radare2-4.3.1+dfsg/libr/bin/format/mach0/mach0_specs.h:208:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char     magic[16];
data/radare2-4.3.1+dfsg/libr/bin/format/mdmp/mdmp_pe.c:112:30:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		ptr->name = strdup ((const char *)imports[i].name);
data/radare2-4.3.1+dfsg/libr/bin/format/mdmp/mdmp_pe.c:113:55:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		ptr->libname = *imports[i].libname ? strdup ((const char *)imports[i].libname) : NULL;
data/radare2-4.3.1+dfsg/libr/bin/format/mdmp/mdmp_pe.c:165:25:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			ptr->name = strdup ((char *)sections[i].name);
data/radare2-4.3.1+dfsg/libr/bin/format/mdmp/mdmp_pe.c:232:25:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			ptr->name = strdup ((char *)symbols[i].name);
data/radare2-4.3.1+dfsg/libr/bin/format/mdmp/mdmp_pe.c:233:50:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			ptr->libname = *symbols[i].libname ? strdup ((char *)symbols[i].libname) : NULL;
data/radare2-4.3.1+dfsg/libr/bin/format/mdmp/mdmp_pe.c:234:61:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			ptr->forwarder = r_str_constpool_get (&rbin->constpool, (char *)symbols[i].forwarder);
data/radare2-4.3.1+dfsg/libr/bin/format/mdmp/mdmp_pe.c:256:31:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			ptr->name = strdup ((const char *)imports[i].name);
data/radare2-4.3.1+dfsg/libr/bin/format/mdmp/mdmp_pe.c:257:56:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			ptr->libname = *imports[i].libname ? strdup ((const char *)imports[i].libname) : NULL;
data/radare2-4.3.1+dfsg/libr/bin/format/ne/ne_specs.h:87:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char sig[2];             // "NE"
data/radare2-4.3.1+dfsg/libr/bin/format/nes/nes_specs.h:69:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char id[0x4];					// NES\x1A
data/radare2-4.3.1+dfsg/libr/bin/format/nin/nin.h:103:2:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
	strcat (type,"\ncard\t");
data/radare2-4.3.1+dfsg/libr/bin/format/nin/nin.h:113:4:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
			strcat (type,"XXX");
data/radare2-4.3.1+dfsg/libr/bin/format/nin/nin.h:117:5:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
				strcat (type,"XXX");
data/radare2-4.3.1+dfsg/libr/bin/format/nin/nin.h:154:3:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
		strcpy (type, "SuperGameboy-Rom");
data/radare2-4.3.1+dfsg/libr/bin/format/nin/nin.h:157:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
			strcpy (type, "GameboyColor-Rom");
data/radare2-4.3.1+dfsg/libr/bin/format/nin/nin.h:159:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
			strcpy (type, "Gameboy-Rom");
data/radare2-4.3.1+dfsg/libr/bin/format/nxo/nxo.c:14:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char symbol[128]; // assume 128 as max symbol name length
data/radare2-4.3.1+dfsg/libr/bin/format/objc/mach0_classes.c:822:9:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		len = atoi (s + off);
data/radare2-4.3.1+dfsg/libr/bin/format/objc/mach0_classes.c:831:10:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			len = atoi (s + skip);
data/radare2-4.3.1+dfsg/libr/bin/format/objc/mach0_classes.c:835:9:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		len = atoi (kstr);
data/radare2-4.3.1+dfsg/libr/bin/format/omf/omf.c:128:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (names[ct_name], buf + 3 + tmp_size + 1, cb);
data/radare2-4.3.1+dfsg/libr/bin/format/omf/omf.c:233:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (symbol->name, buf + ct + 1, sizeof(char) * str_size);
data/radare2-4.3.1+dfsg/libr/bin/format/omf/omf.c:528:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy(obj->symbols[ct_obj], ((OMF_symbol *)symbols->elems) + ct_rec, sizeof(*(obj->symbols[ct_obj])));
data/radare2-4.3.1+dfsg/libr/bin/format/p9/p9bin.h:47:23:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
#define p9bin_open(x) fopen(x,"r")
data/radare2-4.3.1+dfsg/libr/bin/format/pe/dotnet.c:118:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char guid[37];
data/radare2-4.3.1+dfsg/libr/bin/format/pe/dotnet.c:127:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		sprintf(guid, "%08x-%04x-%04x-%02x%02x-%02x%02x%02x%02x%02x%02x",
data/radare2-4.3.1+dfsg/libr/bin/format/pe/dotnet.c:257:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char stream_name[DOTNET_STREAM_NAME_SIZE + 1];
data/radare2-4.3.1+dfsg/libr/bin/format/pe/dotnet.c:350:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char typelib[MAX_TYPELIB_SIZE + 1];
data/radare2-4.3.1+dfsg/libr/bin/format/pe/dotnet.h:51:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char Version[0];
data/radare2-4.3.1+dfsg/libr/bin/format/pe/dotnet.h:63:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char Name[0];
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.c:380:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char import_name[PE_NAME_LENGTH + 1];
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.c:381:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[PE_NAME_LENGTH + 1];
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.c:488:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy ((*importp)[*nimp].name, import_name, PE_NAME_LENGTH);
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.c:490:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy ((*importp)[*nimp].libname, dll_name, PE_NAME_LENGTH);
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.c:684:6:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
					char shortname[9];
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.c:685:6:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
					memcpy (shortname, &sr->shortname, 8);
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.c:697:8:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
							sprintf ((char*) exp[symctr].name, "unk_%d", symctr);
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.c:754:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char string[8]; // short name
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.c:1986:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char key[20];
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.c:2001:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char key[20];
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.c:2046:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char key[20];
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.c:2072:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char key[30];
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.c:2660:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char key[64];
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.c:3051:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char function_name[PE_NAME_LENGTH + 1], forwarder_name[PE_NAME_LENGTH + 1];
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.c:3052:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char dll_name[PE_NAME_LENGTH + 1];
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.c:3140:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (exports[i].forwarder, forwarder_name, PE_NAME_LENGTH);
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.c:3142:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (exports[i].name, function_name, PE_NAME_LENGTH);
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.c:3144:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (exports[i].libname, dll_name, PE_NAME_LENGTH);
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.c:3180:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (res, dbg_data, rsds_sz);
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.c:3190:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (res, dbg_data, nb10sz);
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.c:3301:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char dll_name[PE_NAME_LENGTH + 1];
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.c:3719:5:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
				strcpy ((char*) sections[i].name, "blob");
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.c:3755:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy ((char*) sections[i].name, "blob");
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.c:3798:14:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			int idx = atoi ((const char *)shdr[i].Name + 1);
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.c:3798:27:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			int idx = atoi ((const char *)shdr[i].Name + 1);
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.c:3810:6:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
					memcpy (sections[j].name, buf, sz);
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.c:3815:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (sections[j].name, shdr[i].Name, PE_IMAGE_SIZEOF_SHORT_NAME);
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.h:55:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char string[PE_STRING_LENGTH];
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.h:64:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[PE_STRING_LENGTH];
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.h:81:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char guidstr[GUIDSTR_LEN];
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.h:82:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char file_name[DBG_FILE_NAME_LEN];
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pemixed.c:62:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (sub_bin_native, pe_bin, sizeof(struct PE_(r_bin_pe_obj_t)));
data/radare2-4.3.1+dfsg/libr/bin/format/sfc/sfc_specs.h:47:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[0x15];	//game title.
data/radare2-4.3.1+dfsg/libr/bin/format/spc700/spc_specs.h:28:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char	song_title [32];
data/radare2-4.3.1+dfsg/libr/bin/format/spc700/spc_specs.h:29:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char	game_title [32];
data/radare2-4.3.1+dfsg/libr/bin/format/spc700/spc_specs.h:30:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char	name_of_dumper [16];
data/radare2-4.3.1+dfsg/libr/bin/format/spc700/spc_specs.h:31:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char	comments [32];
data/radare2-4.3.1+dfsg/libr/bin/format/spc700/spc_specs.h:35:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char artist_song [32];
data/radare2-4.3.1+dfsg/libr/bin/format/spc700/spc_specs.h:43:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char	song_title [32];
data/radare2-4.3.1+dfsg/libr/bin/format/spc700/spc_specs.h:44:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char	game_title [32];
data/radare2-4.3.1+dfsg/libr/bin/format/spc700/spc_specs.h:45:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char	name_of_dumper [16];
data/radare2-4.3.1+dfsg/libr/bin/format/spc700/spc_specs.h:46:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char	comments [32];
data/radare2-4.3.1+dfsg/libr/bin/format/spc700/spc_specs.h:51:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char	artist_song [32];
data/radare2-4.3.1+dfsg/libr/bin/format/spc700/spc_specs.h:58:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char	signature [33];
data/radare2-4.3.1+dfsg/libr/bin/format/te/te.c:348:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (sections[i].name, shdr[i].Name, TE_IMAGE_SIZEOF_NAME);
data/radare2-4.3.1+dfsg/libr/bin/format/te/te.h:28:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char string[TE_STRING_LENGTH];
data/radare2-4.3.1+dfsg/libr/bin/format/vsf/vsf_specs.h:14:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char id[19];		/* "VICE Snapshot File" */
data/radare2-4.3.1+dfsg/libr/bin/format/vsf/vsf_specs.h:17:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char machine[16];	/* "C64" or "C128" or... */
data/radare2-4.3.1+dfsg/libr/bin/format/vsf/vsf_specs.h:22:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char module_name[16];	/* looking for "C64MEM", ... */
data/radare2-4.3.1+dfsg/libr/bin/format/wasm/wasm.c:202:4:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
			strcat (buf, ", ");
data/radare2-4.3.1+dfsg/libr/bin/format/wasm/wasm.c:889:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
			strcpy (ptr->name, "type");
data/radare2-4.3.1+dfsg/libr/bin/format/wasm/wasm.c:894:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
			strcpy (ptr->name, "import");
data/radare2-4.3.1+dfsg/libr/bin/format/wasm/wasm.c:899:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
			strcpy (ptr->name, "function");
data/radare2-4.3.1+dfsg/libr/bin/format/wasm/wasm.c:904:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
			strcpy (ptr->name, "table");
data/radare2-4.3.1+dfsg/libr/bin/format/wasm/wasm.c:909:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
			strcpy (ptr->name, "memory");
data/radare2-4.3.1+dfsg/libr/bin/format/wasm/wasm.c:914:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
			strcpy (ptr->name, "global");
data/radare2-4.3.1+dfsg/libr/bin/format/wasm/wasm.c:919:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
			strcpy (ptr->name, "export");
data/radare2-4.3.1+dfsg/libr/bin/format/wasm/wasm.c:924:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
			strcpy (ptr->name, "start");
data/radare2-4.3.1+dfsg/libr/bin/format/wasm/wasm.c:929:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
			strcpy (ptr->name, "element");
data/radare2-4.3.1+dfsg/libr/bin/format/wasm/wasm.c:934:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
			strcpy (ptr->name, "code");
data/radare2-4.3.1+dfsg/libr/bin/format/wasm/wasm.c:939:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
			strcpy (ptr->name, "data");
data/radare2-4.3.1+dfsg/libr/bin/format/wasm/wasm.h:76:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[R_BIN_WASM_STRING_LENGTH];
data/radare2-4.3.1+dfsg/libr/bin/format/wasm/wasm.h:89:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char to_str[R_BIN_WASM_STRING_LENGTH];
data/radare2-4.3.1+dfsg/libr/bin/format/wasm/wasm.h:109:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char module_str[R_BIN_WASM_STRING_LENGTH];
data/radare2-4.3.1+dfsg/libr/bin/format/wasm/wasm.h:111:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char field_str[R_BIN_WASM_STRING_LENGTH];
data/radare2-4.3.1+dfsg/libr/bin/format/wasm/wasm.h:143:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char field_str[R_BIN_WASM_STRING_LENGTH];
data/radare2-4.3.1+dfsg/libr/bin/format/wasm/wasm.h:171:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[R_BIN_WASM_STRING_LENGTH];
data/radare2-4.3.1+dfsg/libr/bin/format/xnu/mig_index.h:16:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static const char *mig_index[R_MIG_INDEX_LEN] = {
data/radare2-4.3.1+dfsg/libr/bin/format/xnu/yxml.c:124:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy(dest, &_ch, 1);
data/radare2-4.3.1+dfsg/libr/bin/format/xnu/yxml.h:96:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char data[8];
data/radare2-4.3.1+dfsg/libr/bin/format/zimg/zimg.h:30:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char str[R_BIN_ZIMG_MAXSTR];
data/radare2-4.3.1+dfsg/libr/bin/mangling/cxx/cp-demangle.c:324:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char buf[D_PRINT_BUFFER_LENGTH];
data/radare2-4.3.1+dfsg/libr/bin/mangling/cxx/cp-demangle.c:4015:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (dgs->buf + dgs->len, s, l);
data/radare2-4.3.1+dfsg/libr/bin/mangling/cxx/cp-demangle.c:4261:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char buf[25];
data/radare2-4.3.1+dfsg/libr/bin/mangling/cxx/cp-demangle.c:4262:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
  sprintf (buf,"%d", l);
data/radare2-4.3.1+dfsg/libr/bin/mangling/cxx/libiberty.h:381:23:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
extern const unsigned char _hex_value[_hex_array_size];
data/radare2-4.3.1+dfsg/libr/bin/mangling/cxx/libiberty.h:669:13:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
   (char *) memcpy (libiberty_nptr, libiberty_optr, libiberty_len); }))
data/radare2-4.3.1+dfsg/libr/bin/mangling/cxx/libiberty.h:683:13:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
   (char *) memcpy (libiberty_nptr, libiberty_optr, libiberty_len))
data/radare2-4.3.1+dfsg/libr/bin/mangling/microsoft_demangle.c:193:20:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				int signed_a = atoi (tmp);
data/radare2-4.3.1+dfsg/libr/bin/mangling/microsoft_demangle.c:202:20:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				int signed_b = atoi (b);
data/radare2-4.3.1+dfsg/libr/bin/mangling/microsoft_demangle.c:220:20:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				int signed_a = atoi (a);
data/radare2-4.3.1+dfsg/libr/bin/mangling/microsoft_demangle.c:221:20:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				int signed_b = atoi (b);
data/radare2-4.3.1+dfsg/libr/bin/mangling/microsoft_demangle.c:232:20:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				int signed_a = atoi (a);
data/radare2-4.3.1+dfsg/libr/bin/mangling/microsoft_demangle.c:233:20:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				int signed_b = atoi (b);
data/radare2-4.3.1+dfsg/libr/bin/mangling/microsoft_demangle.c:234:20:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				int signed_c = atoi (c);
data/radare2-4.3.1+dfsg/libr/bin/mangling/microsoft_demangle.c:565:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (tmp, prev_pos, len);
data/radare2-4.3.1+dfsg/libr/bin/mangling/microsoft_demangle.c:825:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		sprintf (ptr, "%u", ret);
data/radare2-4.3.1+dfsg/libr/bin/mangling/microsoft_demangle.c:887:9:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		num = atoi (n1); \
data/radare2-4.3.1+dfsg/libr/bin/mangling/objc.c:122:7:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
						strcat (args, ", ");
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:79:10:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		*num = atoi (n);
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:95:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	static char buf[256] = {0};
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:180:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char out[1024];
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:287:4:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
			strcat (out, "Swift.String.init (");
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:300:4:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
			strcat (out, "class ");
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:319:5:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
				strcat (out, "Swift");
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:384:6:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
					strcat (out, "__");
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:390:5:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
				strcat (out, " -> ()");
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:414:7:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
						strcat (out, "..");
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:428:7:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
						strcat (out, " (self) -> ()");
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:438:7:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
						strcat (out, "__String");
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:443:8:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
							strcat (out, "..");
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:462:6:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
					strcat (out, " ()");
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:496:10:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
									strcat (out, " -> ");
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:506:9:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
								strcat (out, " -> ");
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:542:9:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
								strcat (out, ", ");
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:546:9:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
								strcat (out, " -> ");
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:553:8:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
							strcat (out, " -> ");
data/radare2-4.3.1+dfsg/libr/bin/p/bin_art.c:112:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (ret->bclass, &ao->art.version, 4);
data/radare2-4.3.1+dfsg/libr/bin/p/bin_art.c:130:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char tmp[4];
data/radare2-4.3.1+dfsg/libr/bin/p/bin_dbginfo_dex.c:8:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char offset[64];
data/radare2-4.3.1+dfsg/libr/bin/p/bin_dbginfo_dex.c:16:13:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				*line = atoi (p + 1);
data/radare2-4.3.1+dfsg/libr/bin/p/bin_dbginfo_elf.c:9:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char offset[64];
data/radare2-4.3.1+dfsg/libr/bin/p/bin_dbginfo_elf.c:17:13:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				*line = atoi (p + 1);
data/radare2-4.3.1+dfsg/libr/bin/p/bin_dex.c:142:15:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	static const char *kAccessStrings[kAccessForMAX][NUM_FLAGS] = {
data/radare2-4.3.1+dfsg/libr/bin/p/bin_dex.c:230:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (cp, accessStr, len);
data/radare2-4.3.1+dfsg/libr/bin/p/bin_dex.c:689:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char offset[64] = {0};
data/radare2-4.3.1+dfsg/libr/bin/p/bin_dyldcache.c:780:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char file[256];
data/radare2-4.3.1+dfsg/libr/bin/p/bin_dyldcache.c:909:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char file[256];
data/radare2-4.3.1+dfsg/libr/bin/p/bin_dyldcache.c:1184:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (buf, internal_buf + page_offset, result);
data/radare2-4.3.1+dfsg/libr/bin/p/bin_dyldcache.c:1283:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (cache->magic, "dyldcac", 7);
data/radare2-4.3.1+dfsg/libr/bin/p/bin_dyldcache.c:1705:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char uuidstr[128];
data/radare2-4.3.1+dfsg/libr/bin/p/bin_java.c:42:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *addr, value[1024] = {
data/radare2-4.3.1+dfsg/libr/bin/p/bin_mach0.c:258:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char symstr[128];
data/radare2-4.3.1+dfsg/libr/bin/p/bin_mach0.c:262:3:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
		strcpy (symstr, "sym0x");
data/radare2-4.3.1+dfsg/libr/bin/p/bin_pebble.c:21:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char header[8];               //!< Sentinel value, should always be 'PBLAPP\0\0'
data/radare2-4.3.1+dfsg/libr/bin/p/bin_pebble.c:28:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[APP_NAME_BYTES];        //!< Name to display on the menu
data/radare2-4.3.1+dfsg/libr/bin/p/bin_pebble.c:29:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char company[COMPANY_NAME_BYTES]; //!< Name of the maker of this app
data/radare2-4.3.1+dfsg/libr/bin/p/bin_qnx.c:258:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
 	char buf[64];
data/radare2-4.3.1+dfsg/libr/bin/p/bin_vsf.c:55:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char machine[20];
data/radare2-4.3.1+dfsg/libr/bin/p/bin_xbe.c:94:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char tmp[0x100];
data/radare2-4.3.1+dfsg/libr/bin/p/bin_xnu_kernelcache.c:86:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[0x41];
data/radare2-4.3.1+dfsg/libr/bin/p/bin_xnu_kernelcache.c:940:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char segname[17];
data/radare2-4.3.1+dfsg/libr/bin/p/bin_xnu_kernelcache.c:1718:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char segname[17];
data/radare2-4.3.1+dfsg/libr/bin/p/bin_xnu_kernelcache.c:1928:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (buf, internal_buffer, result);
data/radare2-4.3.1+dfsg/libr/bin/p/bin_xtr_sep64.c:31:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char init_name[16];
data/radare2-4.3.1+dfsg/libr/bin/p/bin_xtr_sep64.c:51:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char app_name[16];
data/radare2-4.3.1+dfsg/libr/bin/p/bin_z64.c:55:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char Name[20];
data/radare2-4.3.1+dfsg/libr/bin/p/bin_z64.c:85:14:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		*bin_obj = memcpy (&n64_header, buf, sizeof (N64Header));
data/radare2-4.3.1+dfsg/libr/bin/p/bin_z64.c:131:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char GameName[21] = {0};
data/radare2-4.3.1+dfsg/libr/bin/p/bin_z64.c:136:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (GameName, n64_header.Name, sizeof (n64_header.Name));
data/radare2-4.3.1+dfsg/libr/bin/pdb/fpo.c:26:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy(fpo_data, data, sizeof(SFPO_DATA_V2));
data/radare2-4.3.1+dfsg/libr/bin/pdb/omap.c:9:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (omap_entry, data, sizeof (SOmapEntry));
data/radare2-4.3.1+dfsg/libr/bin/pdb/pdb.c:162:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (sizes + i, &stream_size, 4);
data/radare2-4.3.1+dfsg/libr/bin/pdb/pdb.c:194:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (tmp, tmp_data + pos, num_pages * 4);
data/radare2-4.3.1+dfsg/libr/bin/pdb/pdb.c:410:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char signature[PDB7_SIGNATURE_LEN + 1];
data/radare2-4.3.1+dfsg/libr/bin/pdb/pdb.c:804:3:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
		strcpy (*command_field, "\"pf.");
data/radare2-4.3.1+dfsg/libr/bin/pdb/pdb.c:811:3:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
		strcpy (*command_field, "\"td enum ");
data/radare2-4.3.1+dfsg/libr/bin/pdb/pdb_downloader.c:59:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (archive_name, opt->dbg_file, archive_name_len + 1);
data/radare2-4.3.1+dfsg/libr/bin/pdb/stream_file.c:56:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (res, pdata + off_start, stream_file->end - off_start);
data/radare2-4.3.1+dfsg/libr/bin/pdb/stream_file.c:67:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy(res, pdata + off_start, size);
data/radare2-4.3.1+dfsg/libr/bin/pdb/stream_pe.c:30:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (sctn_header, ptmp, sctn_header_size);
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1023:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (*name, "array: ");
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1059:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (*name, "pointer to ");
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1098:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (*name, "modifier ");
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1114:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (*name, "proc ");
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1169:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (*name, "fieldlist ");
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1201:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (*name, "enum ");
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1255:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (*name, "arg_list");
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1292:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (*name, "mfunction ");
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1335:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (*name, "vthape");
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1401:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (*name, "nesttype ");
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1464:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy(*name, "(member) ");
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1503:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (*name, "onemethod ");
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1567:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		    memcpy(val->name_or_val, &lf_uqword, sizeof(SVal_LF_UQUADWORD));
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1579:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (val->name_or_val, &lf_qword, sizeof (SVal_LF_QUADWORD));
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1591:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (val->name_or_val, &lf_char, sizeof (SVal_LF_CHAR));
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1607:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (val->name_or_val, &lf_long, sizeof (SVal_LF_LONG));
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1623:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy(val->name_or_val, &lf_ulong, sizeof (SVal_LF_ULONG));
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1635:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (val->name_or_val, &lf_short, sizeof (SVal_LF_SHORT));
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1647:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy(val->name_or_val, &lf_ushort, sizeof (SVal_LF_USHORT));
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:2145:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (lf_arglist->arg_type, leaf_data, lf_arglist->count * 4);
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:2240:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (lf_vtshape->vt_descriptors, leaf_data, size);
data/radare2-4.3.1+dfsg/libr/bin/pdb/types.h:1244:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[PDB_SIZEOF_SECTION_NAME];
data/radare2-4.3.1+dfsg/libr/bp/bp.c:38:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (static_plugin, bp_static_plugins[i],
data/radare2-4.3.1+dfsg/libr/bp/bp.c:69:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (buf, b->bytes, b->length);
data/radare2-4.3.1+dfsg/libr/bp/bp.c:84:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (buf + i, b->bytes, b->length);
data/radare2-4.3.1+dfsg/libr/bp/bp.c:193:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (b->obytes, obytes, size);
data/radare2-4.3.1+dfsg/libr/config/config.c:510:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[128], *ov = NULL;
data/radare2-4.3.1+dfsg/libr/cons/2048.c:107:3:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
		strcpy (val0, "    ");
data/radare2-4.3.1+dfsg/libr/cons/2048.c:112:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char val0[32];
data/radare2-4.3.1+dfsg/libr/cons/2048.c:113:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char val1[32];
data/radare2-4.3.1+dfsg/libr/cons/2048.c:114:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char val2[32];
data/radare2-4.3.1+dfsg/libr/cons/2048.c:115:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char val3[32];
data/radare2-4.3.1+dfsg/libr/cons/canvas.c:133:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (tmp, start, size);
data/radare2-4.3.1+dfsg/libr/cons/canvas.c:136:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (start + padding + lap,  tmp + lap, size - lap);
data/radare2-4.3.1+dfsg/libr/cons/canvas.c:141:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (start + padding, tmp, size);
data/radare2-4.3.1+dfsg/libr/cons/canvas.c:321:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (c->b[c->y] + c->x, s_part, slen);
data/radare2-4.3.1+dfsg/libr/cons/canvas.c:380:6:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
					memcpy (o + olen, atr, len);
data/radare2-4.3.1+dfsg/libr/cons/canvas_line.c:298:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char chizzle[2] = {0}; // = '.';//my nizzle
data/radare2-4.3.1+dfsg/libr/cons/cons.c:63:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (data->grep, &I.context->grep, sizeof (RConsGrep));
data/radare2-4.3.1+dfsg/libr/cons/cons.c:93:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (&I.context->grep, data->grep, sizeof (RConsGrep));
data/radare2-4.3.1+dfsg/libr/cons/cons.c:371:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char buf[8];
data/radare2-4.3.1+dfsg/libr/cons/cons.c:641:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *p, white[1024];
data/radare2-4.3.1+dfsg/libr/cons/cons.c:663:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char white[1024];
data/radare2-4.3.1+dfsg/libr/cons/cons.c:863:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (CTX (lastOutput), CTX (buffer), CTX (buffer_len));
data/radare2-4.3.1+dfsg/libr/cons/cons.c:896:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char buf[8];
data/radare2-4.3.1+dfsg/libr/cons/cons.c:1020:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char white[1024];
data/radare2-4.3.1+dfsg/libr/cons/cons.c:1161:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (I.context->buffer + I.context->buffer_len, str, len);
data/radare2-4.3.1+dfsg/libr/cons/cons.c:1300:13:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
			int fd = open (tty? tty: "/dev/tty", O_RDONLY);
data/radare2-4.3.1+dfsg/libr/cons/cons.c:1319:15:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		I.columns = atoi (str);
data/radare2-4.3.1+dfsg/libr/cons/cons.c:1370:11:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		major = atoi (dot);
data/radare2-4.3.1+dfsg/libr/cons/cons.c:1372:11:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		minor = atoi (dot);
data/radare2-4.3.1+dfsg/libr/cons/cons.c:1374:14:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			release = atoi (info->release);
data/radare2-4.3.1+dfsg/libr/cons/cons.c:1527:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (b, I.context->buffer, I.context->buffer_len);
data/radare2-4.3.1+dfsg/libr/cons/cons.c:1562:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *inv[2] = {
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:150:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (cursor, I.clipboard, len);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:265:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[5] = {0};
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:466:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[R_LINE_BUFSIZE], *path = r_str_home (file);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:491:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		p = (char *) r_str_lastbut (path, R_SYS_DIR[0], NULL);	// TODO: use fs
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:650:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (I.buffer.data + delta, sel_widget->options[sel_widget->selection], strlen (sel_widget->options[sel_widget->selection]));
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:655:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (I.buffer.data, sel_widget->options[sel_widget->selection], I.buffer.length);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:743:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (p, argv[0], largv0);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:1241:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	signed char buf[10];
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:1844:6:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
					memcpy (I.buffer.data + I.buffer.index, buf, utflen);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:1855:6:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
					memcpy (I.buffer.data + I.buffer.length, buf, utflen);
data/radare2-4.3.1+dfsg/libr/cons/editor.c:9:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static char prompt[32];
data/radare2-4.3.1+dfsg/libr/cons/editor.c:48:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[128];
data/radare2-4.3.1+dfsg/libr/cons/grep.c:75:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	static char buf[R_CONS_GREP_BUFSIZE];
data/radare2-4.3.1+dfsg/libr/cons/grep.c:140:17:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			grep->sort = atoi (str);
data/radare2-4.3.1+dfsg/libr/cons/grep.c:145:22:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				grep->sort_row = atoi (++str);
data/radare2-4.3.1+dfsg/libr/cons/grep.c:154:17:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			grep->zoom = atoi (++str);
data/radare2-4.3.1+dfsg/libr/cons/grep.c:681:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (cons->context->buffer, r_strbuf_getbin (ob, NULL), ob_len);
data/radare2-4.3.1+dfsg/libr/cons/grep.c:692:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (ptr, str, len);\
data/radare2-4.3.1+dfsg/libr/cons/grep.c:693:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (ptr + len, "\n", 2);\
data/radare2-4.3.1+dfsg/libr/cons/grep.c:738:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (in, buf, len);
data/radare2-4.3.1+dfsg/libr/cons/grep.c:791:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
						memcpy (out + outlen, tok, toklen);
data/radare2-4.3.1+dfsg/libr/cons/grep.c:792:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
						memcpy (out + outlen + toklen, " ", 2);
data/radare2-4.3.1+dfsg/libr/cons/grep.c:816:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (buf, out, len);
data/radare2-4.3.1+dfsg/libr/cons/html.c:8:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		static char buf[32];
data/radare2-4.3.1+dfsg/libr/cons/html.c:9:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		sprintf (buf, "#%02x%02x%02x", r, g, b);
data/radare2-4.3.1+dfsg/libr/cons/hud.c:111:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char mask[HUD_BUF_SIZE];
data/radare2-4.3.1+dfsg/libr/cons/hud.c:200:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char user_input[HUD_BUF_SIZE], hud_prompt[HUD_BUF_SIZE + 1];
data/radare2-4.3.1+dfsg/libr/cons/hud.c:261:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (hud_prompt + I(line)->buffer.index, "|", 1);
data/radare2-4.3.1+dfsg/libr/cons/input.c:52:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char xpos[32];
data/radare2-4.3.1+dfsg/libr/cons/input.c:53:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char ypos[32];
data/radare2-4.3.1+dfsg/libr/cons/input.c:78:21:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		r_cons_set_click (atoi (xpos), atoi (ypos));
data/radare2-4.3.1+dfsg/libr/cons/input.c:78:34:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		r_cons_set_click (atoi (xpos), atoi (ypos));
data/radare2-4.3.1+dfsg/libr/cons/input.c:168:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char pos[8] = {0};
data/radare2-4.3.1+dfsg/libr/cons/input.c:174:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char vel[8] = {0};
data/radare2-4.3.1+dfsg/libr/cons/input.c:191:12:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
							x = atoi (pos);
data/radare2-4.3.1+dfsg/libr/cons/input.c:197:16:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				int nvel = atoi (vel);
data/radare2-4.3.1+dfsg/libr/cons/input.c:210:9:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				y = atoi (pos);
data/radare2-4.3.1+dfsg/libr/cons/input.c:588:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[2];
data/radare2-4.3.1+dfsg/libr/cons/input.c:666:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[256] = {0};
data/radare2-4.3.1+dfsg/libr/cons/input.c:707:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[1024];
data/radare2-4.3.1+dfsg/libr/cons/output.c:11:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char white[1024];
data/radare2-4.3.1+dfsg/libr/cons/output.c:152:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char white[1024];
data/radare2-4.3.1+dfsg/libr/cons/output.c:172:6:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
					char white[1024];
data/radare2-4.3.1+dfsg/libr/cons/output.c:220:11:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
						y = atoi ((const char *)ptr);
data/radare2-4.3.1+dfsg/libr/cons/output.c:231:11:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
						x = atoi (ptr2);
data/radare2-4.3.1+dfsg/libr/cons/output.c:380:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char white[1024];
data/radare2-4.3.1+dfsg/libr/cons/pager.c:13:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *inv[2] = {
data/radare2-4.3.1+dfsg/libr/cons/pal.c:258:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (&dst->cpal, &src->cpal, sizeof (src->cpal));
data/radare2-4.3.1+dfsg/libr/cons/pal.c:287:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char out[128];
data/radare2-4.3.1+dfsg/libr/cons/pal.c:425:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char fg[32], bg[32];
data/radare2-4.3.1+dfsg/libr/cons/pal.c:463:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char bg[32];
data/radare2-4.3.1+dfsg/libr/cons/pal.c:485:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char fg[32], bg[32];
data/radare2-4.3.1+dfsg/libr/cons/rgb.c:151:12:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			int n = atoi (p + 5);
data/radare2-4.3.1+dfsg/libr/cons/rgb.c:161:10:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				*r = atoi (p);
data/radare2-4.3.1+dfsg/libr/cons/rgb.c:168:10:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				*g = atoi (q + 1);
data/radare2-4.3.1+dfsg/libr/cons/rgb.c:175:10:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				*b = atoi (q + 1);
data/radare2-4.3.1+dfsg/libr/cons/stiv.c:146:6:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	w = atoi (argv[1]);
data/radare2-4.3.1+dfsg/libr/cons/stiv.c:147:6:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	h = atoi (argv[2]);
data/radare2-4.3.1+dfsg/libr/cons/utf8.c:22:11:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	unsigned char   buffer[4];
data/radare2-4.3.1+dfsg/libr/cons/utf8.c:68:8:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
		fd = open (dev, O_RDWR | O_NOCTTY);
data/radare2-4.3.1+dfsg/libr/core/agraph.c:254:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char title[TITLE_LEN];
data/radare2-4.3.1+dfsg/libr/core/agraph.c:336:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char title[TITLE_LEN];
data/radare2-4.3.1+dfsg/libr/core/agraph.c:3288:9:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		nth = atoi (nth_string);
data/radare2-4.3.1+dfsg/libr/core/agraph.c:3898:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[256];
data/radare2-4.3.1+dfsg/libr/core/agraph.c:3906:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (buf, "s ");
data/radare2-4.3.1+dfsg/libr/core/agraph.c:3919:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char obuf[R_CORE_ASMQJMPS_LEN_LETTERS + 1];
data/radare2-4.3.1+dfsg/libr/core/agraph.c:4508:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char buf[256];
data/radare2-4.3.1+dfsg/libr/core/anal_tp.c:270:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char arr[10] = {0};
data/radare2-4.3.1+dfsg/libr/core/anal_tp.c:352:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char regname[REGNAME_SIZE] = {0};
data/radare2-4.3.1+dfsg/libr/core/anal_tp.c:395:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
							char formatstr[0x200];
data/radare2-4.3.1+dfsg/libr/core/anal_tp.c:445:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char tmp[REGNAME_SIZE] = {0};
data/radare2-4.3.1+dfsg/libr/core/anal_tp.c:505:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char prev_type[256] = {0};
data/radare2-4.3.1+dfsg/libr/core/anal_tp.c:621:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char src[REGNAME_SIZE] = {0};
data/radare2-4.3.1+dfsg/libr/core/anal_tp.c:648:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
						char nsrc[REGNAME_SIZE] = {0};
data/radare2-4.3.1+dfsg/libr/core/anal_tp.c:676:6:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
					char reg[REGNAME_SIZE] = {0};
data/radare2-4.3.1+dfsg/libr/core/canal.c:1388:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char cmd[1024], file[1024], *cmdstr = NULL, *filestr = NULL, *str = NULL;
data/radare2-4.3.1+dfsg/libr/core/canal.c:1400:6:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
					memcpy (cmdstr + idx, filestr, flen);
data/radare2-4.3.1+dfsg/libr/core/canal.c:1403:7:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
						strcpy (cmdstr + idx, "\\n");
data/radare2-4.3.1+dfsg/libr/core/canal.c:1406:7:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
						strcpy (cmdstr + idx, "<br />");
data/radare2-4.3.1+dfsg/libr/core/canal.c:1409:7:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
						strcpy (cmdstr + idx, "\\l");
data/radare2-4.3.1+dfsg/libr/core/canal.c:1472:33:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                                char key[128];
data/radare2-4.3.1+dfsg/libr/core/canal.c:1473:33:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                                char val[128];
data/radare2-4.3.1+dfsg/libr/core/canal.c:1548:41:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                                        char key[128];
data/radare2-4.3.1+dfsg/libr/core/canal.c:1602:25:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                        char key[128];
data/radare2-4.3.1+dfsg/libr/core/canal.c:1831:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char ns[64];
data/radare2-4.3.1+dfsg/libr/core/canal.c:3174:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char xref[128], ccstr[128];
data/radare2-4.3.1+dfsg/libr/core/canal.c:3210:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char temp[64];
data/radare2-4.3.1+dfsg/libr/core/canal.c:4789:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (esil, &esil_cpy, sizeof (esil_cpy));
data/radare2-4.3.1+dfsg/libr/core/casm.c:74:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *tok, *tokens[1024], *code = NULL, *ptr;
data/radare2-4.3.1+dfsg/libr/core/cbin.c:38:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char ws[16];
data/radare2-4.3.1+dfsg/libr/core/cbin.c:619:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char str[R_FLAG_NAME_SIZE];
data/radare2-4.3.1+dfsg/libr/core/cbin.c:1176:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char str[R_FLAG_NAME_SIZE];
data/radare2-4.3.1+dfsg/libr/core/cbin.c:1393:18:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			int ordinal = atoi (import);
data/radare2-4.3.1+dfsg/libr/core/cbin.c:1431:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char flagname[R_FLAG_NAME_SIZE];
data/radare2-4.3.1+dfsg/libr/core/cbin.c:2596:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char humansz[8];
data/radare2-4.3.1+dfsg/libr/core/cbin.c:3754:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char humansz[8];
data/radare2-4.3.1+dfsg/libr/core/cconfig.c:122:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char bits[32];
data/radare2-4.3.1+dfsg/libr/core/cconfig.c:149:5:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
				strcat (bits, "_8");
data/radare2-4.3.1+dfsg/libr/core/cconfig.c:152:5:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
				strcat (bits, "_16");
data/radare2-4.3.1+dfsg/libr/core/cconfig.c:155:5:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
				strcat (bits, "_32");
data/radare2-4.3.1+dfsg/libr/core/cconfig.c:158:5:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
				strcat (bits, "_64");
data/radare2-4.3.1+dfsg/libr/core/cconfig.c:161:5:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
				strcat (bits, "_0");
data/radare2-4.3.1+dfsg/libr/core/cconfig.c:535:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char asmparser[32];
data/radare2-4.3.1+dfsg/libr/core/cconfig.c:1284:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[128];
data/radare2-4.3.1+dfsg/libr/core/cconfig.c:1366:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char cmd[64];
data/radare2-4.3.1+dfsg/libr/core/cconfig.c:1380:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char cmd[64];
data/radare2-4.3.1+dfsg/libr/core/cconfig.c:1521:37:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	r_cons_singleton ()->fix_columns = atoi (node->value);
data/radare2-4.3.1+dfsg/libr/core/cconfig.c:2048:10:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	int n = atoi (node->value);
data/radare2-4.3.1+dfsg/libr/core/cconfig.c:2232:10:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	int n = atoi (node->value);
data/radare2-4.3.1+dfsg/libr/core/cconfig.c:2804:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[128], *p, *tmpdir;
data/radare2-4.3.1+dfsg/libr/core/cconfig.c:3197:26:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	SETICB ("log.level", p? atoi(p): R_DEFAULT_LOGLVL, cb_log_config_level, "Target log level/severity"\
data/radare2-4.3.1+dfsg/libr/core/cconfig.c:3203:31:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	SETICB ("log.traplevel", p ? atoi(p) : R_LOGLVL_FATAL, cb_log_config_traplevel, "Log level for trapping R2 when hit"\
data/radare2-4.3.1+dfsg/libr/core/cfile.c:652:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char msg[2];
data/radare2-4.3.1+dfsg/libr/core/cio.c:150:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buf, core->block, core->blocksize);
data/radare2-4.3.1+dfsg/libr/core/cmd.c:494:12:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			lines = atoi (arg);
data/radare2-4.3.1+dfsg/libr/core/cmd.c:607:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buf + 1, input, i + 1);
data/radare2-4.3.1+dfsg/libr/core/cmd.c:847:13:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		int ret = atoi (res);
data/radare2-4.3.1+dfsg/libr/core/cmd.c:976:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char firstLine[128] = {0};
data/radare2-4.3.1+dfsg/libr/core/cmd.c:1422:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[1024], *out;
data/radare2-4.3.1+dfsg/libr/core/cmd.c:1802:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char humansz[8];
data/radare2-4.3.1+dfsg/libr/core/cmd.c:2089:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char arg[256];
data/radare2-4.3.1+dfsg/libr/core/cmd.c:2129:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (arg, input, end - input);
data/radare2-4.3.1+dfsg/libr/core/cmd.c:2254:7:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		n = atoi (input);
data/radare2-4.3.1+dfsg/libr/core/cmd.c:3443:29:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
					r_io_use_fd (core->io, atoi (ptr + 2));
data/radare2-4.3.1+dfsg/libr/core/cmd.c:4291:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char cmd2[1024];
data/radare2-4.3.1+dfsg/libr/core/cmd.c:4310:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char buf[1024];
data/radare2-4.3.1+dfsg/libr/core/cmd.c:4311:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char cmd2[1024];
data/radare2-4.3.1+dfsg/libr/core/cmd.c:4896:12:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	int rep = atoi (number_str);
data/radare2-4.3.1+dfsg/libr/core/cmd.c:4946:10:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			fdn = atoi (fd_str);
data/radare2-4.3.1+dfsg/libr/core/cmd.c:5275:25:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	r_io_use_fd (core->io, atoi (arg_str));
data/radare2-4.3.1+dfsg/libr/core/cmd.c:5497:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char buf[1024];
data/radare2-4.3.1+dfsg/libr/core/cmd.c:6300:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char string[4096];
data/radare2-4.3.1+dfsg/libr/core/cmd.c:6386:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char string[4096];
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:920:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char cmd[128];
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:1470:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (&n, core->block + i, sizeof (ut32));
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:1510:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char str[64];
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:1692:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char strsub[128] = { 0 };
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:1839:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char disasm[128] = { 0 };
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:2874:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char *names[100];
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:3560:16:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				int bits = atoi (input + 3);
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:3586:15:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
						int n = atoi (input + 3);
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:4358:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char name[32];
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:4368:46:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
						__anal_reg_list (core, R_REG_TYPE_GPR, atoi (name), '\0');
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:4837:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[128];
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:4840:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char uri[32];
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:4841:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char nomalloc[256];
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:4963:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char val[128], *v;
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:5078:22:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
#define R_NEW_DUP(x) memcpy((void*)malloc(sizeof(x)), &(x), sizeof(x))
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:6743:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char arg[32], pre[128];
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:6761:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (pre + spaces, "- ");
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:6771:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char taddr[64];
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:6791:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char taddr[64];
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:6814:6:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
					char taddr[64];
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:6825:6:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
					char taddr[64];
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:6858:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char taddr[64];
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:6910:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char str[512];
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:7306:6:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
					char str[512];
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:7505:52:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			r_anal_hint_set_size (core->anal, core->offset, atoi (input + 1));
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:7542:54:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			r_anal_hint_set_opcode (core->anal, core->offset, atoi (input + 1));
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:7846:20:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			        color = atoi(args[2]);
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:9628:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char regname[8];
data/radare2-4.3.1+dfsg/libr/core/cmd_api.c:272:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (inp, c->cmd_short, lcmd);
data/radare2-4.3.1+dfsg/libr/core/cmd_api.c:273:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (inp + lcmd, input + c->cmd_len, linp + 1);
data/radare2-4.3.1+dfsg/libr/core/cmd_api.c:433:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (macro->code+codelen, bufp, lbufp+1);
data/radare2-4.3.1+dfsg/libr/core/cmd_api.c:437:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (macro->code+codelen, bufp, lbufp+1);
data/radare2-4.3.1+dfsg/libr/core/cmd_api.c:526:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *pcmd, cmd[R_CMD_MAXLEN];
data/radare2-4.3.1+dfsg/libr/core/cmd_api.c:540:6:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
					memcpy (cmd+i, word, wordlen+1);
data/radare2-4.3.1+dfsg/libr/core/cmd_api.c:548:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char off[32];
data/radare2-4.3.1+dfsg/libr/core/cmd_api.c:555:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (cmd+i, off, offlen+1);
data/radare2-4.3.1+dfsg/libr/core/cmd_cmp.c:97:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char cmd[128];
data/radare2-4.3.1+dfsg/libr/core/cmd_cmp.c:315:12:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				size = atoi (q);
data/radare2-4.3.1+dfsg/libr/core/cmd_cmp.c:359:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char colpad[80];
data/radare2-4.3.1+dfsg/libr/core/cmd_cmp.c:636:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (filled, input, strlen (input) + 1);
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:655:10:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		size = atoi (arg + 1);
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:657:10:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		size = atoi (str + 1);
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:664:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char tn_key[TN_KEY_LEN];
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:1027:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char file[512], file2[512];
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:1099:9:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		pid = atoi (input + 2);
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:1103:15:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			sig = ptr? atoi (ptr + 1): 0;
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:1120:37:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				r_debug_thread_list (core->dbg, atoi (input + 3), 'j');
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:1124:36:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			r_debug_thread_list (core->dbg, atoi (input + 2), 0);
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:1188:33:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			int pid = (input[2] == ' ')? atoi (input + 2): core->dbg->pid;
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:1291:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
						memcpy (snap->data, data, snap->size);
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:1337:36:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		r_debug_snap_set_idx (core->dbg, atoi (input + 1));
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:1340:36:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		r_debug_snap_comment (core->dbg, atoi (input + 1), strchr (input, ' '));
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:1343:30:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		__r_debug_snap_diff (core, atoi (input + 1));
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:1361:15:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	int pcbits = atoi (arg);
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:2253:13:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	int bits = atoi (str);
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:2289:1:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
char *pack_format[NUM_PACK_TYPES] = { "%s0x%02" PFMT64x, "%s0x%04" PFMT64x, "%s0x%08" PFMT64x,
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:2302:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
						memcpy ((void*)&dres, (void*)&res, 8);
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:2306:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
						memcpy ((void*)&fres, (void*)&res, 4);
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:2378:16:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	int newbits = atoi ((str&&*str)? str + 1: "");
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:2554:38:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				bool v = !strcmp (eq, "true") || atoi (eq);
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:2617:34:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			r_debug_drx_unset (core->dbg, atoi (str + 2));
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:2681:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char pack_show[NUM_PACK_TYPES] = { 0, 0, 0, 0, 0, 0};
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:2898:11:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			size = atoi (regname);
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:2904:13:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
					size = atoi (arg);
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:3061:10:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		size = atoi (str + 1);
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:3102:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char flagdesc[1024], flagdesc2[1024];
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:3868:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char dbkey[TN_KEY_LEN];
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:4169:17:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			int signum = atoi (arg);
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:4191:19:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
					int signum = atoi (name);
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:4242:13:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		int sig = atoi (input);
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:4493:14:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			int pid = atoi (ptr+1);
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:4554:9:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		pid = atoi (input + 2);
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:4682:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char delb[128] = R_EMPTY;
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:4685:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf(delb, "db 0x%"PFMT64x"", addr);
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:4713:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char delb[128] = R_EMPTY;
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:4716:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf(delb, "db 0x%"PFMT64x"", addr);
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:4794:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char str[128];
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:4831:34:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			r_debug_trace_tag (core->dbg, atoi (input + 3));
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:4964:15:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				int idx = atoi (input + 3);
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:5013:42:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
					r_debug_session_comment (core->dbg, atoi (input + 3), strchr (input + 4, ' '));
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:5019:41:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				r_debug_session_set_idx (core->dbg, atoi (input + 4));
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:5045:14:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				int fd = atoi (input + 2);
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:5060:14:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				int fd = atoi (input + 2);
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:5077:14:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				int fd = atoi (input + 2);
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:5093:14:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				int fd = atoi (input + 2);
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:5109:14:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				int fd = atoi (input + 2);
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:5414:14:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			int pid = atoi (input + 1);
data/radare2-4.3.1+dfsg/libr/core/cmd_eval.c:550:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
					 char color[32];
data/radare2-4.3.1+dfsg/libr/core/cmd_flag.c:772:9:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				if (atoi (input+1) + ASCII_MAX + 1 < UT8_MAX) {
data/radare2-4.3.1+dfsg/libr/core/cmd_flag.c:775:36:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
					r_core_visual_mark_set (core, atoi (input+1) + ASCII_MAX + 1, addr);
data/radare2-4.3.1+dfsg/libr/core/cmd_flag.c:1046:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char cmd[128];
data/radare2-4.3.1+dfsg/libr/core/cmd_flag.c:1063:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char cmd[128];
data/radare2-4.3.1+dfsg/libr/core/cmd_help.c:19:13:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	ut32 res = atoi (a);
data/radare2-4.3.1+dfsg/libr/core/cmd_help.c:309:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char num[32];
data/radare2-4.3.1+dfsg/libr/core/cmd_help.c:446:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *p, out[128] = R_EMPTY;
data/radare2-4.3.1+dfsg/libr/core/cmd_help.c:569:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char unit[8];
data/radare2-4.3.1+dfsg/libr/core/cmd_help.c:578:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char *asnum, unit[8];
data/radare2-4.3.1+dfsg/libr/core/cmd_help.c:965:12:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			int x = atoi (input + 2);
data/radare2-4.3.1+dfsg/libr/core/cmd_help.c:967:17:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			int y = arg? atoi (arg + 1): 0;
data/radare2-4.3.1+dfsg/libr/core/cmd_help.c:1139:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char foo[1024];
data/radare2-4.3.1+dfsg/libr/core/cmd_info.c:85:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char ws[16];
data/radare2-4.3.1+dfsg/libr/core/cmd_info.c:256:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char humansz[8];
data/radare2-4.3.1+dfsg/libr/core/cmd_info.c:294:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char humansz[8];
data/radare2-4.3.1+dfsg/libr/core/cmd_log.c:101:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char prompt[64];
data/radare2-4.3.1+dfsg/libr/core/cmd_log.c:102:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[1024];
data/radare2-4.3.1+dfsg/libr/core/cmd_log.c:105:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char msg[2048];
data/radare2-4.3.1+dfsg/libr/core/cmd_log.c:160:12:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				return atoi (m + 1);
data/radare2-4.3.1+dfsg/libr/core/cmd_log.c:165:10:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		return atoi (nl?nl + 1: s);
data/radare2-4.3.1+dfsg/libr/core/cmd_log.c:223:6:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	n = atoi (input2);
data/radare2-4.3.1+dfsg/libr/core/cmd_log.c:224:12:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	n2 = arg? atoi (arg + 1): 0;
data/radare2-4.3.1+dfsg/libr/core/cmd_log.c:277:8:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			if (atoi (input + 1) > 0 || (input[1] == '0')) {
data/radare2-4.3.1+dfsg/libr/core/cmd_meta.c:146:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char aoffset[64];
data/radare2-4.3.1+dfsg/libr/core/cmd_meta.c:157:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char file[1024];
data/radare2-4.3.1+dfsg/libr/core/cmd_meta.c:230:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char aoffset[64];
data/radare2-4.3.1+dfsg/libr/core/cmd_meta.c:718:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char key[100];
data/radare2-4.3.1+dfsg/libr/core/cmd_meta.c:828:6:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
					char tmp[256] = R_EMPTY;
data/radare2-4.3.1+dfsg/libr/core/cmd_open.c:373:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char temp[4];
data/radare2-4.3.1+dfsg/libr/core/cmd_open.c:819:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char temp[32];
data/radare2-4.3.1+dfsg/libr/core/cmd_open.c:1529:13:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		int num = atoi (input + 2);
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:1253:13:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		int nth = atoi (_input + 1);
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:1588:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (buf, core->block, core->blocksize);
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:1635:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *colors[10] = {NULL};
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:1673:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char addrpad[32];
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:1683:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (bytes + addrpadlen, "- offset -  ");
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:1691:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (bytes + j, "     ");
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:1694:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		sprintf (bytes + j + i, "%0X", i % 17);
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:1855:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf (ebytes, "%02x", ch);
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:1863:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf (echars, "%c", IS_PRINTABLE (ch)? ch: '.');
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:1912:6:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
					memcpy (out + off, note[j], sz);
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:1958:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char cmd[128], *p;
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:1961:14:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	int count = atoi (str);
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:2010:3:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
		strcpy (cmd, "pf ");
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:2175:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[2];
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:2203:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char offstr[128];
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:2862:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char algo[128];
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:5879:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
						memcpy (block1, block, bs);
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:6462:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char buf[32];
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:6541:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (block, core->block, len);
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:7067:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char nowstr[64] = {0};
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:7216:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[64];
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:7227:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char space[32] = {
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:7234:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char rgbstr[32];
data/radare2-4.3.1+dfsg/libr/core/cmd_search.c:480:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf (p, "%02x", buf[i]);
data/radare2-4.3.1+dfsg/libr/core/cmd_search.c:484:6:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
					strcpy (p, "...");
data/radare2-4.3.1+dfsg/libr/core/cmd_search.c:608:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char bound_in[32];
data/radare2-4.3.1+dfsg/libr/core/cmd_search.c:609:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char bound_from[32];
data/radare2-4.3.1+dfsg/libr/core/cmd_search.c:610:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char bound_to[32];
data/radare2-4.3.1+dfsg/libr/core/cmd_search.c:1909:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char str[512];
data/radare2-4.3.1+dfsg/libr/core/cmd_search.c:2096:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
						char flag[64];
data/radare2-4.3.1+dfsg/libr/core/cmd_search.c:2269:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
						char tmp[128] = {
data/radare2-4.3.1+dfsg/libr/core/cmd_search.c:2760:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buf, core->block, bufsz);
data/radare2-4.3.1+dfsg/libr/core/cmd_search.c:2766:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (cmphash, hashValue, hashLength);
data/radare2-4.3.1+dfsg/libr/core/cmd_search.c:3282:8:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
							memcpy (hashValue, (const ut8*)&n, sizeof (ut32));
data/radare2-4.3.1+dfsg/libr/core/cmd_search.c:3421:13:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			int ps = atoi (input + param_offset);
data/radare2-4.3.1+dfsg/libr/core/cmd_search.c:3439:33:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		search_similar_pattern (core, atoi (input + 1), &param);
data/radare2-4.3.1+dfsg/libr/core/cmd_search.c:3449:25:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			int err = 1, vsize = atoi (input + 1);
data/radare2-4.3.1+dfsg/libr/core/cmd_seek.c:392:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char key[128];
data/radare2-4.3.1+dfsg/libr/core/cmd_seek.c:832:22:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		printPadded (core, atoi (input + 1));
data/radare2-4.3.1+dfsg/libr/core/cmd_type.c:311:12:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			lines = atoi (arg);
data/radare2-4.3.1+dfsg/libr/core/cmd_type.c:442:31:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		pj_ki (pj, "size", size_s ? atoi (size_s) : 0); // key value pair of string and int
data/radare2-4.3.1+dfsg/libr/core/cmd_type.c:712:30:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	pj_ki (pj, "size", size_s ? atoi (size_s) : -1);
data/radare2-4.3.1+dfsg/libr/core/cmd_write.c:730:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char _fn[32];
data/radare2-4.3.1+dfsg/libr/core/cmd_zign.c:246:16:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			graph->cc = atoi (ptr + 3);
data/radare2-4.3.1+dfsg/libr/core/cmd_zign.c:248:18:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			graph->nbbs = atoi (ptr + 5);
data/radare2-4.3.1+dfsg/libr/core/cmd_zign.c:250:19:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			graph->edges = atoi (ptr + 6);
data/radare2-4.3.1+dfsg/libr/core/cmd_zign.c:252:18:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			graph->ebbs = atoi (ptr + 5);
data/radare2-4.3.1+dfsg/libr/core/cmd_zign.c:254:19:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			graph->bbsum = atoi (ptr + 6);
data/radare2-4.3.1+dfsg/libr/core/cmd_zign.c:314:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (bytes, hexbytes, blen);
data/radare2-4.3.1+dfsg/libr/core/cmd_zign.c:315:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (mask, sep, blen);
data/radare2-4.3.1+dfsg/libr/core/cmd_zign.c:768:12:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			nargs = atoi (v);
data/radare2-4.3.1+dfsg/libr/core/core.c:188:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char t[R_CORE_ASMQJMPS_LEN_LETTERS + 1] = {0};
data/radare2-4.3.1+dfsg/libr/core/core.c:542:12:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			refsz = atoi (str + 1);
data/radare2-4.3.1+dfsg/libr/core/core.c:759:26:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				return getref (core, atoi (str + 2), 'r', R_ANAL_REF_TYPE_DATA);
data/radare2-4.3.1+dfsg/libr/core/core.c:785:25:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			return getref (core, atoi (str + 2), 'r', R_ANAL_REF_TYPE_CALL);
data/radare2-4.3.1+dfsg/libr/core/core.c:787:25:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			return getref (core, atoi (str + 2), 'r', R_ANAL_REF_TYPE_CODE);
data/radare2-4.3.1+dfsg/libr/core/core.c:789:25:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			return getref (core, atoi (str + 2), 'x', R_ANAL_REF_TYPE_CALL);
data/radare2-4.3.1+dfsg/libr/core/core.c:1542:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[1024];
data/radare2-4.3.1+dfsg/libr/core/core.c:1654:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char arg[256];
data/radare2-4.3.1+dfsg/libr/core/core.c:1661:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (arg, p, e - p);
data/radare2-4.3.1+dfsg/libr/core/core.c:1849:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char pfx[2];
data/radare2-4.3.1+dfsg/libr/core/core.c:1966:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char *paths[2] = { zignpath, NULL };
data/radare2-4.3.1+dfsg/libr/core/core.c:2792:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[32];
data/radare2-4.3.1+dfsg/libr/core/core.c:2948:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char tmp[128];
data/radare2-4.3.1+dfsg/libr/core/core.c:2985:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char p[64], sec[32];
data/radare2-4.3.1+dfsg/libr/core/core.c:3016:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char line[4096];
data/radare2-4.3.1+dfsg/libr/core/core.c:3266:6:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
					memcpy (ptr + 5, core->block, i); //core->blocksize);
data/radare2-4.3.1+dfsg/libr/core/core.c:3280:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char bufr[8], *bufw = NULL;
data/radare2-4.3.1+dfsg/libr/core/core.c:3342:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (bufw + 5, cmd_output, cmd_len);
data/radare2-4.3.1+dfsg/libr/core/core.c:3397:6:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
					char line[256] = {0};
data/radare2-4.3.1+dfsg/libr/core/core.c:3544:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char str[1024];
data/radare2-4.3.1+dfsg/libr/core/core.c:3558:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char code[1024];
data/radare2-4.3.1+dfsg/libr/core/corelog.c:79:19:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			runLine (core, atoi (buf), sp + 1);
data/radare2-4.3.1+dfsg/libr/core/disasm.c:74:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char str[1024], strsub[1024];
data/radare2-4.3.1+dfsg/libr/core/disasm.c:422:13:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
			case 16: strcpy (cmt, " (thumb)"); break;
data/radare2-4.3.1+dfsg/libr/core/disasm.c:423:13:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
			case 32: strcpy (cmt, " (arm)"); break;
data/radare2-4.3.1+dfsg/libr/core/disasm.c:424:13:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
			case 64: strcpy (cmt, " (aarch64)"); break;
data/radare2-4.3.1+dfsg/libr/core/disasm.c:437:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	static char section[128] = "";
data/radare2-4.3.1+dfsg/libr/core/disasm.c:990:15:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				int ret = atoi (strchr (ptr, '.') + 1);
data/radare2-4.3.1+dfsg/libr/core/disasm.c:1818:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char cmt[32];
data/radare2-4.3.1+dfsg/libr/core/disasm.c:1897:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char spaces[32];
data/radare2-4.3.1+dfsg/libr/core/disasm.c:2221:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char addr[64];
data/radare2-4.3.1+dfsg/libr/core/disasm.c:2412:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char key[100];
data/radare2-4.3.1+dfsg/libr/core/disasm.c:2700:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char spaces [32];
data/radare2-4.3.1+dfsg/libr/core/disasm.c:2825:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char spaces [32];
data/radare2-4.3.1+dfsg/libr/core/disasm.c:2850:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char msg[64];
data/radare2-4.3.1+dfsg/libr/core/disasm.c:2947:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char key[100];
data/radare2-4.3.1+dfsg/libr/core/disasm.c:3141:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char extra[128];
data/radare2-4.3.1+dfsg/libr/core/disasm.c:3226:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char indent[128];
data/radare2-4.3.1+dfsg/libr/core/disasm.c:3955:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char str[128] = {0};
data/radare2-4.3.1+dfsg/libr/core/disasm.c:4027:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char addrstr[32] = {0};
data/radare2-4.3.1+dfsg/libr/core/disasm.c:4261:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char str[64], *msg = NULL;
data/radare2-4.3.1+dfsg/libr/core/disasm.c:4566:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char key[32];
data/radare2-4.3.1+dfsg/libr/core/disasm.c:5274:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char cmt[32];
data/radare2-4.3.1+dfsg/libr/core/disasm.c:5869:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char str[512];
data/radare2-4.3.1+dfsg/libr/core/disasm.c:5980:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char opstr[256];
data/radare2-4.3.1+dfsg/libr/core/disasm.c:6185:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char str[128];
data/radare2-4.3.1+dfsg/libr/core/disasm.c:6253:8:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
							memcpy (dst, src, len);
data/radare2-4.3.1+dfsg/libr/core/disasm.c:6529:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char opstr[128] = {
data/radare2-4.3.1+dfsg/libr/core/hack.c:101:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (str + i * 2, nopcode, nopsize*2);
data/radare2-4.3.1+dfsg/libr/core/hack.c:211:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (str + (i * 2), "90", 2);
data/radare2-4.3.1+dfsg/libr/core/libs.c:22:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (instance, hand, sizeof (struct r_ ## x ## _plugin_t));\
data/radare2-4.3.1+dfsg/libr/core/linux_heap_glibc.c:138:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char units[8];
data/radare2-4.3.1+dfsg/libr/core/linux_heap_glibc.c:470:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char title[256], chunk[256];
data/radare2-4.3.1+dfsg/libr/core/p/core_java.c:863:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (name, buffer+3, len);
data/radare2-4.3.1+dfsg/libr/core/p/core_java.c:1714:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char cmd_buf [50];
data/radare2-4.3.1+dfsg/libr/core/p/core_java.c:1838:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (name, p, n-p);
data/radare2-4.3.1+dfsg/libr/core/panels.c:141:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static char *menus_Colors[128];
data/radare2-4.3.1+dfsg/libr/core/panels.c:1728:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[4095];
data/radare2-4.3.1+dfsg/libr/core/panels.c:1731:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (buf, "\"CC ");
data/radare2-4.3.1+dfsg/libr/core/panels.c:1742:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
			strcpy (buf, "CC-");
data/radare2-4.3.1+dfsg/libr/core/panels.c:1746:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (buf, "\"CC-", 5);
data/radare2-4.3.1+dfsg/libr/core/panels.c:1749:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (buf, "\"CC!", 5);
data/radare2-4.3.1+dfsg/libr/core/panels.c:1752:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (buf, "\"CC ", 4);
data/radare2-4.3.1+dfsg/libr/core/panels.c:2040:6:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	if (atoi (word)) {
data/radare2-4.3.1+dfsg/libr/core/panels.c:3722:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[128];
data/radare2-4.3.1+dfsg/libr/core/panels.c:3740:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char addrBuf[128], rw[128];
data/radare2-4.3.1+dfsg/libr/core/panels.c:5547:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char cmd[128] = {0};
data/radare2-4.3.1+dfsg/libr/core/panels.c:5758:34:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		__set_geometry (&p->view->pos, atoi (x), atoi (y), atoi (w),atoi (h));
data/radare2-4.3.1+dfsg/libr/core/panels.c:5758:44:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		__set_geometry (&p->view->pos, atoi (x), atoi (y), atoi (w),atoi (h));
data/radare2-4.3.1+dfsg/libr/core/panels.c:5758:54:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		__set_geometry (&p->view->pos, atoi (x), atoi (y), atoi (w),atoi (h));
data/radare2-4.3.1+dfsg/libr/core/panels.c:5758:63:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		__set_geometry (&p->view->pos, atoi (x), atoi (y), atoi (w),atoi (h));
data/radare2-4.3.1+dfsg/libr/core/panels.c:5865:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[128];
data/radare2-4.3.1+dfsg/libr/core/panels.c:6222:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char tmp[64], *between;
data/radare2-4.3.1+dfsg/libr/core/panels.c:6227:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char replace[64];
data/radare2-4.3.1+dfsg/libr/core/patch.c:51:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char tmp[128];
data/radare2-4.3.1+dfsg/libr/core/project.c:359:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char thname[16] = {0};
data/radare2-4.3.1+dfsg/libr/core/project.c:489:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[256], *file = NULL;
data/radare2-4.3.1+dfsg/libr/core/pseudo.c:60:8:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
							memcpy (copy, ctx.right, ctx.rightlen);
data/radare2-4.3.1+dfsg/libr/core/pseudo.c:62:8:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
							memcpy (ctx.right + ctx.rightlen - ctx.leftlen, ctx.left, ctx.leftlen);
data/radare2-4.3.1+dfsg/libr/core/pseudo.c:80:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
						memcpy (copy, ctx.right, ctx.leftlen);
data/radare2-4.3.1+dfsg/libr/core/pseudo.c:81:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
						memcpy (ctx.right, ctx.left, ctx.leftlen);
data/radare2-4.3.1+dfsg/libr/core/pseudo.c:82:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
						memcpy (ctx.left, copy, ctx.leftlen);
data/radare2-4.3.1+dfsg/libr/core/pseudo.c:230:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char indentstr[1024] = {0};
data/radare2-4.3.1+dfsg/libr/core/rtr.c:109:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char prompt[64];
data/radare2-4.3.1+dfsg/libr/core/rtr.c:110:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[1024];
data/radare2-4.3.1+dfsg/libr/core/rtr.c:113:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *ret, msg[1024];
data/radare2-4.3.1+dfsg/libr/core/rtr.c:130:13:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		lastmsg = atoi (ret)-1;
data/radare2-4.3.1+dfsg/libr/core/rtr.c:298:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char sdup[128] = {0};
data/radare2-4.3.1+dfsg/libr/core/rtr.c:428:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char new_cmd[128] = { 0 };
data/radare2-4.3.1+dfsg/libr/core/rtr.c:515:5:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
				strcpy (out_buf, "E00");
data/radare2-4.3.1+dfsg/libr/core/rtr.c:550:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char port[10];
data/radare2-4.3.1+dfsg/libr/core/rtr.c:565:12:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	if (!(p = atoi (path)) || p < 0 || p > 65535) {
data/radare2-4.3.1+dfsg/libr/core/rtr.c:649:11:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	int fd = atoi (input);
data/radare2-4.3.1+dfsg/libr/core/rtr.c:718:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *port, input[1024], *file = NULL, *ptr = NULL, buf[1024];
data/radare2-4.3.1+dfsg/libr/core/rtr.c:814:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (buf + 3, file, buf[2]);
data/radare2-4.3.1+dfsg/libr/core/rtr.c:902:21:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	__rtr_shell (core, atoi (input));
data/radare2-4.3.1+dfsg/libr/core/rtr.c:905:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char prompt[64], buf[1024];
data/radare2-4.3.1+dfsg/libr/core/rtr.c:950:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (buf + 5, src, R_MIN (curlen, len));
data/radare2-4.3.1+dfsg/libr/core/rtr.c:986:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char bufw[1024], bufr[8], *cmd_output = NULL;
data/radare2-4.3.1+dfsg/libr/core/rtr.c:989:14:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	int i, fd = atoi (input);
data/radare2-4.3.1+dfsg/libr/core/rtr.c:1111:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (bufw + 5, cmd, i);
data/radare2-4.3.1+dfsg/libr/core/rtr.c:1199:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[4096];
data/radare2-4.3.1+dfsg/libr/core/rtr.c:1390:11:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	unsigned char buf[4097];
data/radare2-4.3.1+dfsg/libr/core/rtr_http.c:6:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char headers[128] = R_EMPTY;
data/radare2-4.3.1+dfsg/libr/core/rtr_http.c:8:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[32];
data/radare2-4.3.1+dfsg/libr/core/rtr_http.c:38:14:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	if (path && atoi (path)) {
data/radare2-4.3.1+dfsg/libr/core/rtr_http.c:93:19:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			browser, host, atoi (port), path? path:"");
data/radare2-4.3.1+dfsg/libr/core/rtr_http.c:139:41:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	eprintf ("open http://%s:%d/\n", host, atoi (port));
data/radare2-4.3.1+dfsg/libr/core/rtr_http.c:140:46:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	eprintf ("r2 -C http://%s:%d/cmd/\n", host, atoi (port));
data/radare2-4.3.1+dfsg/libr/core/rtr_http.c:154:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (newblk, core->block, core->blocksize);
data/radare2-4.3.1+dfsg/libr/core/rtr_http.c:252:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
			strcpy (headers, "Access-Control-Allow-Origin: *\n"
data/radare2-4.3.1+dfsg/libr/core/rtr_http.c:307:53:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
							refstr = r_str_newf ("http://localhost:%d/", atoi (port));
data/radare2-4.3.1+dfsg/libr/core/rtr_http.c:457:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char buf[128];
data/radare2-4.3.1+dfsg/libr/core/rtr_shell.c:77:6:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
					char buf[1024];
data/radare2-4.3.1+dfsg/libr/core/rtr_shell.c:85:6:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
					memcpy (buf, "wx ", 3);
data/radare2-4.3.1+dfsg/libr/core/rtr_shell.c:110:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
						char buf[1024];
data/radare2-4.3.1+dfsg/libr/core/rtr_shell.c:185:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char prompt[64], prompt2[64], *str, *ptr;
data/radare2-4.3.1+dfsg/libr/core/vasm.c:9:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char blockbuf[R_VISUAL_ASM_BUFSIZE];
data/radare2-4.3.1+dfsg/libr/core/vasm.c:10:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char codebuf[R_VISUAL_ASM_BUFSIZE];
data/radare2-4.3.1+dfsg/libr/core/vasm.c:45:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (a->codebuf, hex, xlen);
data/radare2-4.3.1+dfsg/libr/core/visual.c:26:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static const char *printfmtSingle[NPF] = {
data/radare2-4.3.1+dfsg/libr/core/visual.c:34:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static const char *printfmtColumns[NPF] = {
data/radare2-4.3.1+dfsg/libr/core/visual.c:51:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static const char *printHexFormats[PRINT_HEX_FORMATS] = {
data/radare2-4.3.1+dfsg/libr/core/visual.c:55:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static const char *print3Formats[PRINT_3_FORMATS] = { //  not used at all. its handled by the pd format
data/radare2-4.3.1+dfsg/libr/core/visual.c:60:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static const char *print4Formats[PRINT_4_FORMATS] = {
data/radare2-4.3.1+dfsg/libr/core/visual.c:64:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static const char *print5Formats[PRINT_5_FORMATS] = {
data/radare2-4.3.1+dfsg/libr/core/visual.c:549:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char chbuf[2];
data/radare2-4.3.1+dfsg/libr/core/visual.c:794:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[1024];
data/radare2-4.3.1+dfsg/libr/core/visual.c:973:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char from[64], to[64];
data/radare2-4.3.1+dfsg/libr/core/visual.c:1083:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char str[128], buf[sizeof (str) * 2 + 1];
data/radare2-4.3.1+dfsg/libr/core/visual.c:1322:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[256];
data/radare2-4.3.1+dfsg/libr/core/visual.c:1330:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (buf, "s ");
data/radare2-4.3.1+dfsg/libr/core/visual.c:1352:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[1024];
data/radare2-4.3.1+dfsg/libr/core/visual.c:1392:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char cstr[32];
data/radare2-4.3.1+dfsg/libr/core/visual.c:2290:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static char numbuf[32] = {0};
data/radare2-4.3.1+dfsg/libr/core/visual.c:2305:14:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		distance = atoi (numbuf);
data/radare2-4.3.1+dfsg/libr/core/visual.c:2340:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[4096];
data/radare2-4.3.1+dfsg/libr/core/visual.c:2516:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
			strcpy (buf, "\"wa ");
data/radare2-4.3.1+dfsg/libr/core/visual.c:2624:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char buf[128];
data/radare2-4.3.1+dfsg/libr/core/visual.c:2651:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char name[256], *n;
data/radare2-4.3.1+dfsg/libr/core/visual.c:2771:6:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
					char buf[128];
data/radare2-4.3.1+dfsg/libr/core/visual.c:2791:5:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
				strcpy (buf, "wow ");
data/radare2-4.3.1+dfsg/libr/core/visual.c:2808:5:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
				strcpy (buf, "\"w ");
data/radare2-4.3.1+dfsg/libr/core/visual.c:2819:6:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
					strcpy (buf, "wow ");
data/radare2-4.3.1+dfsg/libr/core/visual.c:2821:6:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
					strcpy (buf, "wx ");
data/radare2-4.3.1+dfsg/libr/core/visual.c:3259:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
						sprintf (buf, "wos 01 @ $$+%i!1",core->print->cur);
data/radare2-4.3.1+dfsg/libr/core/visual.c:3261:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
						sprintf (buf, "wos 01 @ $$+%i!%i", core->print->cur < core->print->ocur
data/radare2-4.3.1+dfsg/libr/core/visual.c:3289:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
						sprintf (buf, "woa 01 @ $$+%i!1", core->print->cur);
data/radare2-4.3.1+dfsg/libr/core/visual.c:3291:7:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
						sprintf (buf, "woa 01 @ $$+%i!%i", core->print->cur < core->print->ocur
data/radare2-4.3.1+dfsg/libr/core/visual.c:3376:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char buf[128];
data/radare2-4.3.1+dfsg/libr/core/visual.c:3392:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char buf[128];
data/radare2-4.3.1+dfsg/libr/core/visual.c:3469:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
			strcpy (buf, "\"CC ");
data/radare2-4.3.1+dfsg/libr/core/visual.c:3480:6:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
					strcpy (buf, "CC-");
data/radare2-4.3.1+dfsg/libr/core/visual.c:3484:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
						memcpy (buf, "\"CC-\x00", 5);
data/radare2-4.3.1+dfsg/libr/core/visual.c:3487:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
						memcpy (buf, "\"CC!\x00", 5);
data/radare2-4.3.1+dfsg/libr/core/visual.c:3490:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
						memcpy (buf, "\"CC ", 4);
data/radare2-4.3.1+dfsg/libr/core/visual.c:3603:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char pos[512], bar[512], pcs[32];
data/radare2-4.3.1+dfsg/libr/core/visual.c:3755:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf (pcs, "%d%% ", pc);
data/radare2-4.3.1+dfsg/libr/core/visual.c:3767:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char pm[32] = "[XADVC]";
data/radare2-4.3.1+dfsg/libr/core/visual.c:4068:11:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			static char debugstr[512];
data/radare2-4.3.1+dfsg/libr/core/visual.c:4188:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char arg[2] = {
data/radare2-4.3.1+dfsg/libr/core/visual.c:4223:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	static char debugstr[512];
data/radare2-4.3.1+dfsg/libr/core/visual.c:4308:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char chrs[2];
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:34:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char cmd[1024];
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:143:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buf, core->block, sizeof (ut64));
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:250:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char cmd[1024];
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:291:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buf, core->block + cur, sizeof (ut64));
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:370:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char str_pos[128];
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:491:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char cmd[1024];
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:612:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char cmd[1024];
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:920:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char cmd[512];
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:1122:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char cmd[1024];
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:1224:14:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
					index = atoi (num);
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:1478:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char cmd[1024];
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:1625:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char cmd[1024];
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:1682:13:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
				case 3: strcpy (cmd, "f="); break;
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:1774:5:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
				strcpy (cmd, "fs ");
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:1784:5:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
				strcpy (cmd, "f ");
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:1841:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char line[1024];
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:1953:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char cmd[512], *p = NULL;
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:1991:11:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		case 0: sprintf (cmd, "px @ 0x%"PFMT64x":64", from); core->printidx = 0; break;
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:1992:11:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		case 1: sprintf (cmd, "pd 12 @ 0x%"PFMT64x":64", from); core->printidx = 1; break;
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:1993:11:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		case 2: sprintf (cmd, "ps @ 0x%"PFMT64x":64", from); core->printidx = 5; break;
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:2081:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[1024];
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:2117:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char old[1024];
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:2288:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *str, path[4096], buf[1024], *root = NULL;
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:2514:7:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
						strcat (path, "/..");
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:2846:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static const char *cmd, *printCmds[lastPrintMode] = {
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:2935:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char old[1024];
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:3115:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char res[128];
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:3141:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char old[218];
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:3355:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			const char *sortModes[4] = { "aflsa", "aflss", "aflsb", "aflsn" };
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:3550:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char ch[64] = R_EMPTY;
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:3566:16:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				int bits = atoi (arg);
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:3660:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char cmd[128];
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:3665:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
			strcpy (cmd, "Cf 0 ");
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:3679:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char str[128];
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:3692:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char str[128];
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:3702:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char str[128];
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:3830:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char cmd[128];
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:3849:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char cmd[128];
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:3915:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
			strcpy (name, "str.");
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:3967:3:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
		strcpy (name, "str.");
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:4103:21:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			rep = rep * 10 + atoi ((char *)&ch);
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:4117:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char preview_cmd[128] = "pd $r";
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:4169:14:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			k, color, atoi (cstr+7), esc ? esc - cstr - 1 : strlen (cstr + 1), cstr+1);
data/radare2-4.3.1+dfsg/libr/core/vmenus_graph.c:382:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char cmd[1024];
data/radare2-4.3.1+dfsg/libr/core/vmenus_graph.c:401:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char cmd[1024];
data/radare2-4.3.1+dfsg/libr/core/vmenus_zigns.c:159:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char cmd[1024];
data/radare2-4.3.1+dfsg/libr/core/windows_heap.c:84:12:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			major = atoi (info->version);
data/radare2-4.3.1+dfsg/libr/core/windows_heap.c:280:13:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			int fd = atoi (ntdllopen);
data/radare2-4.3.1+dfsg/libr/core/windows_heap.c:320:12:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		int fd = atoi (res);
data/radare2-4.3.1+dfsg/libr/crypto/crypto.c:60:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (p, crypto_static_plugins[i], sizeof (RCryptoPlugin));
data/radare2-4.3.1+dfsg/libr/crypto/crypto.c:88:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (&c->plugins, &cry->plugins, sizeof (cry->plugins));
data/radare2-4.3.1+dfsg/libr/crypto/crypto.c:157:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (cry->output + cry->output_len, buf, len);
data/radare2-4.3.1+dfsg/libr/crypto/crypto.c:172:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (buf, cry->output, *size);
data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_aes.c:17:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (st.key, key, keylen);
data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_aes.c:50:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (ibuf, buf, len);
data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_aes_cbc.c:20:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (st.key, key, keylen);
data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_aes_cbc.c:33:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (iv, iv_src, BLOCK_SIZE);
data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_aes_cbc.c:63:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (ibuf, buf, len);
data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_aes_cbc.c:76:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (iv, obuf + BLOCK_SIZE * i, BLOCK_SIZE);
data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_aes_cbc.c:84:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy(iv, buf + BLOCK_SIZE * i, BLOCK_SIZE);
data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_blowfish.c:257:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (state->p, p, sizeof (ut32) * 18);
data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_blowfish.c:258:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (state->s, s, sizeof (ut32) * 1024);
data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_des.c:133:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (ibuf, buf, len);
data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_rc2.c:40:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy(state->ekey, key, key_len);
data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_rc2.c:151:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char data_block[BLOCK_SIZE + 1] = {0};
data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_rc2.c:153:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char dcrypted_block[BLOCK_SIZE + 1] = {0};
data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_rc2.c:161:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (ptr, dcrypted_block, BLOCK_SIZE);
data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_rc2.c:170:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char data_block[BLOCK_SIZE] = {0};
data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_rc2.c:173:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char crypted_block[BLOCK_SIZE] = {0};
data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_rot.c:19:11:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		int i = atoi ((const char *)key);
data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_serpent.c:14:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (st.key, key, keylen);
data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_serpent_algo.c:146:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (subkeys, tmpkeys + DW_BY_USERKEY, 132*sizeof(ut32));
data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_xor.c:21:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (state->key, key, keylen);
data/radare2-4.3.1+dfsg/libr/debug/arg.c:8:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char reg[32];
data/radare2-4.3.1+dfsg/libr/debug/arg.c:38:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char reg[32];
data/radare2-4.3.1+dfsg/libr/debug/ddesc.c:29:36:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
	if (dbg && dbg->h && dbg->h->desc.open) {
data/radare2-4.3.1+dfsg/libr/debug/ddesc.c:30:23:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
		return dbg->h->desc.open (path);
data/radare2-4.3.1+dfsg/libr/debug/debug.c:1480:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char regname[32];
data/radare2-4.3.1+dfsg/libr/debug/dreg.c:94:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char strvalue[256];
data/radare2-4.3.1+dfsg/libr/debug/dreg.c:232:6:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
					char whites[32], content[300];
data/radare2-4.3.1+dfsg/libr/debug/dreg.c:264:6:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
					char woot[512];
data/radare2-4.3.1+dfsg/libr/debug/map.c:33:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char humansz[8];
data/radare2-4.3.1+dfsg/libr/debug/map.c:203:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char humansz[8]; // Holds the human formatted size string [124K]
data/radare2-4.3.1+dfsg/libr/debug/p/debug_bf.c:82:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buf, &r, sizeof (r));
data/radare2-4.3.1+dfsg/libr/debug/p/debug_bochs.c:32:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char cmd[64];
data/radare2-4.3.1+dfsg/libr/debug/p/debug_bochs.c:33:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char num[4];
data/radare2-4.3.1+dfsg/libr/debug/p/debug_bochs.c:34:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char addr[19];
data/radare2-4.3.1+dfsg/libr/debug/p/debug_bochs.c:35:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char bufcmd[100];
data/radare2-4.3.1+dfsg/libr/debug/p/debug_bochs.c:44:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		sprintf (cmd, "lb 0x%x", (ut32)b->addr);
data/radare2-4.3.1+dfsg/libr/debug/p/debug_bochs.c:88:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char strReg[19];
data/radare2-4.3.1+dfsg/libr/debug/p/debug_bochs.c:89:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char regname[4];
data/radare2-4.3.1+dfsg/libr/debug/p/debug_bochs.c:90:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char strBase[19];
data/radare2-4.3.1+dfsg/libr/debug/p/debug_bochs.c:91:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char strLimit[19];
data/radare2-4.3.1+dfsg/libr/debug/p/debug_bochs.c:119:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (&buf[pos], &val, 8);
data/radare2-4.3.1+dfsg/libr/debug/p/debug_bochs.c:185:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (&buf[pos], &val, 2);
data/radare2-4.3.1+dfsg/libr/debug/p/debug_bochs.c:197:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (&buf[0], &ripStop, 8);
data/radare2-4.3.1+dfsg/libr/debug/p/debug_bochs.c:199:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (&buf[0], &valRIP, 8);	// guardamos el valor cs:ip en el registro virtual "vip"
data/radare2-4.3.1+dfsg/libr/debug/p/debug_bochs.c:202:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (saveRegs,buf,size);
data/radare2-4.3.1+dfsg/libr/debug/p/debug_bochs.c:206:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (buf, saveRegs, size);
data/radare2-4.3.1+dfsg/libr/debug/p/debug_bochs.c:276:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char strIP[19];
data/radare2-4.3.1+dfsg/libr/debug/p/debug_esil.c:132:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buf, bytes, R_MIN (size, sz));
data/radare2-4.3.1+dfsg/libr/debug/p/debug_gdb.c:94:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy ((void*)(volatile void*)buf, desc->data, R_MIN (copy_size, size));
data/radare2-4.3.1+dfsg/libr/debug/p/debug_gdb.c:96:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy ((void*)(volatile void*)reg_buf, desc->data, copy_size);
data/radare2-4.3.1+dfsg/libr/debug/p/debug_gdb.c:133:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char path[128];
data/radare2-4.3.1+dfsg/libr/debug/p/debug_gdb.c:167:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[1024], region1[100], region2[100], perms[5];
data/radare2-4.3.1+dfsg/libr/debug/p/debug_io.c:26:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char perm[32];
data/radare2-4.3.1+dfsg/libr/debug/p/debug_io.c:27:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[512];
data/radare2-4.3.1+dfsg/libr/debug/p/debug_io.c:112:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (buf, bregs, R_MIN (size, sz));
data/radare2-4.3.1+dfsg/libr/debug/p/debug_native.c:340:14:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				int fd = atoi (o_res);
data/radare2-4.3.1+dfsg/libr/debug/p/debug_native.c:699:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (buf, &regs, size);
data/radare2-4.3.1+dfsg/libr/debug/p/debug_native.c:796:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char code[1024];
data/radare2-4.3.1+dfsg/libr/debug/p/debug_native.c:855:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char code[1024], *sc_name;
data/radare2-4.3.1+dfsg/libr/debug/p/debug_native.c:917:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char code[1024];
data/radare2-4.3.1+dfsg/libr/debug/p/debug_native.c:998:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char unkstr[128];
data/radare2-4.3.1+dfsg/libr/debug/p/debug_native.c:1006:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char path[1024];
data/radare2-4.3.1+dfsg/libr/debug/p/debug_native.c:1014:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char path[1024], line[1024], name[1024];
data/radare2-4.3.1+dfsg/libr/debug/p/debug_native.c:1015:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char region[100], region2[100], perms[5];
data/radare2-4.3.1+dfsg/libr/debug/p/debug_native.c:1538:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char code[1024];
data/radare2-4.3.1+dfsg/libr/debug/p/debug_qnx.c:103:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy ((void *)(volatile void *) buf, desc->recv.data, copy_size);
data/radare2-4.3.1+dfsg/libr/debug/p/debug_qnx.c:105:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy ((void *)(volatile void *) reg_buf, desc->recv.data, copy_size);
data/radare2-4.3.1+dfsg/libr/debug/p/native/bsd/bsd_debug.c:30:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buffer2[INET6_ADDRSTRLEN];
data/radare2-4.3.1+dfsg/libr/debug/p/native/bsd/bsd_debug.c:168:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char err[_POSIX2_LINE_MAX];
data/radare2-4.3.1+dfsg/libr/debug/p/native/bsd/bsd_debug.c:208:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char err[_POSIX2_LINE_MAX];
data/radare2-4.3.1+dfsg/libr/debug/p/native/bsd/bsd_debug.c:297:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char errbuf[_POSIX2_LINE_MAX];
data/radare2-4.3.1+dfsg/libr/debug/p/native/bsd/bsd_debug.c:428:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *buf, *bp, *eb, *str, path[1024];
data/radare2-4.3.1+dfsg/libr/debug/p/native/darwin.c:5:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(cmdline, "/proc/%d/cmdline", pid);
data/radare2-4.3.1+dfsg/libr/debug/p/native/darwin.c:6:14:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
        fd = open(cmdline, O_RDONLY);
data/radare2-4.3.1+dfsg/libr/debug/p/native/darwin.c:21:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char tmp3[8];
data/radare2-4.3.1+dfsg/libr/debug/p/native/darwin.c:22:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[128];
data/radare2-4.3.1+dfsg/libr/debug/p/native/darwin.c:23:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char tmp2[1024];
data/radare2-4.3.1+dfsg/libr/debug/p/native/darwin.c:35:21:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
                p = atoi (file->d_name);
data/radare2-4.3.1+dfsg/libr/debug/p/native/darwin.c:38:30:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
                        fd = fopen (buf, "r");
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:51:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char paux[ELF_PRARGSZ];
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:150:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char no_str[128];
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:194:15:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	t->sigpend = atoi (p_sigpend);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:195:15:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	t->sighold = atoi (p_sighold);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:234:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (p->pr_reg, &regs, sizeof (regs));
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:679:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (maps_data, &n_segments, sizeof (n_segments));
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:680:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (maps_data + sizeof (n_segments), &n_pag, sizeof (n_pag));
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:685:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (pp, &p->start_addr, sizeof (p->start_addr));
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:687:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (pp, &p->end_addr, sizeof (p->end_addr));
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:689:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (pp, &p->offset, sizeof (p->offset));
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:807:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char no_str[128];
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:845:18:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	p->uid = p_uid? atoi (p_uid): 0;
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:860:18:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	p->gid = p_gid? atoi (p_gid): 0;
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:1030:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (*note_data, (void *)&nhdr, size_note_hdr);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:1189:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (note_data, note_info[type].name, note_info[type].size_name);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:1191:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (note_data, elf_proc_note->prpsinfo, note_info[type].size);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:1241:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (note_data, note_info[type].name, note_info[type].size_name);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:1243:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (note_data, elf_proc_note->thread_note->prstatus, note_info[type].size);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:1248:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (note_data, note_info[type].name, note_info[type].size_name);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:1250:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (note_data, elf_proc_note->thread_note->fp_regset, note_info[type].size);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:1256:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (note_data, note_info[type].name, note_info[type].size_name);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:1258:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (note_data, elf_proc_note->thread_note->fpx_regset, note_info[type].size);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:1265:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (note_data, note_info[type].name, note_info[type].size_name);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:1267:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (note_data, elf_proc_note->thread_note->fp_regset, note_info[type].size);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:1274:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (note_data, note_info[type].name, note_info[type].size_name);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:1276:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (note_data, elf_proc_note->thread_note->arm_vfp_data, note_info[type].size);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:1286:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (note_data, note_info[type].name, note_info[type].size_name);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:1288:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (note_data, elf_proc_note->thread_note->xsave_data, note_info[type].size);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:1301:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (note_data, note_info[type].name, note_info[type].size_name);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:1303:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (note_data, elf_proc_note->auxv->data, note_info[type].size);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:1308:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (note_data, note_info[type].name, note_info[type].size_name);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:1310:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (note_data, maps_data, note_info[type].size);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.h:195:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[8];
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_debug.c:492:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char info[1024] = {0};
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_debug.c:625:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char path[1024] = {0};
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_debug.c:626:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[1024] = {0};
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_debug.c:638:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char proc_buff[1024];
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_debug.c:712:20:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		pid_info->ppid = atoi (ptr + 5);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_debug.c:716:19:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		pid_info->uid = atoi (ptr + 5);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_debug.c:720:19:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		pid_info->gid = atoi (ptr + 5);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_debug.c:734:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char path[PATH_MAX], info[PATH_MAX];
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_debug.c:747:12:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		if ((i = atoi (de->d_name)) <= 0) {
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_debug.c:769:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *ptr, buf[PATH_MAX];
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_debug.c:791:14:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			int tid = atoi (de->d_name);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_debug.c:792:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char info[PATH_MAX];
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_debug.c:797:12:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
					uid = atoi (ptr + 4);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_debug.c:801:17:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
					int tgid = atoi (ptr + 5);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_debug.c:845:11:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				uid = atoi (ptr + 4);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_debug.c:849:16:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				int tgid = atoi (ptr + 5);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_debug.c:1005:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (buf + (i * sizeof (ret)), &ret, sizeof (ret));
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_debug.c:1037:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (buf, &fpregs, size);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_debug.c:1046:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (buf, &fpxregs, size);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_debug.c:1053:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (buf, &fpregs, size);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_debug.c:1061:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (buf, &fpregs, size);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_debug.c:1103:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (buf, &regs, R_MIN (sizeof (regs), size));
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_debug.c:1129:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (buf, &ymm_space, sizeof (ymm_space));
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_debug.c:1191:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char path[512], file[512], buf[512];
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_debug.c:1222:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (file, path, len);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_debug.c:1223:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (file + len, de->d_name, len2 + 1);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_debug.c:1244:28:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		desc = r_debug_desc_new (atoi (de->d_name), buf, perm, type, 0);
data/radare2-4.3.1+dfsg/libr/debug/p/native/maps/darwin.c:76:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[1024];
data/radare2-4.3.1+dfsg/libr/debug/p/native/maps/darwin.c:131:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char module_name[1024];
data/radare2-4.3.1+dfsg/libr/debug/p/native/maps/darwin.c:175:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[1024];
data/radare2-4.3.1+dfsg/libr/debug/p/native/maps/darwin.c:244:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char module_name[1024];
data/radare2-4.3.1+dfsg/libr/debug/p/native/maps/darwin.c:291:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (&prev_info, &info, sizeof (vm_region_basic_info_data_64_t));
data/radare2-4.3.1+dfsg/libr/debug/p/native/maps/darwin.c:303:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (&prev_info, &info, sizeof (vm_region_basic_info_data_64_t));
data/radare2-4.3.1+dfsg/libr/debug/p/native/maps/windows_maps.c:151:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (mod->sect_hdr, sect_hdr, sizeof (IMAGE_SECTION_HEADER) * mod->sect_count);
data/radare2-4.3.1+dfsg/libr/debug/p/native/maps/windows_maps.c:228:2:  [2] (buffer) TCHAR:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	TCHAR f_name[MAX_PATH + 1];
data/radare2-4.3.1+dfsg/libr/debug/p/native/w32.c:254:2:  [2] (buffer) TCHAR:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	TCHAR temp_buffer[512];
data/radare2-4.3.1+dfsg/libr/debug/p/native/w32.c:259:2:  [2] (buffer) TCHAR:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	TCHAR name[MAX_PATH];
data/radare2-4.3.1+dfsg/libr/debug/p/native/w32.c:260:2:  [2] (buffer) TCHAR:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	TCHAR drive[3] =  TEXT (" :");
data/radare2-4.3.1+dfsg/libr/debug/p/native/w32.c:271:6:  [2] (buffer) TCHAR:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
					TCHAR temp_filename[MAX_PATH];
data/radare2-4.3.1+dfsg/libr/debug/p/native/w32.c:597:2:  [2] (buffer) TCHAR:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	TCHAR image_name[MAX_PATH + 1];
data/radare2-4.3.1+dfsg/libr/debug/p/native/w32.c:875:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (buf, &ctx, size);
data/radare2-4.3.1+dfsg/libr/debug/p/native/w32.c:906:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (&ctx, buf, size);
data/radare2-4.3.1+dfsg/libr/debug/p/native/w32.h:77:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char Path[MAX_PATH];
data/radare2-4.3.1+dfsg/libr/debug/p/native/w32.h:78:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char Name[MAX_PATH];
data/radare2-4.3.1+dfsg/libr/debug/p/native/windows/windows_debug.c:257:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (&ctx, buf, size);
data/radare2-4.3.1+dfsg/libr/debug/p/native/windows/windows_debug.c:273:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (buf, &ctx, size);
data/radare2-4.3.1+dfsg/libr/debug/p/native/windows/windows_debug.c:472:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (&cur_ctx.Dr0, &new_ctx->Dr0, drx_size);
data/radare2-4.3.1+dfsg/libr/debug/p/native/windows/windows_debug.c:585:2:  [2] (buffer) TCHAR:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	TCHAR temp_buffer[512];
data/radare2-4.3.1+dfsg/libr/debug/p/native/windows/windows_debug.c:590:2:  [2] (buffer) TCHAR:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	TCHAR name[MAX_PATH];
data/radare2-4.3.1+dfsg/libr/debug/p/native/windows/windows_debug.c:591:2:  [2] (buffer) TCHAR:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	TCHAR drive[3] = TEXT (" :");
data/radare2-4.3.1+dfsg/libr/debug/p/native/windows/windows_debug.c:602:6:  [2] (buffer) TCHAR:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
					TCHAR temp_filename[MAX_PATH];
data/radare2-4.3.1+dfsg/libr/debug/p/native/windows/windows_debug.c:632:2:  [2] (buffer) TCHAR:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	TCHAR filename[MAX_PATH];
data/radare2-4.3.1+dfsg/libr/debug/p/native/windows/windows_debug.c:656:2:  [2] (buffer) TCHAR:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	TCHAR device[MAX_PATH];
data/radare2-4.3.1+dfsg/libr/debug/p/native/windows/windows_debug.c:661:5:  [2] (buffer) TCHAR:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				TCHAR path[MAX_PATH];
data/radare2-4.3.1+dfsg/libr/debug/p/native/windows/windows_debug.h:117:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char Path[MAX_PATH];
data/radare2-4.3.1+dfsg/libr/debug/p/native/windows/windows_debug.h:118:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char Name[MAX_PATH];
data/radare2-4.3.1+dfsg/libr/debug/p/native/xnu/xnu_debug.c:361:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (&th->drx.uds.ds32, buf, R_MIN (size, sizeof (th->drx)));
data/radare2-4.3.1+dfsg/libr/debug/p/native/xnu/xnu_debug.c:363:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (&th->drx.uds.ds64, buf, R_MIN (size, sizeof (th->drx)));
data/radare2-4.3.1+dfsg/libr/debug/p/native/xnu/xnu_debug.c:412:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (buf, th->state, rsz);
data/radare2-4.3.1+dfsg/libr/debug/p/native/xnu/xnu_debug.c:490:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char file_path[MAXPATHLEN] = {0};
data/radare2-4.3.1+dfsg/libr/debug/p/native/xnu/xnu_debug.c:546:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (&state, &thread->gpr, sizeof (R_REG_T));
data/radare2-4.3.1+dfsg/libr/debug/p/native/xnu/xnu_debug.c:993:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char psname[4096];
data/radare2-4.3.1+dfsg/libr/debug/p/native/xnu/xnu_debug.c:1064:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (psname, curr_arg, alen+1);
data/radare2-4.3.1+dfsg/libr/debug/p/native/xnu/xnu_debug.c:1068:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (psname + psnamelen + 1, curr_arg, alen + 1);
data/radare2-4.3.1+dfsg/libr/debug/p/native/xnu/xnu_debug.c:1191:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char file_path[MAXPATHLEN] = {0};
data/radare2-4.3.1+dfsg/libr/debug/p/native/xnu/xnu_debug.c:1311:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[1024];
data/radare2-4.3.1+dfsg/libr/debug/p/native/xnu/xnu_debug.c:1312:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char module_name[MAXPATHLEN];
data/radare2-4.3.1+dfsg/libr/debug/p/native/xnu/xnu_debug.c:1367:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char maxperm[32];
data/radare2-4.3.1+dfsg/libr/debug/p/native/xnu/xnu_debug.c:1368:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char depthstr[32];
data/radare2-4.3.1+dfsg/libr/debug/p/native/xnu/xnu_threads.h:80:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char pad[512];
data/radare2-4.3.1+dfsg/libr/debug/plugin.c:54:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char spaces[16];
data/radare2-4.3.1+dfsg/libr/debug/plugin.c:92:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (dp, foo, sizeof (RDebugPlugin));
data/radare2-4.3.1+dfsg/libr/debug/session.c:144:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (dbg->reg->regset[i].arena->bytes, arena->bytes, arena->size);
data/radare2-4.3.1+dfsg/libr/debug/session.c:478:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (snapdiff->last_changes, prev_diff->last_changes, sizeof (RPageData *) * base->page_num);
data/radare2-4.3.1+dfsg/libr/debug/signal.c:64:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	static char key[32] = "cfg.";
data/radare2-4.3.1+dfsg/libr/debug/signal.c:67:6:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	if (atoi (k) > 0) {
data/radare2-4.3.1+dfsg/libr/debug/signal.c:89:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	static char key[32] = "cfg.";
data/radare2-4.3.1+dfsg/libr/debug/signal.c:92:6:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	if (atoi (k)>0) {
data/radare2-4.3.1+dfsg/libr/debug/signal.c:139:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char k[32];
data/radare2-4.3.1+dfsg/libr/debug/snap.c:255:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (hash, snap->hash_ctx->digest, digest_size);
data/radare2-4.3.1+dfsg/libr/debug/snap.c:350:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (new_diff->last_changes, prev_diff->last_changes, sizeof (RPageData *) * base->page_num);
data/radare2-4.3.1+dfsg/libr/debug/snap.c:383:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (new_page->hash, cur_hash, digest_size);
data/radare2-4.3.1+dfsg/libr/debug/trace.c:169:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char addr_str[32];
data/radare2-4.3.1+dfsg/libr/egg/egg.c:280:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[1024];
data/radare2-4.3.1+dfsg/libr/egg/egg_lang.c:192:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	static char label[128];
data/radare2-4.3.1+dfsg/libr/egg/egg_lang.c:210:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	static char label[128];
data/radare2-4.3.1+dfsg/libr/egg/egg_lang.c:243:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[64];	// may cause stack overflow
data/radare2-4.3.1+dfsg/libr/egg/egg_lang.c:328:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[64], *p = r_egg_mkvar (egg, buf, str, 0);
data/radare2-4.3.1+dfsg/libr/egg/egg_lang.c:466:12:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				num2 = atoi (p + 1);
data/radare2-4.3.1+dfsg/libr/egg/egg_lang.c:470:10:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			num = atoi (str) + num2;
data/radare2-4.3.1+dfsg/libr/egg/egg_lang.c:548:8:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		qi = atoi (q + 1);
data/radare2-4.3.1+dfsg/libr/egg/egg_lang.c:601:46:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				snprintf (out, 32, "%%%s", e->regs (egg, atoi (str + 4)));
data/radare2-4.3.1+dfsg/libr/egg/egg_lang.c:603:44:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				snprintf (out, 32, "%s", e->regs (egg, atoi (str + 4)));
data/radare2-4.3.1+dfsg/libr/egg/egg_lang.c:764:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char str[64];
data/radare2-4.3.1+dfsg/libr/egg/egg_lang.c:835:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char lab[128];
data/radare2-4.3.1+dfsg/libr/egg/egg_lang.c:836:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf (lab, "__begin_%d_%d_%d", egg->lang.nfunctions,
data/radare2-4.3.1+dfsg/libr/egg/egg_lang.c:857:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf (str, "__end_%d_%d_%d", egg->lang.nfunctions, CTX - 1, egg->lang.nestedi[CTX - 1] - 1);
data/radare2-4.3.1+dfsg/libr/egg/egg_lang.c:885:27:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			egg->lang.stackframe = atoi (egg->lang.dstval);
data/radare2-4.3.1+dfsg/libr/egg/egg_lang.c:1051:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char var[128];
data/radare2-4.3.1+dfsg/libr/egg/egg_lang.c:1055:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf (var, "__begin_%d_%d_%d\n", egg->lang.nfunctions, CTX, egg->lang.nestedi[CTX - 1]);
data/radare2-4.3.1+dfsg/libr/egg/egg_lang.c:1236:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *ptr, str[64], *tmp_ptr = NULL;
data/radare2-4.3.1+dfsg/libr/egg/emit_arm.c:19:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static char lastargs[16][32];
data/radare2-4.3.1+dfsg/libr/egg/emit_arm.c:65:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[1024];
data/radare2-4.3.1+dfsg/libr/egg/emit_arm.c:104:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char str[32], *p = r_egg_mkvar (egg, str, dstvar, 0);
data/radare2-4.3.1+dfsg/libr/egg/emit_arm.c:137:10:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	int d = atoi (str);
data/radare2-4.3.1+dfsg/libr/egg/emit_arm.c:148:9:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			if (!atoi (str)) {
data/radare2-4.3.1+dfsg/libr/egg/emit_arm.c:193:10:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
	case 0: sprintf (out, "sp, %d", idx - 1); break;/* variable */
data/radare2-4.3.1+dfsg/libr/egg/emit_arm.c:194:10:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
	case 1: sprintf (out, "r%d", idx); break;	/* registers */
data/radare2-4.3.1+dfsg/libr/egg/emit_arm.c:204:45:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	r_egg_printf (egg, "  ldr r0, [fp, %d]\n", atoi (dst));
data/radare2-4.3.1+dfsg/libr/egg/emit_arm.c:208:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *p, str[64];
data/radare2-4.3.1+dfsg/libr/egg/emit_trace.c:24:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[32];
data/radare2-4.3.1+dfsg/libr/egg/emit_trace.c:39:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[1024];
data/radare2-4.3.1+dfsg/libr/egg/emit_trace.c:100:10:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
	case 0: sprintf (out, "fp,$%d", -idx); break; /* variable */
data/radare2-4.3.1+dfsg/libr/egg/emit_trace.c:101:10:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
	case 1: sprintf (out, "sp,$%d", idx); break; /* argument */ // XXX: MUST BE r0, r1, r2, ..
data/radare2-4.3.1+dfsg/libr/egg/emit_trace.c:116:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *p, str[64];
data/radare2-4.3.1+dfsg/libr/egg/emit_x86.c:45:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char p[512];
data/radare2-4.3.1+dfsg/libr/egg/emit_x86.c:51:3:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
		strcpy (p, "\n : mov "R_AX", `.arg`\n : "SYSCALL_INTEL "\n");
data/radare2-4.3.1+dfsg/libr/egg/emit_x86.c:110:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[1024];
data/radare2-4.3.1+dfsg/libr/egg/emit_x86.c:156:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *p, str2[64];
data/radare2-4.3.1+dfsg/libr/egg/emit_x86.c:164:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (s, str, len);
data/radare2-4.3.1+dfsg/libr/egg/emit_x86.c:213:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *p, str2[64];
data/radare2-4.3.1+dfsg/libr/egg/emit_x86.c:262:10:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	int d = atoi (str);
data/radare2-4.3.1+dfsg/libr/egg/emit_x86.c:352:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf (out, "[" R_BP "+%d]", idx);
data/radare2-4.3.1+dfsg/libr/egg/emit_x86.c:354:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf (out, "[" R_BP "%d]", idx);
data/radare2-4.3.1+dfsg/libr/egg/emit_x86.c:356:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
			strcpy (out, "[" R_BP "]");
data/radare2-4.3.1+dfsg/libr/egg/emit_x86.c:364:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf (out, "[" R_SP "+%d]", idx);
data/radare2-4.3.1+dfsg/libr/egg/emit_x86.c:366:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf (out, "[" R_SP "%d]", idx);
data/radare2-4.3.1+dfsg/libr/egg/emit_x86.c:368:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
			strcpy (out, "[" R_SP "]");
data/radare2-4.3.1+dfsg/libr/egg/emit_x86.c:373:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf (out, "[" R_BP "+%d]", idx);
data/radare2-4.3.1+dfsg/libr/egg/emit_x86.c:375:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf (out, "[" R_BP "%d]", idx);
data/radare2-4.3.1+dfsg/libr/egg/emit_x86.c:377:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
			strcpy (out, "[" R_BP "]");
data/radare2-4.3.1+dfsg/libr/egg/emit_x86.c:388:10:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	int d = atoi (dst);
data/radare2-4.3.1+dfsg/libr/egg/emit_x86.c:392:8:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			d = atoi (p + 1);
data/radare2-4.3.1+dfsg/libr/egg/emit_x86.c:408:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *p, str[64];
data/radare2-4.3.1+dfsg/libr/egg/rlcc/rlcc.c:47:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		const char *args[32];
data/radare2-4.3.1+dfsg/libr/fs/fs.c:45:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (static_plugin, fs_static_plugins[i], sizeof (RFSPlugin));
data/radare2-4.3.1+dfsg/libr/fs/fs.c:87:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (sp, p, sizeof (RFSPlugin));
data/radare2-4.3.1+dfsg/libr/fs/fs.c:250:36:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
			if (root && root->p && root->p->open) {
data/radare2-4.3.1+dfsg/libr/fs/fs.c:256:18:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
				f = root->p->open (root, dir, false);
data/radare2-4.3.1+dfsg/libr/fs/fs.c:503:16:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
		if (root->p->open && root->p->read && root->p->close) {
data/radare2-4.3.1+dfsg/libr/fs/fs.c:504:20:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
			file = root->p->open (root, path, false);
data/radare2-4.3.1+dfsg/libr/fs/p/fs_grub_base.c:14:21:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
	if (gfs->file->fs->open (gfs->file, path)) {
data/radare2-4.3.1+dfsg/libr/fs/p/fs_posix.c:43:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char fullpath[4096];
data/radare2-4.3.1+dfsg/libr/fs/p/fs_posix.c:50:2:  [2] (buffer) wchar_t:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	wchar_t directory[MAX_PATH];
data/radare2-4.3.1+dfsg/libr/fs/shell.c:35:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[PROMPT_PATH_BUFSIZE];
data/radare2-4.3.1+dfsg/libr/fs/shell.c:36:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char path[PROMPT_PATH_BUFSIZE];
data/radare2-4.3.1+dfsg/libr/fs/shell.c:37:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char prompt[PROMPT_PATH_BUFSIZE];
data/radare2-4.3.1+dfsg/libr/fs/shell.c:38:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char str[2048];
data/radare2-4.3.1+dfsg/libr/fs/shell.c:165:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char opath[PROMPT_PATH_BUFSIZE];
data/radare2-4.3.1+dfsg/libr/fs/shell.c:279:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (input, "./", 2);
data/radare2-4.3.1+dfsg/libr/hash/calc.c:45:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (ctx->digest, &res, R_HASH_SIZE_XXHASH);
data/radare2-4.3.1+dfsg/libr/hash/calc.c:50:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (ctx->digest, &res, R_HASH_SIZE_FLETCHER8);
data/radare2-4.3.1+dfsg/libr/hash/calc.c:55:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (ctx->digest, &res, R_HASH_SIZE_FLETCHER16);
data/radare2-4.3.1+dfsg/libr/hash/calc.c:60:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (ctx->digest, &res, R_HASH_SIZE_FLETCHER32);
data/radare2-4.3.1+dfsg/libr/hash/calc.c:65:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (ctx->digest, &res, R_HASH_SIZE_FLETCHER64);
data/radare2-4.3.1+dfsg/libr/hash/calc.c:70:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (ctx->digest, &res, R_HASH_SIZE_ADLER32);
data/radare2-4.3.1+dfsg/libr/hash/calc.c:96:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (ctx->digest, &res, 2);
data/radare2-4.3.1+dfsg/libr/hash/calc.c:110:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (ctx->digest, &res, R_HASH_SIZE_CRC8_SMBUS);
data/radare2-4.3.1+dfsg/libr/hash/hash.c:294:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char tmp[128];
data/radare2-4.3.1+dfsg/libr/hash/hash.c:334:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (buf, seed->buf, seed->len);
data/radare2-4.3.1+dfsg/libr/hash/hash.c:335:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (buf + seed->len, ctx->digest, hlen);
data/radare2-4.3.1+dfsg/libr/hash/hash.c:337:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (buf, ctx->digest, hlen);
data/radare2-4.3.1+dfsg/libr/hash/hash.c:338:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (buf + hlen, seed->buf, seed->len);
data/radare2-4.3.1+dfsg/libr/hash/hash.c:342:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (buf, ctx->digest, hlen);
data/radare2-4.3.1+dfsg/libr/hash/hash.c:373:6:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
					sprintf (digest_hex + (i * 2), "%02x", ctx->digest[i]);
data/radare2-4.3.1+dfsg/libr/hash/luhn.c:8:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char curChar[2] = {0, 0};
data/radare2-4.3.1+dfsg/libr/hash/luhn.c:12:14:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		curDigit = atoi (curChar);
data/radare2-4.3.1+dfsg/libr/hash/md4.c:163:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buf, in, n);
data/radare2-4.3.1+dfsg/libr/hash/sha1.h:47:26:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
void SHA1_Final(unsigned char hashout[20], R_SHA_CTX *ctx);
data/radare2-4.3.1+dfsg/libr/hash/sha2.c:288:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (context->state, sha256_initial_hash_value, SHA256_DIGEST_LENGTH);
data/radare2-4.3.1+dfsg/libr/hash/sha2.c:483:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (&context->buffer[usedspace], data, freespace);
data/radare2-4.3.1+dfsg/libr/hash/sha2.c:490:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (&context->buffer[usedspace], data, len);
data/radare2-4.3.1+dfsg/libr/hash/sha2.c:506:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (context->buffer, data, len);
data/radare2-4.3.1+dfsg/libr/hash/sha2.c:576:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (d, context->state, SHA256_DIGEST_LENGTH);
data/radare2-4.3.1+dfsg/libr/hash/sha2.c:608:1:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
char *SHA256_Data(const ut8 *data, size_t len, char digest[SHA256_DIGEST_STRING_LENGTH]) {
data/radare2-4.3.1+dfsg/libr/hash/sha2.c:608:48:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
char *SHA256_Data(const ut8 *data, size_t len, char digest[SHA256_DIGEST_STRING_LENGTH]) {
data/radare2-4.3.1+dfsg/libr/hash/sha2.c:622:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (context->state, sha512_initial_hash_value, SHA512_DIGEST_LENGTH);
data/radare2-4.3.1+dfsg/libr/hash/sha2.c:816:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (&context->buffer[usedspace], data, freespace);
data/radare2-4.3.1+dfsg/libr/hash/sha2.c:823:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (&context->buffer[usedspace], data, len);
data/radare2-4.3.1+dfsg/libr/hash/sha2.c:839:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (context->buffer, data, len);
data/radare2-4.3.1+dfsg/libr/hash/sha2.c:919:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (d, context->state, SHA512_DIGEST_LENGTH);
data/radare2-4.3.1+dfsg/libr/hash/sha2.c:952:1:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
char *SHA512_Data(const ut8 *data, size_t len, char digest[SHA512_DIGEST_STRING_LENGTH]) {
data/radare2-4.3.1+dfsg/libr/hash/sha2.c:952:48:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
char *SHA512_Data(const ut8 *data, size_t len, char digest[SHA512_DIGEST_STRING_LENGTH]) {
data/radare2-4.3.1+dfsg/libr/hash/sha2.c:966:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (context->state, sha384_initial_hash_value, SHA512_DIGEST_LENGTH);
data/radare2-4.3.1+dfsg/libr/hash/sha2.c:998:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (d, context->state, SHA384_DIGEST_LENGTH);
data/radare2-4.3.1+dfsg/libr/hash/sha2.c:1031:1:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
char *SHA384_Data(const ut8 *data, size_t len, char digest[SHA384_DIGEST_STRING_LENGTH]) {
data/radare2-4.3.1+dfsg/libr/hash/sha2.c:1031:48:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
char *SHA384_Data(const ut8 *data, size_t len, char digest[SHA384_DIGEST_STRING_LENGTH]) {
data/radare2-4.3.1+dfsg/libr/hash/xxhash.c:117:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char memory[16];
data/radare2-4.3.1+dfsg/libr/hash/xxhash.c:145:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (state->memory + state->memsize, input, len);
data/radare2-4.3.1+dfsg/libr/hash/xxhash.c:152:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (state->memory + state->memsize, input, 16 - state->memsize);
data/radare2-4.3.1+dfsg/libr/hash/xxhash.c:209:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (state->memory, p, state->memsize);
data/radare2-4.3.1+dfsg/libr/include/r_anal.h:1023:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[32];         // Name of the argument
data/radare2-4.3.1+dfsg/libr/include/r_anal.h:1038:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char old[32]; // Used to compute flags.
data/radare2-4.3.1+dfsg/libr/include/r_anal.h:1039:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char cur[32];
data/radare2-4.3.1+dfsg/libr/include/r_anal.h:1046:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char if_buf[64];
data/radare2-4.3.1+dfsg/libr/include/r_anal.h:1047:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char pc[8];
data/radare2-4.3.1+dfsg/libr/include/r_bin_dwarf.h:550:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	const char *file[128];
data/radare2-4.3.1+dfsg/libr/include/r_cmd.h:22:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[80];
data/radare2-4.3.1+dfsg/libr/include/r_cmd.h:52:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char cmd[64];
data/radare2-4.3.1+dfsg/libr/include/r_cmd.h:53:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char desc[128];
data/radare2-4.3.1+dfsg/libr/include/r_cmd.h:58:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char cmd[64]; /* long command */
data/radare2-4.3.1+dfsg/libr/include/r_cmd.h:60:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char cmd_short[32]; /* short command */
data/radare2-4.3.1+dfsg/libr/include/r_cmd.h:61:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char desc[128];
data/radare2-4.3.1+dfsg/libr/include/r_cons.h:80:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char strings[R_CONS_GREP_WORDS][R_CONS_GREP_WORD_SIZE];
data/radare2-4.3.1+dfsg/libr/include/r_cons.h:1008:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char data[R_LINE_BUFSIZE];
data/radare2-4.3.1+dfsg/libr/include/r_core.h:108:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char host[512];
data/radare2-4.3.1+dfsg/libr/include/r_core.h:110:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char file[1024];
data/radare2-4.3.1+dfsg/libr/include/r_core.h:207:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[32]; // XXX leak because no  r_core_visual_tab_free
data/radare2-4.3.1+dfsg/libr/include/r_core.h:368:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char cmd[32];
data/radare2-4.3.1+dfsg/libr/include/r_debug.h:327:8:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
	int (*open)(const char *path);
data/radare2-4.3.1+dfsg/libr/include/r_egg.h:50:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char elem[1024];
data/radare2-4.3.1+dfsg/libr/include/r_egg.h:55:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *ctxpush[32];
data/radare2-4.3.1+dfsg/libr/include/r_egg.h:60:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *ifelse_table[32][32];
data/radare2-4.3.1+dfsg/libr/include/r_egg.h:85:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *nested[32];
data/radare2-4.3.1+dfsg/libr/include/r_egg.h:86:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *nested_callname[32];
data/radare2-4.3.1+dfsg/libr/include/r_fs.h:64:13:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
	RFSFile* (*open)(RFSRoot *root, const char *path, bool create);
data/radare2-4.3.1+dfsg/libr/include/r_io.h:170:13:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
	RIODesc* (*open)(RIO *io, const char *, int perm, int mode);
data/radare2-4.3.1+dfsg/libr/include/r_io.h:257:10:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
	RIOOpen open;
data/radare2-4.3.1+dfsg/libr/include/r_lib.h:49:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char desc[128]; // TODO: use char *
data/radare2-4.3.1+dfsg/libr/include/r_magic.h:43:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char s[MAXstring];	/* the search string or regex pattern */
data/radare2-4.3.1+dfsg/libr/include/r_magic.h:184:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char desc[MAXDESC];	/* description */
data/radare2-4.3.1+dfsg/libr/include/r_magic.h:186:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char mimetype[MAXDESC]; /* MIME type */
data/radare2-4.3.1+dfsg/libr/include/r_reg.h:120:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *name[R_REG_NAME_LAST]; // aliases
data/radare2-4.3.1+dfsg/libr/include/r_socket.h:188:18:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
	rap_server_open open;
data/radare2-4.3.1+dfsg/libr/include/r_socket.h:208:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *_args[R_RUN_PROFILE_NARGS];
data/radare2-4.3.1+dfsg/libr/include/r_syscall.h:19:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	const char *arg[R_SYSCALL_ARGS];
data/radare2-4.3.1+dfsg/libr/include/r_types.h:299:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (a, data, size);
data/radare2-4.3.1+dfsg/libr/include/r_types.h:304:52:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
#define R_NEW_COPY(x,y) x=(void*)malloc(sizeof(y));memcpy(x,y,sizeof(y))
data/radare2-4.3.1+dfsg/libr/include/r_types.h:335:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	  char buf[256]; \
data/radare2-4.3.1+dfsg/libr/include/r_util/pj.h:11:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char braces[R_PRINT_JSON_DEPTH_LIMIT];
data/radare2-4.3.1+dfsg/libr/include/r_util/r_big.h:15:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char dgts[R_BIG_SIZE];
data/radare2-4.3.1+dfsg/libr/include/r_util/r_num.h:27:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char string_value[R_NUMCALC_STRSZ];
data/radare2-4.3.1+dfsg/libr/include/r_util/r_print.h:59:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char datefmt[32];
data/radare2-4.3.1+dfsg/libr/include/r_util/r_strbuf.h:9:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[32];
data/radare2-4.3.1+dfsg/libr/include/sdb/cdb_make.h:20:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char bspace[8192];
data/radare2-4.3.1+dfsg/libr/include/sdb/cdb_make.h:21:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char final[1024];
data/radare2-4.3.1+dfsg/libr/include/sdb/types.h:105:30:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static inline void ut32_pack(char s[4], ut32 u) {
data/radare2-4.3.1+dfsg/libr/include/sdb/types.h:114:34:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static inline void ut32_pack_big(char s[4], ut32 u) {
data/radare2-4.3.1+dfsg/libr/include/sdb/types.h:123:32:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static inline void ut32_unpack(char s[4], ut32 *u) {
data/radare2-4.3.1+dfsg/libr/include/sflib/common/sftypes.h:53:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char d_name[256];
data/radare2-4.3.1+dfsg/libr/include/sflib/common/sftypes.h:331:6:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
     char sa_data[14];           /* Address data.  */
data/radare2-4.3.1+dfsg/libr/include/sflib/common/sftypes.h:348:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    unsigned char sin_zero[sizeof (struct sockaddr) -
data/radare2-4.3.1+dfsg/libr/include/sflib/common/sftypes.h:357:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char sun_path[108];         /* Path name.  */
data/radare2-4.3.1+dfsg/libr/include/sflib/common/sftypes.h:799:11:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	unsigned char c_cc[NCC];        /* control characters */
data/radare2-4.3.1+dfsg/libr/include/sflib/common/sftypes.h:1052:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	e_ident[EI_NIDENT];	/* Magic number and other info */
data/radare2-4.3.1+dfsg/libr/include/sflib/common/sftypes.h:1070:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char	e_ident[EI_NIDENT];	/* Magic number and other info */
data/radare2-4.3.1+dfsg/libr/include/sflib/common/sftypes.h:3565:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
           char           d_name[MAXNAMLEN + 1]; 
data/radare2-4.3.1+dfsg/libr/include/sflib/darwin-arm-64/sflib.h:36:33:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
static inline _sfsyscall3( int, open, const char *, pathname, int, flags, mode_t, mode )
data/radare2-4.3.1+dfsg/libr/include/sflib/darwin-arm-64/sflib.h:90:35:  [2] (race) vfork:
  On some old systems, vfork() permits race conditions, and it's very
  difficult to use correctly (CWE-362). Use fork() instead.
static inline _sfsyscall0( pid_t, vfork )
data/radare2-4.3.1+dfsg/libr/include/sflib/darwin-x86-32/sflib.h:36:33:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
static inline _sfsyscall3( int, open, const char *, pathname, int, flags, mode_t, mode )
data/radare2-4.3.1+dfsg/libr/include/sflib/darwin-x86-32/sflib.h:88:35:  [2] (race) vfork:
  On some old systems, vfork() permits race conditions, and it's very
  difficult to use correctly (CWE-362). Use fork() instead.
static inline _sfsyscall0( pid_t, vfork )
data/radare2-4.3.1+dfsg/libr/include/sflib/darwin-x86-64/sflib.h:36:33:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
static inline _sfsyscall3( int, open, const char *, pathname, int, flags, mode_t, mode )
data/radare2-4.3.1+dfsg/libr/include/sflib/darwin-x86-64/sflib.h:88:35:  [2] (race) vfork:
  On some old systems, vfork() permits race conditions, and it's very
  difficult to use correctly (CWE-362). Use fork() instead.
static inline _sfsyscall0( pid_t, vfork )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-arm-32/sflib.h:34:33:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
static inline _sfsyscall3( int, open, const char *, pathname, int, flags, mode_t, mode )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-arm-32/sflib.h:90:35:  [2] (race) vfork:
  On some old systems, vfork() permits race conditions, and it's very
  difficult to use correctly (CWE-362). Use fork() instead.
static inline _sfsyscall0( pid_t, vfork )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-arm-64/sflib.h:34:33:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
static inline _sfsyscall3( int, open, const char *, pathname, int, flags, mode_t, mode )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-arm-64/sflib.h:90:35:  [2] (race) vfork:
  On some old systems, vfork() permits race conditions, and it's very
  difficult to use correctly (CWE-362). Use fork() instead.
static inline _sfsyscall0( pid_t, vfork )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-x86-32/sflib.h:36:33:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
static inline _sfsyscall3( int, open, const char *, pathname, int, flags, mode_t, mode )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-x86-32/sflib.h:218:35:  [2] (race) vfork:
  On some old systems, vfork() permits race conditions, and it's very
  difficult to use correctly (CWE-362). Use fork() instead.
static inline _sfsyscall0( pid_t, vfork )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-x86-64/sflib.h:34:33:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
static inline _sfsyscall3( int, open, const char *, pathname, int, flags, mode_t, mode )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-x86-64/sflib.h:90:35:  [2] (race) vfork:
  On some old systems, vfork() permits race conditions, and it's very
  difficult to use correctly (CWE-362). Use fork() instead.
static inline _sfsyscall0( pid_t, vfork )
data/radare2-4.3.1+dfsg/libr/io/cache.c:170:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (ch->data, buf, len);
data/radare2-4.3.1+dfsg/libr/io/cache.c:185:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (buf + begin - addr, c->data, l);
data/radare2-4.3.1+dfsg/libr/io/cache.c:188:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (buf, c->data + addr - begin, l);
data/radare2-4.3.1+dfsg/libr/io/desc.c:79:26:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
	if (!plugin || !plugin->open) {
data/radare2-4.3.1+dfsg/libr/io/desc.c:82:26:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
	RIODesc *desc = plugin->open (io, uri, perm, mode);
data/radare2-4.3.1+dfsg/libr/io/desc.c:105:26:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
	if (!plugin || !plugin->open || !plugin->check || !plugin->check (io, uri, false)) {
data/radare2-4.3.1+dfsg/libr/io/desc.c:108:26:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
	RIODesc *desc = plugin->open (io, uri, perm, mode);
data/radare2-4.3.1+dfsg/libr/io/io.c:479:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (io->write_mask, mask, len);
data/radare2-4.3.1+dfsg/libr/io/p/io_bfdbg.c:50:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (riom->bfvm->mem+n, buf, count);
data/radare2-4.3.1+dfsg/libr/io/p/io_bfdbg.c:59:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (riom->bfvm->screen_buf+n, buf, count);
data/radare2-4.3.1+dfsg/libr/io/p/io_bfdbg.c:68:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (riom->bfvm->input_buf+n, buf, count);
data/radare2-4.3.1+dfsg/libr/io/p/io_bfdbg.c:79:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (RIOBFDBG_BUF (fd)+io->off, buf, count);
data/radare2-4.3.1+dfsg/libr/io/p/io_bfdbg.c:96:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (buf, riom->bfvm->mem+n, count);
data/radare2-4.3.1+dfsg/libr/io/p/io_bfdbg.c:105:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (buf, riom->bfvm->screen_buf+n, count);
data/radare2-4.3.1+dfsg/libr/io/p/io_bfdbg.c:114:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (buf, riom->bfvm->input_buf+n, count);
data/radare2-4.3.1+dfsg/libr/io/p/io_bfdbg.c:125:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buf, RIOBFDBG_BUF (fd)+io->off, count);
data/radare2-4.3.1+dfsg/libr/io/p/io_bfdbg.c:183:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (mal->buf, out, rlen);
data/radare2-4.3.1+dfsg/libr/io/p/io_debug.c:548:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char uri[128];
data/radare2-4.3.1+dfsg/libr/io/p/io_debug.c:584:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf (uri, "w32dbg://%d", pid);
data/radare2-4.3.1+dfsg/libr/io/p/io_debug.c:586:30:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
			if (!_plugin || !_plugin->open) {
data/radare2-4.3.1+dfsg/libr/io/p/io_debug.c:589:24:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
			if ((ret = _plugin->open (io, uri, rw, mode))) {
data/radare2-4.3.1+dfsg/libr/io/p/io_debug.c:596:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf (uri, "smach://%d", pid);		//s is for spawn
data/radare2-4.3.1+dfsg/libr/io/p/io_debug.c:598:30:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
			if (!_plugin || !_plugin->open || !_plugin->close) {
data/radare2-4.3.1+dfsg/libr/io/p/io_debug.c:601:19:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
			ret = _plugin->open (io, uri, rw, mode);
data/radare2-4.3.1+dfsg/libr/io/p/io_debug.c:604:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf (uri, "ptrace://%d", pid);
data/radare2-4.3.1+dfsg/libr/io/p/io_debug.c:606:30:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
			if (!_plugin || !_plugin->open) {
data/radare2-4.3.1+dfsg/libr/io/p/io_debug.c:609:19:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
			ret = _plugin->open (io, uri, rw, mode);
data/radare2-4.3.1+dfsg/libr/io/p/io_debug.c:612:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf (uri, "attach://%d", pid);
data/radare2-4.3.1+dfsg/libr/io/p/io_debug.c:614:30:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
			if (!_plugin || !_plugin->open) {
data/radare2-4.3.1+dfsg/libr/io/p/io_debug.c:617:19:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
			ret = _plugin->open (io, uri, rw, mode);
data/radare2-4.3.1+dfsg/libr/io/p/io_default.c:203:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (buf, a_buf+a_delta, count);
data/radare2-4.3.1+dfsg/libr/io/p/io_default.c:253:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (a_buf+a_delta, buf, count);
data/radare2-4.3.1+dfsg/libr/io/p/io_gdb.c:57:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char host[128], *port, *pid;
data/radare2-4.3.1+dfsg/libr/io/p/io_gdb.c:102:11:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		i_pid = atoi (pid);
data/radare2-4.3.1+dfsg/libr/io/p/io_gdb.c:106:12:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		i_port = atoi (port);
data/radare2-4.3.1+dfsg/libr/io/p/io_gdb.c:365:15:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				int pid = atoi (ptr);
data/radare2-4.3.1+dfsg/libr/io/p/io_gdb.c:381:23:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			if ((num_retries = atoi (cmd + 8)) >= 1) {
data/radare2-4.3.1+dfsg/libr/io/p/io_gdb.c:392:21:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			if ((page_size = atoi (cmd + 10)) >= 64) {
data/radare2-4.3.1+dfsg/libr/io/p/io_gprobe.c:159:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *end, filename[32];
data/radare2-4.3.1+dfsg/libr/io/p/io_gprobe.c:171:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		sprintf (filename, "/dev/i2c-%d", i2cbus);
data/radare2-4.3.1+dfsg/libr/io/p/io_gzip.c:77:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (_io_malloc_buf (fd) + _io_malloc_off (fd), buf, count);
data/radare2-4.3.1+dfsg/libr/io/p/io_gzip.c:97:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (new_buf, _io_malloc_buf (fd), R_MIN (count, mallocsz));
data/radare2-4.3.1+dfsg/libr/io/p/io_gzip.c:119:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buf, _io_malloc_buf (fd) + _io_malloc_off (fd), count);
data/radare2-4.3.1+dfsg/libr/io/p/io_http.c:26:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (RIOHTTP_BUF (fd)+io->off, buf, count);
data/radare2-4.3.1+dfsg/libr/io/p/io_http.c:42:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buf, RIOHTTP_BUF (fd) + io->off, count);
data/radare2-4.3.1+dfsg/libr/io/p/io_http.c:92:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (mal->buf, out, mal->size);
data/radare2-4.3.1+dfsg/libr/io/p/io_ihex.c:127:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char linebuf[80];
data/radare2-4.3.1+dfsg/libr/io/p/io_ihex.c:169:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		sprintf(linebuf+(2*j), "%02X", b[j]);
data/radare2-4.3.1+dfsg/libr/io/p/io_mach.c:520:10:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			pid = atoi (pidstr);
data/radare2-4.3.1+dfsg/libr/io/p/io_malloc.c:77:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (_io_malloc_buf (fd) + _io_malloc_off (fd), buf, count);
data/radare2-4.3.1+dfsg/libr/io/p/io_malloc.c:97:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (new_buf, _io_malloc_buf (fd), R_MIN (count, mallocsz));
data/radare2-4.3.1+dfsg/libr/io/p/io_malloc.c:119:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buf, _io_malloc_buf (fd) + _io_malloc_off (fd), count);
data/radare2-4.3.1+dfsg/libr/io/p/io_procpid.c:57:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char procpidpath[64];
data/radare2-4.3.1+dfsg/libr/io/p/io_procpid.c:60:13:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		int pid = atoi (file + 10);
data/radare2-4.3.1+dfsg/libr/io/p/io_procpid.c:117:13:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		int pid = atoi (cmd + 3);
data/radare2-4.3.1+dfsg/libr/io/p/io_ptrace.c:68:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (buf+x, &lr, last) ;
data/radare2-4.3.1+dfsg/libr/io/p/io_ptrace.c:107:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (buf, aligned_buf, len);
data/radare2-4.3.1+dfsg/libr/io/p/io_ptrace.c:131:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (&lr, buf + x, last);
data/radare2-4.3.1+dfsg/libr/io/p/io_ptrace.c:148:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char pidmem[32];
data/radare2-4.3.1+dfsg/libr/io/p/io_ptrace.c:150:12:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
	iop->fd = open (pidmem, O_RDWR);
data/radare2-4.3.1+dfsg/libr/io/p/io_ptrace.c:152:13:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
		iop->fd = open (pidmem, O_RDONLY);
data/radare2-4.3.1+dfsg/libr/io/p/io_ptrace.c:209:12:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	int pid = atoi (file + 9);
data/radare2-4.3.1+dfsg/libr/io/p/io_ptrace.c:306:15:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				int pid = atoi (cmd + 4);
data/radare2-4.3.1+dfsg/libr/io/p/io_qnx.c:34:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (buf, c_buff, sz);
data/radare2-4.3.1+dfsg/libr/io/p/io_qnx.c:81:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char host[128], *port, *p;
data/radare2-4.3.1+dfsg/libr/io/p/io_qnx.c:110:15:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	int i_port = atoi (port);
data/radare2-4.3.1+dfsg/libr/io/p/io_r2k.c:118:12:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
		int fd = open ("/dev/r2k", O_RDONLY);
data/radare2-4.3.1+dfsg/libr/io/p/io_r2k_linux.c:287:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (buf, data.buff, len);
data/radare2-4.3.1+dfsg/libr/io/p/io_r2k_linux.c:300:6:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
					memcpy (buf + offset, data.buff, pageaddr - address);
data/radare2-4.3.1+dfsg/libr/io/p/io_r2k_linux.c:314:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
						memcpy (buf + offset, data.buff, pagesize);
data/radare2-4.3.1+dfsg/libr/io/p/io_r2k_linux.c:328:6:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
					memcpy (buf + offset, data.buff, newlen);
data/radare2-4.3.1+dfsg/libr/io/p/io_r2k_linux.c:362:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (data.buff, buf, len);
data/radare2-4.3.1+dfsg/libr/io/p/io_r2k_linux.c:579:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (databuf, buf, strlen (buf) + 1);
data/radare2-4.3.1+dfsg/libr/io/p/io_r2k_linux.c:781:36:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			char *cmd = r_str_newf ("p %d", atoi (buf + 2));
data/radare2-4.3.1+dfsg/libr/io/p/io_r2k_linux.c:805:21:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			r2k_struct.pid = atoi (buf + 3);
data/radare2-4.3.1+dfsg/libr/io/p/io_r2k_linux.c:820:12:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			int v = atoi (eq + 1);
data/radare2-4.3.1+dfsg/libr/io/p/io_r2k_linux.c:837:12:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			int v = atoi (eq + 1);
data/radare2-4.3.1+dfsg/libr/io/p/io_r2k_linux.h:75:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char comm[16];
data/radare2-4.3.1+dfsg/libr/io/p/io_r2k_windows.c:129:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (buf, lpBuffer, len);
data/radare2-4.3.1+dfsg/libr/io/p/io_r2k_windows.c:156:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (&p->buffer, buf, len);
data/radare2-4.3.1+dfsg/libr/io/p/io_r2pipe.c:16:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char fmt[4096];
data/radare2-4.3.1+dfsg/libr/io/p/io_r2pipe.c:17:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *bufn, bufnum[4096];
data/radare2-4.3.1+dfsg/libr/io/p/io_r2pipe.c:46:11:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		count = atoi (r + 6 + 1);
data/radare2-4.3.1+dfsg/libr/io/p/io_r2pipe.c:53:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char fmt[4096], num[128];
data/radare2-4.3.1+dfsg/libr/io/p/io_r2pipe.c:76:14:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		rescount = atoi (r + 6 + 2);
data/radare2-4.3.1+dfsg/libr/io/p/io_r2pipe.c:104:20:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
					buf[bufi++] = atoi (num);
data/radare2-4.3.1+dfsg/libr/io/p/io_r2pipe.c:173:18:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		int rescount = atoi (r + 6 + 1);
data/radare2-4.3.1+dfsg/libr/io/p/io_r2web.c:57:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (buf, tmp, R_MIN (count, rlen));
data/radare2-4.3.1+dfsg/libr/io/p/io_rap.c:32:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (tmp + 5, buf, count);
data/radare2-4.3.1+dfsg/libr/io/p/io_rap.c:141:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[1024];
data/radare2-4.3.1+dfsg/libr/io/p/io_rap.c:158:6:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	p = atoi (port);
data/radare2-4.3.1+dfsg/libr/io/p/io_rap.c:224:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (buf + 3, file, buf[2]);
data/radare2-4.3.1+dfsg/libr/io/p/io_rap.c:288:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buf + 5, command, i);
data/radare2-4.3.1+dfsg/libr/io/p/io_rap.c:327:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (buf + 5, res, reslen);
data/radare2-4.3.1+dfsg/libr/io/p/io_self.c:84:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char path[1024], line[1024];
data/radare2-4.3.1+dfsg/libr/io/p/io_self.c:85:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char region[100], region2[100], perms[5];
data/radare2-4.3.1+dfsg/libr/io/p/io_self.c:102:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (region, "0x", 2);
data/radare2-4.3.1+dfsg/libr/io/p/io_self.c:106:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (region2, "0x", 2);
data/radare2-4.3.1+dfsg/libr/io/p/io_self.c:108:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (region2 + 2, pos_c, l);
data/radare2-4.3.1+dfsg/libr/io/p/io_self.c:199:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (buf, ptr, newlen);
data/radare2-4.3.1+dfsg/libr/io/p/io_self.c:213:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (ptr, buf, newlen);
data/radare2-4.3.1+dfsg/libr/io/p/io_self.c:349:14:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		int secs = atoi (cmd + 6);
data/radare2-4.3.1+dfsg/libr/io/p/io_self.c:713:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char e[_POSIX2_LINE_MAX];
data/radare2-4.3.1+dfsg/libr/io/p/io_shm.c:36:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		(void)memcpy (shm->buf + io->off, buf, count);
data/radare2-4.3.1+dfsg/libr/io/p/io_shm.c:52:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (buf, shm->buf+io->off , count);
data/radare2-4.3.1+dfsg/libr/io/p/io_shm.c:104:13:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		shm->id = atoi (ptr);
data/radare2-4.3.1+dfsg/libr/io/p/io_tcp.c:26:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (RIOTCP_BUF (fd)+io->off, buf, count);
data/radare2-4.3.1+dfsg/libr/io/p/io_tcp.c:42:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buf, RIOTCP_BUF (fd) + io->off, count);
data/radare2-4.3.1+dfsg/libr/io/p/io_tcp.c:146:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (mal->buf, out, mal->size);
data/radare2-4.3.1+dfsg/libr/io/p/io_w32dbg.c:197:25:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		dbg->pi.dwProcessId = atoi (file + 9);
data/radare2-4.3.1+dfsg/libr/io/p/io_w32dbg.c:242:14:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			int pid = atoi (cmd + 3);
data/radare2-4.3.1+dfsg/libr/io/p/io_winedbg.c:33:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[4096] = {0};
data/radare2-4.3.1+dfsg/libr/io/p/io_winedbg.c:72:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (&leftW, w + words, left);
data/radare2-4.3.1+dfsg/libr/io/p/io_winedbg.c:128:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (buf + (words * wordSize), wn, left);
data/radare2-4.3.1+dfsg/libr/io/p/io_zip.c:355:13:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	file_idx = atoi (idx);
data/radare2-4.3.1+dfsg/libr/io/p_cache.c:83:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char k[64];
data/radare2-4.3.1+dfsg/libr/io/p_cache.c:138:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char k[64];
data/radare2-4.3.1+dfsg/libr/io/plugin.c:36:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (static_plugin, io_static_plugins[i], sizeof (RIOPlugin));
data/radare2-4.3.1+dfsg/libr/io/plugin.c:77:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char str[4];
data/radare2-4.3.1+dfsg/libr/io/plugin.c:111:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char str[4];
data/radare2-4.3.1+dfsg/libr/io/undo.c:168:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
						memcpy (u, undo, sizeof (RIOUndos));
data/radare2-4.3.1+dfsg/libr/io/undo.c:210:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (uw->n, data, len);
data/radare2-4.3.1+dfsg/libr/lang/lang.c:235:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[1024];
data/radare2-4.3.1+dfsg/libr/lang/p/c.c:19:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *a, *cc, *p, name[512];
data/radare2-4.3.1+dfsg/libr/lang/p/cpipe.c:10:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *a, *cc, *p, name[512];
data/radare2-4.3.1+dfsg/libr/lang/p/pipe.c:169:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char *res, buf[8192]; // TODO: use the heap?
data/radare2-4.3.1+dfsg/libr/lang/p/pipe.c:204:13:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
		safe_in = open (ttyname(0), O_RDONLY);
data/radare2-4.3.1+dfsg/libr/lang/p/rust.c:9:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *a, *cc, *p, name[512];
data/radare2-4.3.1+dfsg/libr/lang/p/vala.c:11:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *p, name[512], buf[512];
data/radare2-4.3.1+dfsg/libr/magic/apprentice.c:71:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static const char *magic_file_names[FILE_NAMES_SIZE];
data/radare2-4.3.1+dfsg/libr/magic/apprentice.c:104:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	const char name[16];
data/radare2-4.3.1+dfsg/libr/magic/apprentice.c:501:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char line[BUFSIZ];
data/radare2-4.3.1+dfsg/libr/magic/apprentice.c:541:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char line[BUFSIZ];
data/radare2-4.3.1+dfsg/libr/magic/apprentice.c:595:2:  [2] (buffer) wchar_t:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	wchar_t dir[MAX_PATH];
data/radare2-4.3.1+dfsg/libr/magic/apprentice.c:598:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char subfn[1024];
data/radare2-4.3.1+dfsg/libr/magic/apprentice.c:602:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char subfn[MAXPATHLEN];
data/radare2-4.3.1+dfsg/libr/magic/apprentice.c:733:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		(void)memcpy (*magicp + mentrycount, marray[i].mp,
data/radare2-4.3.1+dfsg/libr/magic/apprentice.c:889:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char name[8];
data/radare2-4.3.1+dfsg/libr/magic/apprentice.c:1993:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (buf, fn, fnlen);
data/radare2-4.3.1+dfsg/libr/magic/apprentice.c:1994:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (buf+fnlen, ext, extlen);
data/radare2-4.3.1+dfsg/libr/magic/ascmagic.c:470:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static char text_chars[256] = {
data/radare2-4.3.1+dfsg/libr/magic/fsmagic.c:82:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[BUFSIZ+4];
data/radare2-4.3.1+dfsg/libr/magic/fsmagic.c:227:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char buf2[BUFSIZ+BUFSIZ+4];
data/radare2-4.3.1+dfsg/libr/magic/funcs.c:46:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char cbuf[4096];
data/radare2-4.3.1+dfsg/libr/magic/funcs.c:81:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (newstr, ms->o.buf, obuflen);
data/radare2-4.3.1+dfsg/libr/magic/funcs.c:82:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (newstr + obuflen, buf, buflen);
data/radare2-4.3.1+dfsg/libr/magic/funcs.c:293:11:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				(void)memcpy(np, op, bytesconsumed);
data/radare2-4.3.1+dfsg/libr/magic/magic.c:138:13:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
		if ((fd = open (inname, flags)) < 0) {
data/radare2-4.3.1+dfsg/libr/magic/names.h:61:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char human[48];
data/radare2-4.3.1+dfsg/libr/magic/names.h:62:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char mime[16];
data/radare2-4.3.1+dfsg/libr/magic/names.h:118:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[14];
data/radare2-4.3.1+dfsg/libr/magic/softmagic.c:288:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char errmsg[512];
data/radare2-4.3.1+dfsg/libr/magic/softmagic.c:307:8:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	(void)memcpy (copy, str, len);
data/radare2-4.3.1+dfsg/libr/magic/softmagic.c:877:8:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	(void)memcpy(p, s + offset, nbytes);
data/radare2-4.3.1+dfsg/libr/magic/softmagic.c:1423:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char errmsg[512];
data/radare2-4.3.1+dfsg/libr/magic/tar.h:53:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char charptr[RECORDSIZE];
data/radare2-4.3.1+dfsg/libr/magic/tar.h:55:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char	name[NAMSIZ];
data/radare2-4.3.1+dfsg/libr/magic/tar.h:56:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char	mode[8];
data/radare2-4.3.1+dfsg/libr/magic/tar.h:57:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char	uid[8];
data/radare2-4.3.1+dfsg/libr/magic/tar.h:58:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char	gid[8];
data/radare2-4.3.1+dfsg/libr/magic/tar.h:59:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char	size[12];
data/radare2-4.3.1+dfsg/libr/magic/tar.h:60:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char	mtime[12];
data/radare2-4.3.1+dfsg/libr/magic/tar.h:61:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char	chksum[8];
data/radare2-4.3.1+dfsg/libr/magic/tar.h:63:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char	linkname[NAMSIZ];
data/radare2-4.3.1+dfsg/libr/magic/tar.h:64:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char	magic[8];
data/radare2-4.3.1+dfsg/libr/magic/tar.h:65:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char	uname[TUNMLEN];
data/radare2-4.3.1+dfsg/libr/magic/tar.h:66:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char	gname[TGNMLEN];
data/radare2-4.3.1+dfsg/libr/magic/tar.h:67:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char	devmajor[8];
data/radare2-4.3.1+dfsg/libr/magic/tar.h:68:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char	devminor[8];
data/radare2-4.3.1+dfsg/libr/main/r2agent.c:141:15:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				int pid = atoi (rs->path + 11);
data/radare2-4.3.1+dfsg/libr/main/r2agent.c:177:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
				sprintf (result_heap,
data/radare2-4.3.1+dfsg/libr/main/radare2.c:630:20:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
		int new_stderr = open (nul, O_RDWR);
data/radare2-4.3.1+dfsg/libr/main/radiff2.c:126:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char s[256] = {0};
data/radare2-4.3.1+dfsg/libr/main/radiff2.c:770:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (ptr, str->name, namelen);
data/radare2-4.3.1+dfsg/libr/main/radiff2.c:814:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (ptr, str->string, str->length);
data/radare2-4.3.1+dfsg/libr/main/radiff2.c:937:11:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			bits = atoi (r_optarg);
data/radare2-4.3.1+dfsg/libr/main/radiff2.c:989:16:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			threshold = atoi (r_optarg);
data/radare2-4.3.1+dfsg/libr/main/rafind2.c:45:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char _str[128];
data/radare2-4.3.1+dfsg/libr/main/rafind2.c:63:6:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
					strcpy (str + j, "...");
data/radare2-4.3.1+dfsg/libr/main/ragg2.c:90:11:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
	int fd = open (f, O_RDWR | O_CREAT, 0644);
data/radare2-4.3.1+dfsg/libr/main/ragg2.c:92:8:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
		fd = open (f, O_RDWR);
data/radare2-4.3.1+dfsg/libr/main/ragg2.c:158:11:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			bits = atoi (r_optarg);
data/radare2-4.3.1+dfsg/libr/main/ragg2.c:361:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char buf[1024];
data/radare2-4.3.1+dfsg/libr/main/rahash2.c:441:17:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			iterations = atoi (r_optarg);
data/radare2-4.3.1+dfsg/libr/main/rahash2.c:613:6:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
					memcpy (str, s.buf, s.len);
data/radare2-4.3.1+dfsg/libr/main/rahash2.c:614:6:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
					memcpy (str + s.len, hashstr, hashstr_len);
data/radare2-4.3.1+dfsg/libr/main/rahash2.c:616:6:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
					memcpy (str, hashstr, hashstr_len);
data/radare2-4.3.1+dfsg/libr/main/rahash2.c:617:6:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
					memcpy (str + strsz, s.buf, s.len);
data/radare2-4.3.1+dfsg/libr/main/rasm2.c:178:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char bits[32];
data/radare2-4.3.1+dfsg/libr/main/rasm2.c:203:5:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
				strcat (bits, "27");
data/radare2-4.3.1+dfsg/libr/main/rasm2.c:206:6:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
					strcat (bits, "8 ");
data/radare2-4.3.1+dfsg/libr/main/rasm2.c:209:6:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
					strcat (bits, "16 ");
data/radare2-4.3.1+dfsg/libr/main/rasm2.c:212:6:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
					strcat (bits, "32 ");
data/radare2-4.3.1+dfsg/libr/main/rasm2.c:215:6:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
					strcat (bits, "64 ");
data/radare2-4.3.1+dfsg/libr/main/rasm2.c:629:9:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
			fd = open (r_optarg, O_TRUNC | O_RDWR | O_CREAT, 0644);
data/radare2-4.3.1+dfsg/libr/main/rasm2.c:703:50:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	r_asm_set_bits (as->a, (env_bits && *env_bits)? atoi (env_bits): bits);
data/radare2-4.3.1+dfsg/libr/main/rasm2.c:704:54:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	r_anal_set_bits (as->anal, (env_bits && *env_bits)? atoi (env_bits): bits);
data/radare2-4.3.1+dfsg/libr/main/rasm2.c:808:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char buf[1024]; // TODO: use(implement) r_stdin_line() or so
data/radare2-4.3.1+dfsg/libr/main/rasm2.c:870:36:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			ret = show_analinfo (as, (const char *)argv[r_optind], offset);
data/radare2-4.3.1+dfsg/libr/main/rax2.c:52:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char strbits[65];
data/radare2-4.3.1+dfsg/libr/main/rax2.c:170:11:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		switch (atoi (str + 1)) {
data/radare2-4.3.1+dfsg/libr/main/rax2.c:392:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char buf[8];
data/radare2-4.3.1+dfsg/libr/main/rax2.c:448:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char *asnum, unit[8];
data/radare2-4.3.1+dfsg/libr/main/rax2.c:449:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char out[128];
data/radare2-4.3.1+dfsg/libr/parse/filter.c:358:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
								char str[128];
data/radare2-4.3.1+dfsg/libr/parse/filter.c:374:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char num[256] = {0}, *pnum, *tmp;
data/radare2-4.3.1+dfsg/libr/parse/p/parse_6502_pseudo.c:126:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w0[256], w1[256], w2[256];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_6502_pseudo.c:138:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buf, data, len + 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_arm_pseudo.c:197:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w0[256], w1[256], w2[256], w3[256];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_arm_pseudo.c:208:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buf, data, len + 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_att2intel.c:72:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w0[32];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_att2intel.c:73:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w1[32];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_att2intel.c:74:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w2[32];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_att2intel.c:75:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w3[32];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_att2intel.c:108:8:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			n = atoi (num+1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_avr_pseudo.c:138:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w0[WSZ];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_avr_pseudo.c:139:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w1[WSZ];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_avr_pseudo.c:140:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w2[WSZ];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_avr_pseudo.c:141:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w3[WSZ];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_avr_pseudo.c:142:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w4[WSZ];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_avr_pseudo.c:149:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buf, data, len + 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_chip8_pseudo.c:77:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (token, buf, tokenlen);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_chip8_pseudo.c:93:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *argv[MAXARGS] = { NULL, NULL, NULL, NULL };
data/radare2-4.3.1+dfsg/libr/parse/p/parse_dalvik_pseudo.c:232:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w0[64];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_dalvik_pseudo.c:233:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w1[64];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_dalvik_pseudo.c:234:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w2[64];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_dalvik_pseudo.c:235:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w3[64];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_dalvik_pseudo.c:236:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w4[64];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_dalvik_pseudo.c:249:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buf, data, len + 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_dalvik_pseudo.c:332:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char a[32], b[32];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_m68k_pseudo.c:104:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w0[WSZ];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_m68k_pseudo.c:105:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w1[WSZ];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_m68k_pseudo.c:106:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w2[WSZ];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_m68k_pseudo.c:107:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w3[WSZ];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_m68k_pseudo.c:108:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w4[WSZ];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_m68k_pseudo.c:112:3:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
		strcpy (str, "ret");
data/radare2-4.3.1+dfsg/libr/parse/p/parse_m68k_pseudo.c:120:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buf, data, len+1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_m68k_pseudo.c:190:6:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
					memcpy (pluseq, " +=", 3);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_mips_pseudo.c:132:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w0[WSZ];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_mips_pseudo.c:133:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w1[WSZ];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_mips_pseudo.c:134:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w2[WSZ];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_mips_pseudo.c:135:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w3[WSZ];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_mips_pseudo.c:136:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w4[WSZ];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_mips_pseudo.c:140:3:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
		strcpy (str, "ret");
data/radare2-4.3.1+dfsg/libr/parse/p/parse_mips_pseudo.c:148:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buf, data, len+1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_mips_pseudo.c:225:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char a[32], b[32];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_ppc_pseudo.c:123:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	static char cspr[16];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_ppc_pseudo.c:1463:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char ppc_mask[32] = {0}; // enough to represent max val of 0xffffffffffffffff
data/radare2-4.3.1+dfsg/libr/parse/p/parse_ppc_pseudo.c:1552:17:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
							int to = atoi (w);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_ppc_pseudo.c:1616:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w0[WSZ];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_ppc_pseudo.c:1617:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w1[WSZ];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_ppc_pseudo.c:1618:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w2[WSZ];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_ppc_pseudo.c:1619:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w3[WSZ];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_ppc_pseudo.c:1620:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w4[WSZ];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_ppc_pseudo.c:1621:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w5[WSZ];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_ppc_pseudo.c:1625:3:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
		strcpy (str, "return");
data/radare2-4.3.1+dfsg/libr/parse/p/parse_ppc_pseudo.c:1633:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buf, data, len + 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_ppc_pseudo.c:1720:6:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
					char a[64], b[64];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_sh_pseudo.c:162:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w0[WSZ];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_sh_pseudo.c:163:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w1[WSZ];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_sh_pseudo.c:164:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w2[WSZ];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_sh_pseudo.c:165:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w3[WSZ];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_sh_pseudo.c:166:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w4[WSZ];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_sh_pseudo.c:173:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buf, data, len + 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_x86_pseudo.c:168:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char w0[256], w1[256], w2[256], w3[256];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_x86_pseudo.c:366:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char oldstr[64], newstr[64];
data/radare2-4.3.1+dfsg/libr/parse/p/parse_x86_pseudo.c:495:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char bp[32];
data/radare2-4.3.1+dfsg/libr/reg/arena.c:29:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (buf + osize, arena->bytes, arena->size);
data/radare2-4.3.1+dfsg/libr/reg/arena.c:46:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (buf, reg->regset[type].arena->bytes, sz);
data/radare2-4.3.1+dfsg/libr/reg/arena.c:76:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (arena->bytes, buf + off,
data/radare2-4.3.1+dfsg/libr/reg/arena.c:124:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (arena->bytes, buf, minsz);
data/radare2-4.3.1+dfsg/libr/reg/arena.c:240:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (b->bytes, a->bytes, b->size);
data/radare2-4.3.1+dfsg/libr/reg/arena.c:271:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (ret, regset->arena->bytes, regset->arena->size);
data/radare2-4.3.1+dfsg/libr/reg/arena.c:280:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (regset->arena->bytes, ret, regset->arena->size);
data/radare2-4.3.1+dfsg/libr/reg/arena.c:292:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (ret, source, regset->arena->size);
data/radare2-4.3.1+dfsg/libr/reg/double.c:28:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (&vld, regset->arena->bytes + off, sizeof (double));
data/radare2-4.3.1+dfsg/libr/reg/double.c:81:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (&vld, regset->arena->bytes + off, sizeof (long double));
data/radare2-4.3.1+dfsg/libr/reg/profile.c:130:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *tok[PARSER_MAX_TOKENS];
data/radare2-4.3.1+dfsg/libr/reg/profile.c:131:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char tmp[128];
data/radare2-4.3.1+dfsg/libr/reg/profile.c:267:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[16], groups[128], type[16];
data/radare2-4.3.1+dfsg/libr/reg/reg.c:8:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static const char *types[R_REG_TYPE_LAST + 1] = {
data/radare2-4.3.1+dfsg/libr/reg/reg.c:141:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static const char *roles[R_REG_NAME_LAST + 1] = {
data/radare2-4.3.1+dfsg/libr/reg/value.c:276:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (&ret, regset->arena->bytes + off, packbytes);
data/radare2-4.3.1+dfsg/libr/reg/value.c:299:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (dst, (ut8*)&val, packbytes);
data/radare2-4.3.1+dfsg/libr/search/bytepat.c:12:11:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	unsigned char str[MAX_PATLEN];
data/radare2-4.3.1+dfsg/libr/search/bytepat.c:45:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (p->str, blk, patlen);
data/radare2-4.3.1+dfsg/libr/search/keyword.c:32:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (kw->bin_keyword, kwbuf, kwlen);
data/radare2-4.3.1+dfsg/libr/search/keyword.c:39:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (kw->bin_binmask, bmbuf, bmlen);
data/radare2-4.3.1+dfsg/libr/search/keyword.c:238:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy(kw->bin_keyword, str + start, length);
data/radare2-4.3.1+dfsg/libr/search/old_xrefs.c:334:11:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
	src    = open(argv[optind], O_RDONLY);
data/radare2-4.3.1+dfsg/libr/search/search.c:185:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (left->data + left->len, buf, len1 - left->len);
data/radare2-4.3.1+dfsg/libr/search/search.c:248:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (left->data, buf + len - longest + 1, longest - 1);
data/radare2-4.3.1+dfsg/libr/search/search.c:395:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (left->data + left->len, buf, len1 - left->len);
data/radare2-4.3.1+dfsg/libr/search/search.c:443:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (left->data, buf + len - longest + 1, longest - 1);
data/radare2-4.3.1+dfsg/libr/search/strings.c:11:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static char *encodings[3] = { "ascii", "cp850", NULL };
data/radare2-4.3.1+dfsg/libr/search/strings.c:65:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char str[4096];
data/radare2-4.3.1+dfsg/libr/socket/http.c:48:9:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		len = atoi (p + 16);
data/radare2-4.3.1+dfsg/libr/socket/http.c:55:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (res, dn + delta, olen);
data/radare2-4.3.1+dfsg/libr/socket/http.c:67:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (res, dn + delta, len);
data/radare2-4.3.1+dfsg/libr/socket/http_server.c:15:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[1500], *p, *q;
data/radare2-4.3.1+dfsg/libr/socket/http_server.c:75:22:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				content_length = atoi (buf + 16);
data/radare2-4.3.1+dfsg/libr/socket/http_server.c:174:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (ret, data, datalen);
data/radare2-4.3.1+dfsg/libr/socket/http_server.c:213:4:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
			strcpy (buf, "<html><body><h2>XSS test</h2>\n");
data/radare2-4.3.1+dfsg/libr/socket/proc.c:114:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[BUFFER_SIZE];
data/radare2-4.3.1+dfsg/libr/socket/r2pipe.c:46:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (cmd, str, len - 1);
data/radare2-4.3.1+dfsg/libr/socket/r2pipe.c:176:14:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		int i_in = atoi (in);
data/radare2-4.3.1+dfsg/libr/socket/r2pipe.c:177:15:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		int i_out = atoi (out);
data/radare2-4.3.1+dfsg/libr/socket/r2pipe.c:212:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (&r2pipe->coreb, coreb, sizeof (RCoreBind));
data/radare2-4.3.1+dfsg/libr/socket/r2pipe.c:324:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *p, string[1024];
data/radare2-4.3.1+dfsg/libr/socket/rap_server.c:65:6:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
		s->open (s->user, (const char *)&s->buf[3], (int)s->buf[1], 0);
data/radare2-4.3.1+dfsg/libr/socket/run.c:167:11:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				rep = atoi (src + 1);
data/radare2-4.3.1+dfsg/libr/socket/run.c:303:12:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
	int fds = open (tn, O_RDWR);
data/radare2-4.3.1+dfsg/libr/socket/run.c:412:7:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
		f = open (cmd, flag, mode);
data/radare2-4.3.1+dfsg/libr/socket/run.c:467:13:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		p->_pid = atoi (e);
data/radare2-4.3.1+dfsg/libr/socket/run.c:499:17:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		p->_r2sleep = atoi (e);
data/radare2-4.3.1+dfsg/libr/socket/run.c:501:18:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		p->_maxstack = atoi (e);
data/radare2-4.3.1+dfsg/libr/socket/run.c:503:17:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		p->_maxproc = atoi (e);
data/radare2-4.3.1+dfsg/libr/socket/run.c:505:15:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		p->_maxfd = atoi (e);
data/radare2-4.3.1+dfsg/libr/socket/run.c:507:14:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		p->_bits = atoi (e);
data/radare2-4.3.1+dfsg/libr/socket/run.c:527:14:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		p->_nice = atoi (e);
data/radare2-4.3.1+dfsg/libr/socket/run.c:529:17:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		p->_timeout = atoi (e);
data/radare2-4.3.1+dfsg/libr/socket/run.c:533:11:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		int n = atoi (b + 3);
data/radare2-4.3.1+dfsg/libr/socket/run.c:541:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char *p, buf[1024];
data/radare2-4.3.1+dfsg/libr/socket/run.c:927:17:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		ret = setuid (atoi (p->_setuid));
data/radare2-4.3.1+dfsg/libr/socket/run.c:933:18:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		ret = seteuid (atoi (p->_seteuid));
data/radare2-4.3.1+dfsg/libr/socket/run.c:939:17:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		ret = setgid (atoi (p->_setgid));
data/radare2-4.3.1+dfsg/libr/socket/run.c:1103:22:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			int ret = setgid (atoi (p->_setgid));
data/radare2-4.3.1+dfsg/libr/socket/run.c:1112:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char pidstr[32];
data/radare2-4.3.1+dfsg/libr/socket/serial.c:48:11:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
	int fd = open (path, O_RDWR | O_SYNC | O_BINARY, 0); // O_NOCTY
data/radare2-4.3.1+dfsg/libr/socket/socket.c:101:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[2];
data/radare2-4.3.1+dfsg/libr/socket/socket.c:111:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[2];
data/radare2-4.3.1+dfsg/libr/socket/socket.c:229:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char aport[32];
data/radare2-4.3.1+dfsg/libr/socket/socket.c:230:2:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
	sprintf (aport, "%d", port);
data/radare2-4.3.1+dfsg/libr/socket/socket.c:708:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf (str, "%d.%d.%d.%d:%d",
data/radare2-4.3.1+dfsg/libr/socket/socket.c:761:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[BUFFER_SIZE];
data/radare2-4.3.1+dfsg/libr/syscall/syscall.c:273:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char foo[32];
data/radare2-4.3.1+dfsg/libr/util/asn1.c:164:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buf, buffer, length);
data/radare2-4.3.1+dfsg/libr/util/asn1.c:221:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char readable[20] = {0};
data/radare2-4.3.1+dfsg/libr/util/asn1.c:270:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	static char temp_name[4096] = {0};
data/radare2-4.3.1+dfsg/libr/util/assert.c:31:15:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		if (*env && atoi (env)) {
data/radare2-4.3.1+dfsg/libr/util/astr.c:40:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (str, s0->string, s0->length);
data/radare2-4.3.1+dfsg/libr/util/astr.c:41:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (str + s0->length - 1, s1->string, s1->length);
data/radare2-4.3.1+dfsg/libr/util/base85.c:52:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char out[5];
data/radare2-4.3.1+dfsg/libr/util/big-gmp.c:20:10:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		if (b) memcpy (n, b, sizeof (RNumBig));
data/radare2-4.3.1+dfsg/libr/util/big-ssl.c:14:18:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	BN_set_word (n, atoi (str));
data/radare2-4.3.1+dfsg/libr/util/big.c:42:10:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		if (b) memcpy (n, b, sizeof (RNumBig));
data/radare2-4.3.1+dfsg/libr/util/big.c:53:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (a, b, sizeof (RNumBig));
data/radare2-4.3.1+dfsg/libr/util/bitmap.c:27:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (b->bitmap, buf, len);
data/radare2-4.3.1+dfsg/libr/util/buf_sparse.c:43:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (s->data, data, len);
data/radare2-4.3.1+dfsg/libr/util/buf_sparse.c:62:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (s->data + delta, data, reallen);
data/radare2-4.3.1+dfsg/libr/util/buf_sparse.c:156:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (buf + c->from - priv->offset, c->data, l);
data/radare2-4.3.1+dfsg/libr/util/buf_sparse.c:159:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (buf, c->data + priv->offset - c->from, l);
data/radare2-4.3.1+dfsg/libr/util/cache.c:55:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (c->buf, buf, len);
data/radare2-4.3.1+dfsg/libr/util/cache.c:68:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (b + baselen, c->buf, c->len);
data/radare2-4.3.1+dfsg/libr/util/cache.c:69:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (b, buf, len);
data/radare2-4.3.1+dfsg/libr/util/cache.c:82:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (b + baselen, buf, len);
data/radare2-4.3.1+dfsg/libr/util/cache.c:86:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (c->buf, buf, len);
data/radare2-4.3.1+dfsg/libr/util/calc.c:231:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char str[R_NUMCALC_STRSZ + 1]; // TODO: move into the heap?
data/radare2-4.3.1+dfsg/libr/util/constr.c:33:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (c->b + i, str, l);
data/radare2-4.3.1+dfsg/libr/util/ctype.c:7:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char var[128];
data/radare2-4.3.1+dfsg/libr/util/ctype.c:48:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *p, var[130];
data/radare2-4.3.1+dfsg/libr/util/ctype.c:347:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *p, var[130], var2[132];
data/radare2-4.3.1+dfsg/libr/util/ctype.c:375:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char var3[128] = {0};
data/radare2-4.3.1+dfsg/libr/util/donut.c:11:26:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
       0,B=0,i,j,z[1760];char b[
data/radare2-4.3.1+dfsg/libr/util/donut.c:43:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char b[1760];
data/radare2-4.3.1+dfsg/libr/util/donut.c:44:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char o[1760];
data/radare2-4.3.1+dfsg/libr/util/file.c:155:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char string[1024];
data/radare2-4.3.1+dfsg/libr/util/file.c:757:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char pathbuf[4096] = {0};
data/radare2-4.3.1+dfsg/libr/util/file.c:818:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (mmap_buf+rest, buf, len);
data/radare2-4.3.1+dfsg/libr/util/file.c:850:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (obuf, buf, len);
data/radare2-4.3.1+dfsg/libr/util/file.c:875:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buf, mmap_buf+rest, len);
data/radare2-4.3.1+dfsg/libr/util/file.c:1077:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char pfxx[1024];
data/radare2-4.3.1+dfsg/libr/util/file.c:1093:7:  [2] (tmpfile) mkstemp:
  Potential for temporary file vulnerability in some circumstances. Some
  older Unix-like systems create temp files with permission to write by all
  by default, so be sure to set the umask to override this. Also, some older
  Unix systems might fail to use O_EXCL when opening the file, so make sure
  that O_EXCL is used by the library (CWE-377).
		h = mkstemp (name);
data/radare2-4.3.1+dfsg/libr/util/format.c:1277:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char esc_str[5] = { 0 };
data/radare2-4.3.1+dfsg/libr/util/format.c:1783:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char namefmt[128];
data/radare2-4.3.1+dfsg/libr/util/format.c:1884:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char namefmt[32], *field = NULL;
data/radare2-4.3.1+dfsg/libr/util/format.c:1920:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buf, b, len);
data/radare2-4.3.1+dfsg/libr/util/format.c:1927:19:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	otimes = times = atoi (arg);
data/radare2-4.3.1+dfsg/libr/util/format.c:2188:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (buf, b, len);
data/radare2-4.3.1+dfsg/libr/util/hex.c:294:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		sprintf (&out[i * 2], "%02x", b64d[i]);
data/radare2-4.3.1+dfsg/libr/util/hex.c:376:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char tmp[8];
data/radare2-4.3.1+dfsg/libr/util/hex.c:382:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (out + idx, tmp, 2);
data/radare2-4.3.1+dfsg/libr/util/hex.c:390:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char tmp[5], *out;
data/radare2-4.3.1+dfsg/libr/util/hex.c:401:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (out+idx, tmp, 2);
data/radare2-4.3.1+dfsg/libr/util/hex.c:457:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (out, in, ilen);
data/radare2-4.3.1+dfsg/libr/util/hex.c:466:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (mask, in, ilen);
data/radare2-4.3.1+dfsg/libr/util/hex.c:468:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (mask + ilen, "f0", 3);
data/radare2-4.3.1+dfsg/libr/util/json_indent.c:45:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	const char *words[DSZ] = { NULL };
data/radare2-4.3.1+dfsg/libr/util/lib.c:308:17:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				int major = atoi (stru->version);
data/radare2-4.3.1+dfsg/libr/util/lib.c:309:23:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				int minor = dot ? atoi (dot + 1) : 0;
data/radare2-4.3.1+dfsg/libr/util/lib.c:342:2:  [2] (buffer) wchar_t:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	wchar_t file[1024];
data/radare2-4.3.1+dfsg/libr/util/lib.c:345:2:  [2] (buffer) wchar_t:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	wchar_t directory[MAX_PATH];
data/radare2-4.3.1+dfsg/libr/util/lib.c:349:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char file[1024];
data/radare2-4.3.1+dfsg/libr/util/log.c:15:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static char cfg_logfile[LOG_CONFIGSTR_SIZE] = ""; // Output text to filename
data/radare2-4.3.1+dfsg/libr/util/log.c:86:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char output_buf[LOG_OUTPUTBUF_SIZE] = ""; // Big buffer for building the output string
data/radare2-4.3.1+dfsg/libr/util/mem.c:66:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (dst, src, bytes);
data/radare2-4.3.1+dfsg/libr/util/mem.c:160:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (dest, src, len);
data/radare2-4.3.1+dfsg/libr/util/mem.c:184:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (buffer, orig, 4);
data/radare2-4.3.1+dfsg/libr/util/mem.c:191:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (buffer, orig, 8);
data/radare2-4.3.1+dfsg/libr/util/mem.c:288:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (d, s, l);
data/radare2-4.3.1+dfsg/libr/util/pj.c:57:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char msg[2] = { type, 0 };
data/radare2-4.3.1+dfsg/libr/util/pj.c:84:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char msg[2] = { j->braces[j->level], 0 };
data/radare2-4.3.1+dfsg/libr/util/pj.c:90:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char msg[2] = { j->braces[j->level], 0 };
data/radare2-4.3.1+dfsg/libr/util/pj.c:239:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char ch[2] = { 0 };
data/radare2-4.3.1+dfsg/libr/util/print.c:13:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static const char hex[16] = "0123456789ABCDEF";
data/radare2-4.3.1+dfsg/libr/util/print.c:81:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	const char *kol[5];
data/radare2-4.3.1+dfsg/libr/util/print.c:175:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	static char data[32768]; // ???
data/radare2-4.3.1+dfsg/libr/util/print.c:311:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (p->datefmt, "%Y-%m-%d %H:%M:%S %z");
data/radare2-4.3.1+dfsg/libr/util/print.c:433:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char space[32] = {
data/radare2-4.3.1+dfsg/libr/util/print.c:488:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
					static char rgbstr[32];
data/radare2-4.3.1+dfsg/libr/util/print.c:550:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (x, y, strlen (y));\
data/radare2-4.3.1+dfsg/libr/util/print.c:589:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (d, s, d_inc);
data/radare2-4.3.1+dfsg/libr/util/print.c:607:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static char colorbuffer[64];
data/radare2-4.3.1+dfsg/libr/util/print.c:924:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char soff[32];
data/radare2-4.3.1+dfsg/libr/util/print.c:1368:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		sprintf (fmt, "%02x", a);
data/radare2-4.3.1+dfsg/libr/util/print.c:1382:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		sprintf (fmt, "%c", ch);
data/radare2-4.3.1+dfsg/libr/util/print.c:1397:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (r, b, len);
data/radare2-4.3.1+dfsg/libr/util/print.c:1404:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char linediff, fmt[64];
data/radare2-4.3.1+dfsg/libr/util/print.c:1674:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	const char *kol[5];
data/radare2-4.3.1+dfsg/libr/util/print.c:1934:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static char o[COLORIZE_BUFSIZE];
data/radare2-4.3.1+dfsg/libr/util/print.c:2015:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (o + j, num2, nlen + 1);
data/radare2-4.3.1+dfsg/libr/util/qrcode.c:996:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static char qrcode_utf8_expansions[16][7] = { "  ","▀ "," ▀","▀▀",
data/radare2-4.3.1+dfsg/libr/util/qrcode.c:1011:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buf, text, len);
data/radare2-4.3.1+dfsg/libr/util/qrcode.c:1046:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (p, pixel, strlen (pixel));
data/radare2-4.3.1+dfsg/libr/util/qrcode.c:1056:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (p, pixel, strlen (pixel));
data/radare2-4.3.1+dfsg/libr/util/randomart.c:98:2:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
	sprintf (retval, "+--[0x%08"PFMT64x"]-", addr);
data/radare2-4.3.1+dfsg/libr/util/range.c:43:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buf, r->data, len);
data/radare2-4.3.1+dfsg/libr/util/range.c:57:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (r->data, buf, len);
data/radare2-4.3.1+dfsg/libr/util/range.c:100:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (str, string, len);
data/radare2-4.3.1+dfsg/libr/util/regex/engine.c:1061:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	static char pbuf[10];
data/radare2-4.3.1+dfsg/libr/util/regex/regcomp.c:108:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static char nuls[10];		/* place to point scanner in event of error */
data/radare2-4.3.1+dfsg/libr/util/regex/regcomp.c:171:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (r, &rx, sizeof (RRegex));
data/radare2-4.3.1+dfsg/libr/util/regex/regcomp.c:1022:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char bracket[3];
data/radare2-4.3.1+dfsg/libr/util/regex/regcomp.c:1061:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char bracket[16] = {0};
data/radare2-4.3.1+dfsg/libr/util/regex/regcomp.c:1062:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char digits[3] = {0};
data/radare2-4.3.1+dfsg/libr/util/regex/regcomp.c:1083:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (bracket, "\t\r\n ]", num);
data/radare2-4.3.1+dfsg/libr/util/regex/regcomp.c:1087:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (bracket, "0-9]", num);
data/radare2-4.3.1+dfsg/libr/util/regex/regcomp.c:1091:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (bracket, "a-z]", num);
data/radare2-4.3.1+dfsg/libr/util/regex/regcomp.c:1119:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char bracket[4];
data/radare2-4.3.1+dfsg/libr/util/regex/regcomp.c:1504:11:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			(void) memcpy((char *)(p->strip + p->slen),
data/radare2-4.3.1+dfsg/libr/util/regex/regerror.c:85:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char convbuf[50];
data/radare2-4.3.1+dfsg/libr/util/regex/regexec.c:109:22:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
#define	ASSIGN(d, s)	memcpy(d, s, m->g->nstates)
data/radare2-4.3.1+dfsg/libr/util/regex/utils.h:56:26:  [2] (buffer) bcopy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
#define	memmove(d, s, c)	bcopy(s, d, c)
data/radare2-4.3.1+dfsg/libr/util/sandbox.c:244:11:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
	int fd = open (path, O_CREAT | O_TRUNC | O_WRONLY, mode);
data/radare2-4.3.1+dfsg/libr/util/sandbox.c:321:8:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
	ret = open (epath, perm, mode);
data/radare2-4.3.1+dfsg/libr/util/sandbox.c:363:9:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
		ret = fopen (epath, mode);
data/radare2-4.3.1+dfsg/libr/util/sandbox.c:396:2:  [2] (buffer) wchar_t:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	wchar_t dir[MAX_PATH];
data/radare2-4.3.1+dfsg/libr/util/seven.c:16:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char tmp[2];
data/radare2-4.3.1+dfsg/libr/util/seven.c:30:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf (tmp, "%x", (ch1 >> 4));
data/radare2-4.3.1+dfsg/libr/util/seven.c:32:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf (tmp, "%x", (ch1 & 0x0F));
data/radare2-4.3.1+dfsg/libr/util/seven.c:46:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char buf[8];
data/radare2-4.3.1+dfsg/libr/util/seven.c:51:17:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
                sprintf (buf, "%c%c", src[i], src[i+1]);
data/radare2-4.3.1+dfsg/libr/util/signal.c:57:9:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	return atoi (e);
data/radare2-4.3.1+dfsg/libr/util/str.c:261:12:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	int ret = atoi (str);
data/radare2-4.3.1+dfsg/libr/util/str.c:314:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (dst, home, home_len + 1);
data/radare2-4.3.1+dfsg/libr/util/str.c:534:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (out, stra, alen);
data/radare2-4.3.1+dfsg/libr/util/str.c:536:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (out + alen, newstr, strlen (newstr) + 1);
data/radare2-4.3.1+dfsg/libr/util/str.c:538:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (out + alen + strlen (newstr) + 1, p + strlen (p) + 1, blen + 1);
data/radare2-4.3.1+dfsg/libr/util/str.c:724:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (buf, str, len);
data/radare2-4.3.1+dfsg/libr/util/str.c:739:3:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
		strcpy (buf + len - 4, "...");
data/radare2-4.3.1+dfsg/libr/util/str.c:926:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (ptr + plen, string, slen + 1);
data/radare2-4.3.1+dfsg/libr/util/str.c:953:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char b[2] = { y, 0 };
data/radare2-4.3.1+dfsg/libr/util/str.c:997:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (p, val, vlen);
data/radare2-4.3.1+dfsg/libr/util/str.c:1049:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (p, tmp_val, vlen);
data/radare2-4.3.1+dfsg/libr/util/str.c:1052:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (p, val, vlen);
data/radare2-4.3.1+dfsg/libr/util/str.c:1123:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (str_p, val, vlen);
data/radare2-4.3.1+dfsg/libr/util/str.c:1124:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (str_p + vlen, scnd, strlen (scnd) + 1);
data/radare2-4.3.1+dfsg/libr/util/str.c:1362:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
						memcpy (q, start_seq, p - start_seq + 1);
data/radare2-4.3.1+dfsg/libr/util/str.c:1816:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (tmp, str, len + 1);
data/radare2-4.3.1+dfsg/libr/util/str.c:1887:6:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
					memcpy (r, reset, reset_length + 1);
data/radare2-4.3.1+dfsg/libr/util/str.c:2471:11:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			cb (u, atoi (p));
data/radare2-4.3.1+dfsg/libr/util/str.c:2476:16:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				int from = atoi (p);
data/radare2-4.3.1+dfsg/libr/util/str.c:2477:14:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				int to = atoi (r + 1);
data/radare2-4.3.1+dfsg/libr/util/str.c:2491:10:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		cb (u, atoi (p));
data/radare2-4.3.1+dfsg/libr/util/str.c:2557:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char ch[4], *d, *od;
data/radare2-4.3.1+dfsg/libr/util/str.c:2692:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char ch[4], *d, *od, *tmp;
data/radare2-4.3.1+dfsg/libr/util/str.c:2742:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char namefmt[8];
data/radare2-4.3.1+dfsg/libr/util/str.c:2750:10:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	times = atoi (arg);
data/radare2-4.3.1+dfsg/libr/util/str.c:2889:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (o, pfx, pfx_len);
data/radare2-4.3.1+dfsg/libr/util/str.c:2893:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (p, pfx, pfx_len);
data/radare2-4.3.1+dfsg/libr/util/str.c:3065:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	static char pad[1024];
data/radare2-4.3.1+dfsg/libr/util/str.c:3334:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char o[1024] = {0};
data/radare2-4.3.1+dfsg/libr/util/strbuf.c:44:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (p, src->ptr, src->ptrlen);
data/radare2-4.3.1+dfsg/libr/util/strbuf.c:67:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (newptr, sb->buf, sizeof (sb->buf));
data/radare2-4.3.1+dfsg/libr/util/strbuf.c:89:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (ptr, s, l);
data/radare2-4.3.1+dfsg/libr/util/strbuf.c:93:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (sb->buf, s, l);
data/radare2-4.3.1+dfsg/libr/util/strbuf.c:148:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char string[1024];
data/radare2-4.3.1+dfsg/libr/util/strbuf.c:184:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (ns, s, l);
data/radare2-4.3.1+dfsg/libr/util/strbuf.c:186:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (ns + l, s, sb->len);
data/radare2-4.3.1+dfsg/libr/util/strbuf.c:211:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (sb->buf + sb->len, s, l);
data/radare2-4.3.1+dfsg/libr/util/strbuf.c:221:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (p, sb->buf, sb->len);
data/radare2-4.3.1+dfsg/libr/util/strbuf.c:236:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (p + sb->len, s, l);
data/radare2-4.3.1+dfsg/libr/util/strbuf.c:258:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char string[1024];
data/radare2-4.3.1+dfsg/libr/util/strpool.c:65:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (ptr, s, len);
data/radare2-4.3.1+dfsg/libr/util/strpool.c:154:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (o, x, len);
data/radare2-4.3.1+dfsg/libr/util/sys.c:281:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *ret, cmd[4096];
data/radare2-4.3.1+dfsg/libr/util/sys.c:428:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char cmd[1024];
data/radare2-4.3.1+dfsg/libr/util/sys.c:542:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[3] = {0};
data/radare2-4.3.1+dfsg/libr/util/sys.c:596:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buffer[1024], *outputptr = NULL;
data/radare2-4.3.1+dfsg/libr/util/sys.c:753:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char cmd[4096];
data/radare2-4.3.1+dfsg/libr/util/sys.c:795:8:  [2] (race) vfork:
  On some old systems, vfork() permits race conditions, and it's very
  difficult to use correctly (CWE-362). Use fork() instead.
	pid = vfork ();
data/radare2-4.3.1+dfsg/libr/util/sys.c:976:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (ptr, buf, len);
data/radare2-4.3.1+dfsg/libr/util/sys.c:1026:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (bufptr, buf, len);
data/radare2-4.3.1+dfsg/libr/util/sys.c:1077:2:  [2] (buffer) TCHAR:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	TCHAR filename[MAX_PATH];
data/radare2-4.3.1+dfsg/libr/util/sys.c:1121:3:  [2] (buffer) TCHAR:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		TCHAR device[MAX_PATH];
data/radare2-4.3.1+dfsg/libr/util/sys.c:1165:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char pathbuf[PROC_PIDPATHINFO_MAXSIZE];
data/radare2-4.3.1+dfsg/libr/util/sys.c:1176:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char pathbuf[PATH_MAX];
data/radare2-4.3.1+dfsg/libr/util/sys.c:1184:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[128], pathbuf[1024];
data/radare2-4.3.1+dfsg/libr/util/sys.c:1215:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char _buf[32];
data/radare2-4.3.1+dfsg/libr/util/sys.c:1221:2:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
	sprintf (buf, "pid%d", pid);
data/radare2-4.3.1+dfsg/libr/util/sys.c:1294:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char tmp[256] = {0};
data/radare2-4.3.1+dfsg/libr/util/syscmd.c:197:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (d, path, off);
data/radare2-4.3.1+dfsg/libr/util/table.c:72:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (c, col, sizeof (*c));
data/radare2-4.3.1+dfsg/libr/util/table.c:324:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char tmp[64];
data/radare2-4.3.1+dfsg/libr/util/table.c:419:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char tmp[64];
data/radare2-4.3.1+dfsg/libr/util/table.c:540:27:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			match = strlen (nn) == atoi (un);
data/radare2-4.3.1+dfsg/libr/util/table.c:543:26:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			match = strlen (nn) > atoi (un);
data/radare2-4.3.1+dfsg/libr/util/table.c:546:26:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			match = strlen (nn) < atoi (un);
data/radare2-4.3.1+dfsg/libr/util/table.c:811:11:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				col = atoi (columnName + 1);
data/radare2-4.3.1+dfsg/libr/util/thread_sem.c:26:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[38];
data/radare2-4.3.1+dfsg/libr/util/ubase64.c:15:47:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static void local_b64_encode(const ut8 in[3], char out[4], int len) {
data/radare2-4.3.1+dfsg/libr/util/ubase64.c:25:35:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static int local_b64_decode(const char in[4], ut8 out[3]) {
data/radare2-4.3.1+dfsg/libr/util/unum.c:169:11:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		switch (atoi (str + 2)) {
data/radare2-4.3.1+dfsg/libr/util/unum.c:444:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (s, str, len);
data/radare2-4.3.1+dfsg/libr/util/unum.c:661:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char str[34]; // 8 byte * 4 chars in \x?? format
data/radare2-4.3.1+dfsg/libr/util/unum.c:742:3:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
		strcpy (p, "0x");
data/radare2-4.3.1+dfsg/libr/util/unum.c:766:3:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
		strcpy (p, "0x");
data/radare2-4.3.1+dfsg/libr/util/utf8.c:646:16:  [2] (buffer) MultiByteToWideChar:
  Requires maximum length in CHARACTERS, not bytes (CWE-120).
	if ((wcsize = MultiByteToWideChar (CP_UTF8, 0, cstring, len, NULL, 0))) {
data/radare2-4.3.1+dfsg/libr/util/utf8.c:649:4:  [2] (buffer) MultiByteToWideChar:
  Requires maximum length in CHARACTERS, not bytes (CWE-120).
			MultiByteToWideChar (CP_UTF8, 0, cstring, len, rutf16, wcsize);
data/radare2-4.3.1+dfsg/libr/util/utf8.c:664:16:  [2] (buffer) MultiByteToWideChar:
  Requires maximum length in CHARACTERS, not bytes (CWE-120).
	if ((wcsize = MultiByteToWideChar (CP_UTF8, 0, str, len, NULL, 0))) {
data/radare2-4.3.1+dfsg/libr/util/utf8.c:668:4:  [2] (buffer) MultiByteToWideChar:
  Requires maximum length in CHARACTERS, not bytes (CWE-120).
			MultiByteToWideChar (CP_UTF8, 0, str, len, rutf16, wcsize);
data/radare2-4.3.1+dfsg/libr/util/utf8.c:692:16:  [2] (buffer) MultiByteToWideChar:
  Requires maximum length in CHARACTERS, not bytes (CWE-120).
	if ((wcsize = MultiByteToWideChar (CP_ACP, 0, str, len, NULL, 0))) {
data/radare2-4.3.1+dfsg/libr/util/utf8.c:696:4:  [2] (buffer) MultiByteToWideChar:
  Requires maximum length in CHARACTERS, not bytes (CWE-120).
			MultiByteToWideChar (CP_ACP, 0, str, len, rutf16, wcsize);
data/radare2-4.3.1+dfsg/libr/util/vector.c:82:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (dst->a, src->a, src->elem_size * src->len);
data/radare2-4.3.1+dfsg/libr/util/vector.c:104:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (p, elem, vec->elem_size);
data/radare2-4.3.1+dfsg/libr/util/vector.c:152:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (p, first, sz);
data/radare2-4.3.1+dfsg/libr/util/w32-sys.c:16:2:  [2] (buffer) TCHAR:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	TCHAR fullpath[MAX_PATH + 1];
data/radare2-4.3.1+dfsg/libr/util/w32-sys.c:17:2:  [2] (buffer) TCHAR:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	TCHAR shortpath[MAX_PATH + 1];
data/radare2-4.3.1+dfsg/libr/util/w32-sys.c:187:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (str+strl, chBuf, dwRead);
data/radare2-4.3.1+dfsg/shlr/bochs/include/libbochs.h:47:39:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
#define lprintf(x,y...) { FILE *fd;fd=fopen("bochs.io.log", "a"); if (fd) {fprintf(fd,x,##y);fflush(fd);fclose(fd); }}
data/radare2-4.3.1+dfsg/shlr/bochs/src/libbochs.c:106:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (b->data + b->punteroBuffer, lpTmpBuffer, n + 1);
data/radare2-4.3.1+dfsg/shlr/bochs/src/libbochs.c:138:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buff[128];
data/radare2-4.3.1+dfsg/shlr/bochs/src/libbochs.c:203:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char commandline[1024];
data/radare2-4.3.1+dfsg/shlr/gdb/include/arch.h:11:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[32]; /*! The Name of the current register */
data/radare2-4.3.1+dfsg/shlr/gdb/include/libgdbr.h:151:18:  [2] (race) vfork:
  On some old systems, vfork() permits race conditions, and it's very
  difficult to use correctly (CWE-362). Use fork() instead.
	} thread, fork, vfork;
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:303:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char cmd[64] = { 0 };
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:312:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (cmd, "Hg");
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:673:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (reg_cache.buf, g->data, reg_cache.buflen);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:691:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (g->data, reg_cache.buf, reg_cache.buflen);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:715:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (reg_cache.buf, g->data, reg_cache.buflen);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:726:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char command[128] = { 0 };
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:774:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (buf + delta, g->data, left);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:801:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (buf + delta, g->data, left);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:929:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char thread_id[64] = { 0 };
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:950:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char thread_id[64] = { 0 };
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:951:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char command[16] = { 0 };
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:1020:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char command[255] = { 0 };
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:1036:25:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	memset (command + ret, atoi ("0"), len);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:1087:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (g->data + g->registers[i].offset, value, len);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:1122:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buff, registers, len);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:1213:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char tmp[255] = { 0 };
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:1302:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char tmp[255] = { 0 };
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:1397:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char tmp[255] = { 0 };
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:1465:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (buf, "vFile:open:");
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:1487:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char command[64];
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:1541:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[64];
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:1586:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (buf, "qRcmd,");
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:1637:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char msg[128], pidstr[16];
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:1711:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char msg[64] = { 0 }, thread_id[63] = { 0 };
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/responses.c:173:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (buf, ptr, len);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/responses.c:346:60:  [2] (race) vfork:
  On some old systems, vfork() permits race conditions, and it's very
  difficult to use correctly (CWE-362). Use fork() instead.
			if (r_str_startswith (ptr1, "vfork") && !g->stop_reason.vfork.present) {
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/responses.c:351:47:  [2] (race) vfork:
  On some old systems, vfork() permits race conditions, and it's very
  difficult to use correctly (CWE-362). Use fork() instead.
				if (read_thread_id (ptr2, &g->stop_reason.vfork.pid,
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/responses.c:352:27:  [2] (race) vfork:
  On some old systems, vfork() permits race conditions, and it's very
  difficult to use correctly (CWE-362). Use fork() instead.
						    &g->stop_reason.vfork.tid,
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/responses.c:356:20:  [2] (race) vfork:
  On some old systems, vfork() permits race conditions, and it's very
  difficult to use correctly (CWE-362). Use fork() instead.
				g->stop_reason.vfork.present = true;
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/responses.c:431:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (g->data, buf, buflen);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/xml.c:74:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (tmp, subret, subret_len);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/xml.c:75:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (tmp + subret_len, tmp + subret_space,
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/xml.c:95:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (tmp, subret, subret_len);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/xml.c:153:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char type[32];
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/xml.c:155:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char name[32];
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/xml.c:164:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[32];
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/xml.c:165:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char type[8];
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/xml.c:212:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (arch_regs[regnum].name, tmpreg->name, sizeof (tmpreg->name));
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/xml.c:363:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char pidstr[MAX_PID_CHARS + 1], status[1024], cmdline[1024];
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/xml.c:393:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (pidstr, column, column_data_len);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/xml.c:396:10:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		ipid = atoi (pidstr);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/xml.c:411:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (cmdline, column, column_data_len);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/xml.c:707:20:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		pid_info->ppid = atoi (ptr + 5);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/xml.c:711:19:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		pid_info->uid = atoi (ptr + 5);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/xml.c:715:19:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		pid_info->gid = atoi (ptr + 5);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/xml.c:832:5:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
				strcpy (pc_alias, "=PC	");
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbserver/core.c:42:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[64], *ptr;
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbserver/core.c:43:14:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
	ptr = buf + sprintf (buf, "TextSeg=");
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbserver/core.c:56:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *buf, *ptr, cmd[64] = { 0 };
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbserver/core.c:119:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char message[64];
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbserver/core.c:139:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char message[64];
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbserver/core.c:159:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char message[64] = { 0 };
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbserver/core.c:210:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char cmd[64];
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbserver/core.c:288:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char cmd[32];
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbserver/core.c:313:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char cmd[32];
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbserver/core.c:418:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char message[128] = { 0 }, cmd[128] = { 0 };
data/radare2-4.3.1+dfsg/shlr/gdb/src/packet.c:63:6:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
					memcpy (g->read_buff, g->read_buff + i + 1, g->read_len);
data/radare2-4.3.1+dfsg/shlr/gdb/src/utils.c:121:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char hex[49], *p;
data/radare2-4.3.1+dfsg/shlr/gdb/src/utils.c:122:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char txt[17], *c;
data/radare2-4.3.1+dfsg/shlr/gdb/src/utils.c:130:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			p += sprintf (p, "%02x ", data[x]);
data/radare2-4.3.1+dfsg/shlr/grub/fs/afs.c:134:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char key_data[0];
data/radare2-4.3.1+dfsg/shlr/grub/fs/afs.c:163:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char name[32];
data/radare2-4.3.1+dfsg/shlr/grub/fs/afs.c:379:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char node_data [GRUB_AFS_BNODE_SIZE];
data/radare2-4.3.1+dfsg/shlr/grub/fs/afs.c:423:15:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
              char filename [key_size + 1];
data/radare2-4.3.1+dfsg/shlr/grub/fs/cpio.c:54:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char name[100];
data/radare2-4.3.1+dfsg/shlr/grub/fs/cpio.c:55:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char mode[8];
data/radare2-4.3.1+dfsg/shlr/grub/fs/cpio.c:56:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char uid[8];
data/radare2-4.3.1+dfsg/shlr/grub/fs/cpio.c:57:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char gid[8];
data/radare2-4.3.1+dfsg/shlr/grub/fs/cpio.c:58:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char size[12];
data/radare2-4.3.1+dfsg/shlr/grub/fs/cpio.c:59:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char mtime[12];
data/radare2-4.3.1+dfsg/shlr/grub/fs/cpio.c:60:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char chksum[8];
data/radare2-4.3.1+dfsg/shlr/grub/fs/cpio.c:62:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char linkname[100];
data/radare2-4.3.1+dfsg/shlr/grub/fs/cpio.c:63:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char magic[6];
data/radare2-4.3.1+dfsg/shlr/grub/fs/cpio.c:64:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char version[2];
data/radare2-4.3.1+dfsg/shlr/grub/fs/cpio.c:65:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char uname[32];
data/radare2-4.3.1+dfsg/shlr/grub/fs/cpio.c:66:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char gname[32];
data/radare2-4.3.1+dfsg/shlr/grub/fs/cpio.c:67:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char devmajor[8];
data/radare2-4.3.1+dfsg/shlr/grub/fs/cpio.c:68:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char devminor[8];
data/radare2-4.3.1+dfsg/shlr/grub/fs/cpio.c:69:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char prefix[155];
data/radare2-4.3.1+dfsg/shlr/grub/fs/ext2.c:172:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char volume_name[16];
data/radare2-4.3.1+dfsg/shlr/grub/fs/ext2.c:173:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char last_mounted_on[64];
data/radare2-4.3.1+dfsg/shlr/grub/fs/ext2.c:229:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char symlink[60];
data/radare2-4.3.1+dfsg/shlr/grub/fs/fb.c:32:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char fb_list[0];
data/radare2-4.3.1+dfsg/shlr/grub/fs/fb.c:40:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char buf[512];
data/radare2-4.3.1+dfsg/shlr/grub/fs/hfs.c:407:25:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  static const unsigned char hfs_charorder[256] = {
data/radare2-4.3.1+dfsg/shlr/grub/fs/hfs.c:676:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char rawnode[nodesize];
data/radare2-4.3.1+dfsg/shlr/grub/fs/hfs.c:687:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char rawnode[512];
data/radare2-4.3.1+dfsg/shlr/grub/fs/hfs.c:1034:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char fname[32] = { 0 };
data/radare2-4.3.1+dfsg/shlr/grub/fs/jfs.c:235:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char sorted[0];
data/radare2-4.3.1+dfsg/shlr/grub/fs/jfs.c:245:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char name[255];
data/radare2-4.3.1+dfsg/shlr/grub/fs/jfs.c:741:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char symlink[size + 1];
data/radare2-4.3.1+dfsg/shlr/grub/fs/minix.c:296:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char symlink[GRUB_MINIX_INODE_SIZE (data) + 1];
data/radare2-4.3.1+dfsg/shlr/grub/fs/minix.c:525:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	  char filename[data->filename_size + 1];
data/radare2-4.3.1+dfsg/shlr/grub/fs/nilfs2.c:121:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char s_volume_name[16];
data/radare2-4.3.1+dfsg/shlr/grub/fs/nilfs2.c:122:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char s_last_mounted[64];
data/radare2-4.3.1+dfsg/shlr/grub/fs/nilfs2.c:488:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char block[NILFS2_BLOCK_SIZE (data)];
data/radare2-4.3.1+dfsg/shlr/grub/fs/nilfs2.c:846:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	  char filename[dirent.name_len + 1];
data/radare2-4.3.1+dfsg/shlr/grub/fs/reiserfs.c:308:47:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
                   ((unsigned int) ((unsigned char *) buffer)[a]) & 0xFF);
data/radare2-4.3.1+dfsg/shlr/grub/fs/reiserfs.c:335:54:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    grub_printf ("%02x ", ((unsigned int) ((unsigned char *) key)[a]) & 0xFF);
data/radare2-4.3.1+dfsg/shlr/grub/fs/ufs.c:436:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char symlink[INODE_SIZE (data)];
data/radare2-4.3.1+dfsg/shlr/grub/fs/ufs.c:698:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char filename[namelen + 1];
data/radare2-4.3.1+dfsg/shlr/grub/fs/xfs.c:76:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char name[1];
data/radare2-4.3.1+dfsg/shlr/grub/fs/xfs.c:124:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char raw[156];
data/radare2-4.3.1+dfsg/shlr/grub/fs/xfs.c:487:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char name[de->len + 1];
data/radare2-4.3.1+dfsg/shlr/grub/include/grub/disk.h:69:16:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
  grub_err_t (*open) (const char *name, struct grub_disk *disk);
data/radare2-4.3.1+dfsg/shlr/grub/include/grub/fbfs.h:80:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char name[0];
data/radare2-4.3.1+dfsg/shlr/grub/include/grub/fs.h:56:16:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
  grub_err_t (*open) (struct grub_file *file, const char *name);
data/radare2-4.3.1+dfsg/shlr/grub/include/grub/gpt_partition.h:78:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char name[72];
data/radare2-4.3.1+dfsg/shlr/grub/include/grub/lvm.h:29:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char id[GRUB_LVM_ID_STRLEN+1];
data/radare2-4.3.1+dfsg/shlr/grub/include/grub/lvm.h:38:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char id[GRUB_LVM_ID_STRLEN+1];
data/radare2-4.3.1+dfsg/shlr/grub/include/grub/mm_private.h:34:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char padding[4];
data/radare2-4.3.1+dfsg/shlr/grub/include/grub/mm_private.h:36:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char padding[8];
data/radare2-4.3.1+dfsg/shlr/grub/kern/disk.c:287:17:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
      if ((dev->open) (raw, disk) == GRUB_ERR_NONE)
data/radare2-4.3.1+dfsg/shlr/grub/kern/disk.c:581:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char tmp_buf[GRUB_DISK_SECTOR_SIZE];
data/radare2-4.3.1+dfsg/shlr/grub/kern/disk.c:652:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	  char tmp_buf[GRUB_DISK_SECTOR_SIZE];
data/radare2-4.3.1+dfsg/shlr/grub/kern/err.c:40:1:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
char grub_errmsg[GRUB_MAX_ERRMSG];
data/radare2-4.3.1+dfsg/shlr/grub/kern/err.c:45:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char errmsg[GRUB_MAX_ERRMSG];
data/radare2-4.3.1+dfsg/shlr/grub/kern/file.c:106:18:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
  if ((file->fs->open) (file, file_name) != GRUB_ERR_NONE)
data/radare2-4.3.1+dfsg/shlr/grub/kern/misc.c:683:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	  char tmp[32];
data/radare2-4.3.1+dfsg/shlr/grub/kern/misc.c:708:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		  char s[p - fmt + 1];
data/radare2-4.3.1+dfsg/shlr/grub/kern/misc.c:730:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		  char fstr[p - fmt + 1];
data/radare2-4.3.1+dfsg/shlr/grub/kern/mm.c:104:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char padding[4];
data/radare2-4.3.1+dfsg/shlr/grub/kern/mm.c:106:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char padding[8];
data/radare2-4.3.1+dfsg/shlr/grub/kern/partition.c:217:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	  char buf[grub_strlen (part->partmap->name) + 25];
data/radare2-4.3.1+dfsg/shlr/grub/main.c:19:14:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
		FILE *fd = fopen (IMGFILE, "rb");
data/radare2-4.3.1+dfsg/shlr/grub/main.c:35:14:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
		FILE *fd = fopen(IMGFILE, "rb");
data/radare2-4.3.1+dfsg/shlr/grub/main.c:66:14:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
		FILE *fd = fopen(IMGFILE, "rb");
data/radare2-4.3.1+dfsg/shlr/grub/main.c:98:12:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
	err = e2->open (file, "/test");
data/radare2-4.3.1+dfsg/shlr/grub/main.c:100:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char buf[1024];
data/radare2-4.3.1+dfsg/shlr/grub/main.c:120:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[1024];
data/radare2-4.3.1+dfsg/shlr/grub/main.c:122:17:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
	gfs->file->fs->open (gfs->file, "/test");
data/radare2-4.3.1+dfsg/shlr/grub/partmap/apple.c:55:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char partname[32];
data/radare2-4.3.1+dfsg/shlr/grub/partmap/apple.c:58:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char parttype[32];
data/radare2-4.3.1+dfsg/shlr/grub/partmap/apple.c:91:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char processor[16];
data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/hash.h:56:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy(&ret, (uint8_t *)(p + i), sizeof(uint32_t));
data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/hash.h:71:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy(&ret, (uint8_t *)(p + i), sizeof(uint64_t));
data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/prof.h:255:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
extern char	opt_prof_prefix[
data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/tsd.h:388:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy(wrapper, &a_name##tsd_boot_wrapper,			\
data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/tsd.h:525:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy(wrapper, &a_name##tsd_boot_wrapper,			\
data/radare2-4.3.1+dfsg/shlr/java/class.c:283:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf (cpy_buffer + pos, "\\x%02x", bytes[idx]);
data/radare2-4.3.1+dfsg/shlr/java/class.c:932:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (new_str, str_pos, str_len);
data/radare2-4.3.1+dfsg/shlr/java/class.c:1142:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (my_flags, access_flags_str, size);
data/radare2-4.3.1+dfsg/shlr/java/class.c:1205:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (cur_pos, the_string, len);
data/radare2-4.3.1+dfsg/shlr/java/class.c:1206:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (cur_pos + len, " ", 1);
data/radare2-4.3.1+dfsg/shlr/java/class.c:1473:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buf, f_buf, 8);
data/radare2-4.3.1+dfsg/shlr/java/class.c:1566:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (clone_obj, obj, sizeof (RBinJavaCPTypeObj));
data/radare2-4.3.1+dfsg/shlr/java/class.c:1573:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (clone_obj->info.cp_utf8.bytes, obj->info.cp_utf8.bytes, clone_obj->info.cp_utf8.length);
data/radare2-4.3.1+dfsg/shlr/java/class.c:1621:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (cp_buf, (ut8 *) buf + offset, buf_sz);
data/radare2-4.3.1+dfsg/shlr/java/class.c:1648:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (&idx, if_buf, 2);
data/radare2-4.3.1+dfsg/shlr/java/class.c:1971:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (attr_buf, a_buf, pending); // sz+1);
data/radare2-4.3.1+dfsg/shlr/java/class.c:2013:23:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		if (!strcmp ((const char *) name, RBIN_JAVA_ATTRS_METAS[i].name)) {
data/radare2-4.3.1+dfsg/shlr/java/class.c:2133:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy ((char *) &bin->cp_count, cp_buf, 2);
data/radare2-4.3.1+dfsg/shlr/java/class.c:2340:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy ((ut8 *) &bin->cf, buf, 10);
data/radare2-4.3.1+dfsg/shlr/java/class.c:3003:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (n_import, import, sizeof (RBinImport));
data/radare2-4.3.1+dfsg/shlr/java/class.c:3038:11:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			static char lang[32];
data/radare2-4.3.1+dfsg/shlr/java/class.c:3492:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (attr->info.code_attr.code, buffer + offset, len);
data/radare2-4.3.1+dfsg/shlr/java/class.c:3894:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (attr->info.debug_extensions.debug_extension, buffer + offset, sz - offset);
data/radare2-4.3.1+dfsg/shlr/java/class.c:3896:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (attr->info.debug_extensions.debug_extension, buffer + offset, attr->length);
data/radare2-4.3.1+dfsg/shlr/java/class.c:4758:39:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		obj->name = r_str_dup (NULL, (const char *) R_BIN_JAVA_CP_METAS[tag].name);
data/radare2-4.3.1+dfsg/shlr/java/class.c:4788:39:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		obj->name = r_str_dup (NULL, (const char *) R_BIN_JAVA_CP_METAS[tag].name);
data/radare2-4.3.1+dfsg/shlr/java/class.c:4816:39:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		obj->name = r_str_dup (NULL, (const char *) R_BIN_JAVA_CP_METAS[tag].name);
data/radare2-4.3.1+dfsg/shlr/java/class.c:4818:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (&obj->info.cp_integer.bytes.raw, buffer + 1, 4);
data/radare2-4.3.1+dfsg/shlr/java/class.c:4846:39:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		obj->name = r_str_dup (NULL, (const char *) R_BIN_JAVA_CP_METAS[tag].name);
data/radare2-4.3.1+dfsg/shlr/java/class.c:4848:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (&obj->info.cp_float.bytes.raw, buffer, 4);
data/radare2-4.3.1+dfsg/shlr/java/class.c:4876:39:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		obj->name = r_str_dup (NULL, (const char *) R_BIN_JAVA_CP_METAS[tag].name);
data/radare2-4.3.1+dfsg/shlr/java/class.c:4878:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (&(obj->info.cp_long.bytes), buffer + 1, 8);
data/radare2-4.3.1+dfsg/shlr/java/class.c:4907:39:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		obj->name = r_str_dup (NULL, (const char *) R_BIN_JAVA_CP_METAS[tag].name);
data/radare2-4.3.1+dfsg/shlr/java/class.c:4909:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (&obj->info.cp_double.bytes, buffer + 1, 8);
data/radare2-4.3.1+dfsg/shlr/java/class.c:4934:39:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		obj->name = r_str_dup (NULL, (const char *) R_BIN_JAVA_CP_METAS[tag].name);
data/radare2-4.3.1+dfsg/shlr/java/class.c:4940:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (obj->info.cp_utf8.bytes, buffer + 3, (sz - 3));
data/radare2-4.3.1+dfsg/shlr/java/class.c:4943:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (obj->info.cp_utf8.bytes, buffer + 3, obj->info.cp_utf8.length);
data/radare2-4.3.1+dfsg/shlr/java/class.c:4976:39:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		obj->name = r_str_dup (NULL, (const char *) R_BIN_JAVA_CP_METAS[tag].name);;
data/radare2-4.3.1+dfsg/shlr/java/class.c:5006:39:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		obj->name = r_str_dup (NULL, (const char *) R_BIN_JAVA_CP_METAS[tag].name);;
data/radare2-4.3.1+dfsg/shlr/java/class.c:5031:39:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		obj->name = r_str_dup (NULL, (const char *) R_BIN_JAVA_CP_METAS[tag].name);;
data/radare2-4.3.1+dfsg/shlr/java/class.c:5057:39:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		obj->name = r_str_dup (NULL, (const char *) R_BIN_JAVA_CP_METAS[tag].name);;
data/radare2-4.3.1+dfsg/shlr/java/class.c:5102:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buffer + 1, (const char *) &val, 4);
data/radare2-4.3.1+dfsg/shlr/java/class.c:5120:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buffer + 1, (const char *) &val, 8);
data/radare2-4.3.1+dfsg/shlr/java/class.c:5132:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (bytes, name_bytes, *out_sz);
data/radare2-4.3.1+dfsg/shlr/java/class.c:5172:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (tbuf, fnt_bytes, fnt_len);
data/radare2-4.3.1+dfsg/shlr/java/class.c:5173:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (tbuf + fnt_len, bytes, *out_sz);
data/radare2-4.3.1+dfsg/shlr/java/class.c:5257:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buffer + 1, (const char *) &sz, 2);
data/radare2-4.3.1+dfsg/shlr/java/class.c:5258:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buffer + 3, buf, *out_sz - 3);
data/radare2-4.3.1+dfsg/shlr/java/class.c:7794:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char str_cnt[40];
data/radare2-4.3.1+dfsg/shlr/java/class.c:7868:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char number_buffer[80];
data/radare2-4.3.1+dfsg/shlr/java/class.c:7952:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char number_buffer[80];
data/radare2-4.3.1+dfsg/shlr/java/class.c:8639:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (result->value._str->str, item->info.cp_utf8.bytes, item->info.cp_utf8.length);
data/radare2-4.3.1+dfsg/shlr/java/class.c:8812:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (bytes, (const char *) &val, 4);
data/radare2-4.3.1+dfsg/shlr/java/class.c:8814:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (&cp_obj->info.cp_integer.bytes.raw, (const char *) &val, 4);
data/radare2-4.3.1+dfsg/shlr/java/class.c:8832:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (bytes, (const char *) &val, 4);
data/radare2-4.3.1+dfsg/shlr/java/class.c:8835:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (&cp_obj->info.cp_float.bytes.raw, (const char *) &val, 4);
data/radare2-4.3.1+dfsg/shlr/java/class.c:8853:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (bytes, (const char *) &val, 8);
data/radare2-4.3.1+dfsg/shlr/java/class.c:8855:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (&cp_obj->info.cp_long.bytes.raw, (const char *) &val, 8);
data/radare2-4.3.1+dfsg/shlr/java/class.c:8874:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (bytes, (const char *) &val64, 8);
data/radare2-4.3.1+dfsg/shlr/java/class.c:8876:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (&cp_obj->info.cp_double.bytes.raw, (const char *) &val64, 8);
data/radare2-4.3.1+dfsg/shlr/java/class.c:8897:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (cp_obj->info.cp_utf8.bytes, buffer, cp_obj->info.cp_utf8.length);
data/radare2-4.3.1+dfsg/shlr/java/class.c:9036:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (bytes, cn_bytes + *out_sz, cn_len);
data/radare2-4.3.1+dfsg/shlr/java/class.c:9042:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (bytes, fn_bytes + *out_sz, fn_len);
data/radare2-4.3.1+dfsg/shlr/java/class.c:9048:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (bytes, ft_bytes + *out_sz, ft_len);
data/radare2-4.3.1+dfsg/shlr/java/class.c:9054:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (bytes, cref_bytes + *out_sz, cref_len);
data/radare2-4.3.1+dfsg/shlr/java/class.c:9060:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (bytes, fnt_bytes + *out_sz, fnt_len);
data/radare2-4.3.1+dfsg/shlr/java/class.c:9066:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (bytes, fref_bytes + *out_sz, fref_len);
data/radare2-4.3.1+dfsg/shlr/java/class.c:9108:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (new_ver_obj, ver_obj, sizeof (RBinJavaVerificationObj));
data/radare2-4.3.1+dfsg/shlr/java/class.c:9129:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (new_ver_obj, ver_obj, sizeof (RBinJavaVerificationObj));
data/radare2-4.3.1+dfsg/shlr/java/code.c:302:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[128];
data/radare2-4.3.1+dfsg/shlr/java/dsojson.c:669:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf (cpy_buffer+pos, "\\%c", bytes[idx]);
data/radare2-4.3.1+dfsg/shlr/java/dsojson.c:672:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf (cpy_buffer+pos, "\\x%02x", bytes[idx]);
data/radare2-4.3.1+dfsg/shlr/java/dsojson.c:696:20:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	if (dsoStr->data) memcpy (dsoStr->data, str, dsoStr->len);
data/radare2-4.3.1+dfsg/shlr/java/dsojson.c:705:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (dsoStr->data, str, dsoStr->len);
data/radare2-4.3.1+dfsg/shlr/lz4/lz4.c:195:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy(memPtr, &value, sizeof(value));
data/radare2-4.3.1+dfsg/shlr/lz4/lz4.c:199:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy(memPtr, &value, sizeof(value));
data/radare2-4.3.1+dfsg/shlr/lz4/lz4.c:223:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (dst,src,8);
data/radare2-4.3.1+dfsg/shlr/lz4/lz4.c:621:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy(op, anchor, lastRun);
data/radare2-4.3.1+dfsg/shlr/lz4/lz4.c:818:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy(op, anchor, lastRunSize);
data/radare2-4.3.1+dfsg/shlr/lz4/lz4.c:1074:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy(op, ip, length);
data/radare2-4.3.1+dfsg/shlr/lz4/lz4.c:1113:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy(op, dictEnd - copySize, copySize);
data/radare2-4.3.1+dfsg/shlr/lz4/lz4.c:1120:6:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
					memcpy(op, lowPrefix, restSize);
data/radare2-4.3.1+dfsg/shlr/lz4/lz4.c:1135:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy(op+4, match, 4);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:73:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char mem[64];
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:96:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char mem_full[MPC_INPUT_MEM_NUM];
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:245:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy(q, p, sizeof(mpc_mem_t));
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:257:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy(q, p, sizeof(mpc_mem_t));
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:510:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy(r, &i->state, sizeof(mpc_state_t));
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:547:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static char char_unescape_buffer[4];
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:783:39:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
      strcat(expect, x->expected[j]); strcat(expect, ", ");
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:786:5:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
    strcat(expect, " or ");
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:809:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
  sprintf(prefix, "%i of ", n);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:1080:11:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
          memcpy(results, results_stk, sizeof(mpc_result_t) * MPC_PARSE_STACK_MIN);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:1101:11:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
          memcpy(results, results_stk, sizeof(mpc_result_t) * MPC_PARSE_STACK_MIN);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:1244:13:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
  FILE *f = fopen(filename, "rb");
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2269:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char buff[2];
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2305:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char buff[2];
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2448:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char buff[2];
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:3376:13:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
  FILE *f = fopen(filename, "rb");
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:3518:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
      memcpy(p, t, sizeof(mpc_parser_t));
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:3568:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
      memcpy(p, t, sizeof(mpc_parser_t));
data/radare2-4.3.1+dfsg/shlr/qnx/include/arch.h:17:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[32];   /*! The Name of the current register */
data/radare2-4.3.1+dfsg/shlr/qnx/include/dsmsgs.h:286:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char cmdline[DS_DATA_MAX_SIZE];
data/radare2-4.3.1+dfsg/shlr/qnx/include/dsmsgs.h:363:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char pathname[DS_DATA_MAX_SIZE];
data/radare2-4.3.1+dfsg/shlr/qnx/include/dsmsgs.h:400:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char data[DS_DATA_MAX_SIZE];
data/radare2-4.3.1+dfsg/shlr/qnx/include/dsmsgs.h:449:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char name[DS_DATA_MAX_SIZE];
data/radare2-4.3.1+dfsg/shlr/qnx/include/dsmsgs.h:514:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[256];
data/radare2-4.3.1+dfsg/shlr/qnx/include/dsmsgs.h:526:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[1]; /* Variable length terminated by \0.  */
data/radare2-4.3.1+dfsg/shlr/qnx/include/dsmsgs.h:541:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char data[1]; /* A bunch of string data tidNULLnameNULL... */
data/radare2-4.3.1+dfsg/shlr/qnx/include/dsmsgs.h:613:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char text[TS_TEXT_MAX_SIZE];
data/radare2-4.3.1+dfsg/shlr/qnx/include/libqnxr.h:44:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char host[256];
data/radare2-4.3.1+dfsg/shlr/qnx/src/core.c:140:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char tmp[255];
data/radare2-4.3.1+dfsg/shlr/qnx/src/core.c:316:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[DS_DATA_MAX_SIZE];
data/radare2-4.3.1+dfsg/shlr/qnx/src/core.c:334:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (buf + g->registers[i].offset,
data/radare2-4.3.1+dfsg/shlr/qnx/src/core.c:348:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (g->recv.data, buf, n);
data/radare2-4.3.1+dfsg/shlr/qnx/src/core.c:373:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (data + tot_len, g->recv.pkt.okdata.data, rcv_len);
data/radare2-4.3.1+dfsg/shlr/qnx/src/core.c:390:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (g->tran.pkt.memwr.data, data, len);
data/radare2-4.3.1+dfsg/shlr/qnx/src/core.c:473:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (g->tran.pkt.regwr.data, value, len);
data/radare2-4.3.1+dfsg/shlr/qnx/src/core.c:687:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (g->tran.pkt.env.data, env + totlen,
data/radare2-4.3.1+dfsg/shlr/qnx/src/core.c:705:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (g->tran.pkt.env.data, env + totlen, len);
data/radare2-4.3.1+dfsg/shlr/qnx/src/core.c:720:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (g->tran.pkt.env.data, arg, len);
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:109:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (o, str, len);
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:125:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (o, p, len);
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:134:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char valstr[64];
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:167:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (x, str, lstr);
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:169:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (x + lstr + 1, val, lval + 1);
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:171:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (x, val, lval);
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:173:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (x + lval + 1, str, lstr + 1);
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:180:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (nstr, str, lstr + 1);
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:187:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (x, nstr, lnstr);
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:189:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (x + lnstr + 1, val, lval);
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:192:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (x + lval + 2 + lnstr, ptr, lptr); //strlen (ptr)+1);
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:207:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char valstr[SDB_NUM_BUFSZ];
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:213:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[SDB_NUM_BUFSZ];
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:268:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (nstr_p, str_lp, str_p - str_lp);
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:275:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (nstr_p, vals[i], j);
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:280:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (nstr_p, str_lp, str_e - str_lp);
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:294:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char valstr[SDB_NUM_BUFSZ];
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:331:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (newval, str, str_len);
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:333:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (newval+str_len+1, val, val_len);
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:372:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (newkey + i, val, lval + 1);
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:387:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (nstr, str, diff);
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:388:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (ptr, val, lval + 1);
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:495:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char val[SDB_NUM_BUFSZ];
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:532:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[SDB_NUM_BUFSZ], *n = sdb_itoa (num, buf, SDB_NUM_BASE);
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:545:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[SDB_NUM_BUFSZ];
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:567:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (newval, val, val_len);
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:569:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (newval + val_len + 1, str, str_len);
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:665:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (nstr, strs[i], j);
data/radare2-4.3.1+dfsg/shlr/sdb/src/base64.c:12:45:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static void sdb_b64_encode(const ut8 in[3], char out[4], int len) {
data/radare2-4.3.1+dfsg/shlr/sdb/src/base64.c:22:33:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static int sdb_b64_decode(const char in[4], ut8 out[3]) {
data/radare2-4.3.1+dfsg/shlr/sdb/src/buffer.c:41:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (s->x + s->p, buf, n);
data/radare2-4.3.1+dfsg/shlr/sdb/src/buffer.c:48:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (s->x + s->p, buf, len);
data/radare2-4.3.1+dfsg/shlr/sdb/src/cdb.c:97:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (buf, c->map + pos, len);
data/radare2-4.3.1+dfsg/shlr/sdb/src/cdb.c:115:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[32];
data/radare2-4.3.1+dfsg/shlr/sdb/src/cdb.c:133:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[8];
data/radare2-4.3.1+dfsg/shlr/sdb/src/cdb_make.c:119:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[8];
data/radare2-4.3.1+dfsg/shlr/sdb/src/cdb_make.h:20:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char bspace[8192];
data/radare2-4.3.1+dfsg/shlr/sdb/src/cdb_make.h:21:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char final[1024];
data/radare2-4.3.1+dfsg/shlr/sdb/src/disk.c:22:16:  [2] (buffer) MultiByteToWideChar:
  Requires maximum length in CHARACTERS, not bytes (CWE-120).
	if ((wcsize = MultiByteToWideChar (CP_UTF8, 0, cstring, len, NULL, 0))) {
data/radare2-4.3.1+dfsg/shlr/sdb/src/disk.c:25:4:  [2] (buffer) MultiByteToWideChar:
  Requires maximum length in CHARACTERS, not bytes (CWE-120).
			MultiByteToWideChar (CP_UTF8, 0, cstring, len, rutf16, wcsize);
data/radare2-4.3.1+dfsg/shlr/sdb/src/disk.c:100:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (str, dir, nlen + 1);
data/radare2-4.3.1+dfsg/shlr/sdb/src/disk.c:102:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (str + nlen, ".tmp", 5);
data/radare2-4.3.1+dfsg/shlr/sdb/src/disk.c:115:13:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
	s->fdump = open (str, O_BINARY | O_RDWR | O_CREAT | O_TRUNC, SDB_MODE);
data/radare2-4.3.1+dfsg/shlr/sdb/src/fmt.c:26:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	static char Key[KN][KL];
data/radare2-4.3.1+dfsg/shlr/sdb/src/fmt.c:41:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[128], *e_str, *out = NULL;
data/radare2-4.3.1+dfsg/shlr/sdb/src/fmt.c:218:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (_s, str, slen);
data/radare2-4.3.1+dfsg/shlr/sdb/src/ht_inc.c:221:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (kv_dst, kv, ht->opt.elem_size);
data/radare2-4.3.1+dfsg/shlr/sdb/src/journal.c:32:15:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
	s->journal = open (filename, O_CREAT | O_RDWR | O_APPEND, 0600);
data/radare2-4.3.1+dfsg/shlr/sdb/src/json.c:98:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *_str, str[64];
data/radare2-4.3.1+dfsg/shlr/sdb/src/json.c:110:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	const char *beg[3];
data/radare2-4.3.1+dfsg/shlr/sdb/src/json.c:111:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	const char *end[3];
data/radare2-4.3.1+dfsg/shlr/sdb/src/json.c:196:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (str, beg[0], idx);
data/radare2-4.3.1+dfsg/shlr/sdb/src/json.c:209:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (str + idx, beg[1], l);
data/radare2-4.3.1+dfsg/shlr/sdb/src/json.c:224:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (str + idx, beg[2], l);
data/radare2-4.3.1+dfsg/shlr/sdb/src/json.c:250:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (str, beg[0], len[0]);
data/radare2-4.3.1+dfsg/shlr/sdb/src/json.c:251:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (str + len[0], beg[2], len[2]);
data/radare2-4.3.1+dfsg/shlr/sdb/src/json.c:259:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *arg_s, *x, tmp[128];
data/radare2-4.3.1+dfsg/shlr/sdb/src/json.c:297:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (s->buf + s->len, (arg_i == 4)? "true": "false", 5);
data/radare2-4.3.1+dfsg/shlr/sdb/src/json.c:304:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (s->buf + s->len, tmp, strlen (tmp));
data/radare2-4.3.1+dfsg/shlr/sdb/src/json.c:311:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (s->buf + s->len, tmp, strlen (tmp));
data/radare2-4.3.1+dfsg/shlr/sdb/src/json.c:319:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (s->buf + s->len, tmp, strlen (tmp));
data/radare2-4.3.1+dfsg/shlr/sdb/src/json/api.c:16:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	const char *beg[3];
data/radare2-4.3.1+dfsg/shlr/sdb/src/json/api.c:17:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	const char *end[3];
data/radare2-4.3.1+dfsg/shlr/sdb/src/json/api.c:43:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (str, beg[0], idx);
data/radare2-4.3.1+dfsg/shlr/sdb/src/json/api.c:44:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (str+idx, beg[1], len[1]);
data/radare2-4.3.1+dfsg/shlr/sdb/src/json/api.c:46:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (str+idx, beg[2], len[2]);
data/radare2-4.3.1+dfsg/shlr/sdb/src/json/api.c:52:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char str[64];
data/radare2-4.3.1+dfsg/shlr/sdb/src/json/api.c:53:2:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
	sprintf (str, "%d", a);
data/radare2-4.3.1+dfsg/shlr/sdb/src/json/main.c:57:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[4096];
data/radare2-4.3.1+dfsg/shlr/sdb/src/json/rangstr.c:80:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (p, rs->p + rs->f, len);
data/radare2-4.3.1+dfsg/shlr/sdb/src/lock.c:9:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	static char buf[128];
data/radare2-4.3.1+dfsg/shlr/sdb/src/lock.c:18:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buf, f, len);
data/radare2-4.3.1+dfsg/shlr/sdb/src/lock.c:19:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (buf + len, ".lock");
data/radare2-4.3.1+dfsg/shlr/sdb/src/lock.c:27:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *pid, pidstr[64];
data/radare2-4.3.1+dfsg/shlr/sdb/src/lock.c:31:7:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
	fd = open (s, O_CREAT | O_TRUNC | O_WRONLY | O_EXCL, SDB_MODE);
data/radare2-4.3.1+dfsg/shlr/sdb/src/main.c:119:6:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
					memcpy (next, nl, nextlen);
data/radare2-4.3.1+dfsg/shlr/sdb/src/main.c:168:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *v, k[SDB_MAX_KEY] = { 0 };
data/radare2-4.3.1+dfsg/shlr/sdb/src/main.c:240:22:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
					char *v, *kv = (char *) strdup (args[i]);
data/radare2-4.3.1+dfsg/shlr/sdb/src/main.c:354:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char sbuf[512];
data/radare2-4.3.1+dfsg/shlr/sdb/src/ns.c:87:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char dir[SDB_MAX_PATH];
data/radare2-4.3.1+dfsg/shlr/sdb/src/ns.c:95:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (dir, s->dir, dir_len);
data/radare2-4.3.1+dfsg/shlr/sdb/src/ns.c:96:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (dir + dir_len, ".", 1);
data/radare2-4.3.1+dfsg/shlr/sdb/src/ns.c:97:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (dir + dir_len + 1, name, name_len + 1);
data/radare2-4.3.1+dfsg/shlr/sdb/src/num.c:18:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *val, b[SDB_NUM_BUFSZ];
data/radare2-4.3.1+dfsg/shlr/sdb/src/num.c:25:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *val, b[SDB_NUM_BUFSZ];
data/radare2-4.3.1+dfsg/shlr/sdb/src/query.c:39:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (sb->buf + sb->len, str, len);
data/radare2-4.3.1+dfsg/shlr/sdb/src/query.c:61:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char string[4096];
data/radare2-4.3.1+dfsg/shlr/sdb/src/query.c:72:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char string[4096];
data/radare2-4.3.1+dfsg/shlr/sdb/src/query.c:117:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (line, root, rlen);
data/radare2-4.3.1+dfsg/shlr/sdb/src/query.c:119:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (line + rlen + 1, k, klen);
data/radare2-4.3.1+dfsg/shlr/sdb/src/query.c:121:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (line + rlen + klen + 2, v, vlen + 1);
data/radare2-4.3.1+dfsg/shlr/sdb/src/query.c:128:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (line, k, klen);
data/radare2-4.3.1+dfsg/shlr/sdb/src/query.c:130:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (line + klen + 1, v, vlen + 1);
data/radare2-4.3.1+dfsg/shlr/sdb/src/query.c:156:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (p + 1, n->name, len + 1);
data/radare2-4.3.1+dfsg/shlr/sdb/src/query.c:306:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char root[1024]; // limit namespace length?
data/radare2-4.3.1+dfsg/shlr/sdb/src/query.c:312:6:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
					memcpy (root, ns->name, name_len + 1);
data/radare2-4.3.1+dfsg/shlr/sdb/src/query.c:422:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char *nstr, numstr[128];
data/radare2-4.3.1+dfsg/shlr/sdb/src/query.c:606:9:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
				i = atoi (cmd + 1);
data/radare2-4.3.1+dfsg/shlr/sdb/src/query.c:675:16:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
					int idx = atoi (cmd+1);
data/radare2-4.3.1+dfsg/shlr/sdb/src/query.c:695:10:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
					i = atoi (cmd + 1);
data/radare2-4.3.1+dfsg/shlr/sdb/src/query.c:848:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[1024], *out;
data/radare2-4.3.1+dfsg/shlr/sdb/src/query.c:892:7:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
	fd = open (file, O_RDONLY);
data/radare2-4.3.1+dfsg/shlr/sdb/src/sdb.c:75:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (s->dir, path, plen);
data/radare2-4.3.1+dfsg/shlr/sdb/src/sdb.c:77:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (s->dir + plen + 1, name, nlen + 1);
data/radare2-4.3.1+dfsg/shlr/sdb/src/sdb.c:353:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (o, p, kl);
data/radare2-4.3.1+dfsg/shlr/sdb/src/sdb.c:354:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (o + kl, value, vl + 1);
data/radare2-4.3.1+dfsg/shlr/sdb/src/sdb.c:403:11:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
		s->fd = open (file, O_RDONLY | O_BINARY);
data/radare2-4.3.1+dfsg/shlr/sdb/src/sdb.c:522:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (kv->base.key, k, kv->base.key_len + 1);
data/radare2-4.3.1+dfsg/shlr/sdb/src/sdb.c:531:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (kv->base.value, v, vl + 1);
data/radare2-4.3.1+dfsg/shlr/sdb/src/sdb.c:599:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (kv->base.value, val, vlen + 1);
data/radare2-4.3.1+dfsg/shlr/sdb/src/sdb.c:756:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char k[SDB_MAX_KEY] = {0};
data/radare2-4.3.1+dfsg/shlr/sdb/src/sdb.c:871:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char k[SDB_MAX_KEY] = {0};
data/radare2-4.3.1+dfsg/shlr/sdb/src/types.h:105:30:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static inline void ut32_pack(char s[4], ut32 u) {
data/radare2-4.3.1+dfsg/shlr/sdb/src/types.h:114:34:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static inline void ut32_pack_big(char s[4], ut32 u) {
data/radare2-4.3.1+dfsg/shlr/sdb/src/types.h:123:32:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static inline void ut32_unpack(char s[4], ut32 *u) {
data/radare2-4.3.1+dfsg/shlr/sdb/src/util.c:106:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char tmpbuf[64], *os = NULL;
data/radare2-4.3.1+dfsg/shlr/spp/main.c:12:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char supported[128] = "";
data/radare2-4.3.1+dfsg/shlr/spp/main.c:72:18:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
						out.fout = fopen (arg, "w");
data/radare2-4.3.1+dfsg/shlr/spp/p/sh.h:55:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char str[1024]; // XXX
data/radare2-4.3.1+dfsg/shlr/spp/p/spp.h:91:8:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
	max = atoi (buf);
data/radare2-4.3.1+dfsg/shlr/spp/p/spp.h:100:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char res[32];
data/radare2-4.3.1+dfsg/shlr/spp/p/spp.h:110:10:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			ret = atoi (var);
data/radare2-4.3.1+dfsg/shlr/spp/p/spp.h:112:10:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		ret += atoi (eq + 1);
data/radare2-4.3.1+dfsg/shlr/spp/p/spp.h:131:14:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		ret = var? atoi (var): 0;
data/radare2-4.3.1+dfsg/shlr/spp/p/spp.h:132:10:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		ret -= atoi (eq + 1);
data/radare2-4.3.1+dfsg/shlr/spp/p/spp.h:252:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char b[1024];
data/radare2-4.3.1+dfsg/shlr/spp/p/spp.h:260:8:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
		fd = fopen (buf, "r");
data/radare2-4.3.1+dfsg/shlr/spp/p/spp.h:261:10:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		line = atoi (ptr+1);
data/radare2-4.3.1+dfsg/shlr/spp/r_api.c:32:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (ptr, s, l+1);
data/radare2-4.3.1+dfsg/shlr/spp/r_api.c:35:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (sb->buf, s, l+1);
data/radare2-4.3.1+dfsg/shlr/spp/r_api.c:47:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (sb->buf + sb->len, s, l + 1);
data/radare2-4.3.1+dfsg/shlr/spp/r_api.c:56:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (p, sb->buf, sb->len);
data/radare2-4.3.1+dfsg/shlr/spp/r_api.c:68:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (p + sb->len, s, l + 1);
data/radare2-4.3.1+dfsg/shlr/spp/spp.c:79:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (dst->lbuf + dst->lbuf_n, src, len + 1);
data/radare2-4.3.1+dfsg/shlr/spp/spp.c:224:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[4096];
data/radare2-4.3.1+dfsg/shlr/spp/spp.c:272:13:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
	FILE *in = fopen (file, "r");
data/radare2-4.3.1+dfsg/shlr/spp/spp.c:331:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char tmp[4096];
data/radare2-4.3.1+dfsg/shlr/spp/spp.h:94:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[64];
data/radare2-4.3.1+dfsg/shlr/tcc/libtcc.c:94:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (out, in, num);
data/radare2-4.3.1+dfsg/shlr/tcc/libtcc.c:218:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[2048];
data/radare2-4.3.1+dfsg/shlr/tcc/libtcc.c:332:8:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
		fd = open (filename, O_RDONLY | O_BINARY);
data/radare2-4.3.1+dfsg/shlr/tcc/libtcc.c:438:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (file->buffer, str, len);
data/radare2-4.3.1+dfsg/shlr/tcc/libtcc.c:457:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (file->buffer, sym, len1);
data/radare2-4.3.1+dfsg/shlr/tcc/libtcc.c:459:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (file->buffer + len1 + 1, value, len2);
data/radare2-4.3.1+dfsg/shlr/tcc/libtcc.c:514:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buffer[100];
data/radare2-4.3.1+dfsg/shlr/tcc/libtcc.c:542:2:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
	sprintf (buffer, "%d", a * 10000 + b * 100 + c);
data/radare2-4.3.1+dfsg/shlr/tcc/libtcc.c:792:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char b[1024];
data/radare2-4.3.1+dfsg/shlr/tcc/tcc.h:204:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char str[1];
data/radare2-4.3.1+dfsg/shlr/tcc/tcc.h:343:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char filename[1024];    /* filename */
data/radare2-4.3.1+dfsg/shlr/tcc/tcc.h:344:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    unsigned char buffer[IO_BUF_SIZE + 1]; /* extra size for CH_EOB char */
data/radare2-4.3.1+dfsg/shlr/tcc/tcc.h:371:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char filename[1];
data/radare2-4.3.1+dfsg/shlr/tcc/tcc.h:379:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char filename[1]; /* path specified in #include */
data/radare2-4.3.1+dfsg/shlr/tcc/tcc.h:394:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char asm_str[16]; /* computed asm string for operand */
data/radare2-4.3.1+dfsg/shlr/tcc/tccgen.c:685:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf1[256];
data/radare2-4.3.1+dfsg/shlr/tcc/tccgen.c:962:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[STRING_MAX_SIZE + 1];
data/radare2-4.3.1+dfsg/shlr/tcc/tccgen.c:1171:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
						char b[1024];
data/radare2-4.3.1+dfsg/shlr/tcc/tccgen.c:1558:6:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
					char kind[1024];
data/radare2-4.3.1+dfsg/shlr/tcc/tccgen.c:1732:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		static char kind[1024];
data/radare2-4.3.1+dfsg/shlr/tcc/tccgen.c:1760:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (type, type1, sizeof(*type));
data/radare2-4.3.1+dfsg/shlr/tcc/tccgen.c:3071:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
				char buf[500];
data/radare2-4.3.1+dfsg/shlr/tcc/tccgen.c:3180:6:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
					char buf[500];
data/radare2-4.3.1+dfsg/shlr/tcc/tcclib.h:18:5:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
int atoi(const char *nptr);
data/radare2-4.3.1+dfsg/shlr/tcc/tcclib.h:29:7:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
FILE *fopen(const char *path, const char *mode);
data/radare2-4.3.1+dfsg/shlr/tcc/tcclib.h:63:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
void *memcpy(void *dest, const void *src, size_t n);
data/radare2-4.3.1+dfsg/shlr/tcc/tccpp.c:61:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static char token_buf[STRING_MAX_SIZE + 1];
data/radare2-4.3.1+dfsg/shlr/tcc/tccpp.c:63:17:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static unsigned char isidnum_table[256 - CH_EOF];
data/radare2-4.3.1+dfsg/shlr/tcc/tccpp.c:223:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (ts->str, str, len);
data/radare2-4.3.1+dfsg/shlr/tcc/tccpp.c:241:36:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		h = TOK_HASH_FUNC (h, ((unsigned char *) str)[i]);
data/radare2-4.3.1+dfsg/shlr/tcc/tccpp.c:263:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	static char buf[STRING_MAX_SIZE + 1];
data/radare2-4.3.1+dfsg/shlr/tcc/tccpp.c:280:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf (p, "%u", cv->ui);
data/radare2-4.3.1+dfsg/shlr/tcc/tccpp.c:338:10:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
		return strcpy (p, "...");
data/radare2-4.3.1+dfsg/shlr/tcc/tccpp.c:340:10:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
		return strcpy (p, "<<=");
data/radare2-4.3.1+dfsg/shlr/tcc/tccpp.c:342:10:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
		return strcpy (p, ">>=");
data/radare2-4.3.1+dfsg/shlr/tcc/tccpp.c:363:4:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
			sprintf (p, "%u", v - SYM_FIRST_ANOM);
data/radare2-4.3.1+dfsg/shlr/tcc/tccpp.c:946:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (p, &cstr, sizeof (CString));
data/radare2-4.3.1+dfsg/shlr/tcc/tccpp.c:947:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (p + sizeof (CString),
data/radare2-4.3.1+dfsg/shlr/tcc/tccpp.c:1048:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[STRING_MAX_SIZE + 1];
data/radare2-4.3.1+dfsg/shlr/tcc/tccpp.c:1421:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[1024], *q;
data/radare2-4.3.1+dfsg/shlr/tcc/tccpp.c:1515:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char buf1[sizeof file->filename];
data/radare2-4.3.1+dfsg/shlr/tcc/tccpp.c:1590:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char filepath[1024];
data/radare2-4.3.1+dfsg/shlr/tcc/tccpp.c:1600:4:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
			memcpy (filepath, file->filename, filepath_len);
data/radare2-4.3.1+dfsg/shlr/tcc/tccpp.c:2794:8:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
static char const ab_month_name[12][4] =
data/radare2-4.3.1+dfsg/shlr/tcc/tccpp.c:2814:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[32];
data/radare2-4.3.1+dfsg/shlr/tcc/tccpp.c:3047:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
				memcpy (file->buffer, cstr.data, cstr.size);
data/radare2-4.3.1+dfsg/shlr/windbg/kd.c:91:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char sig[4];
data/radare2-4.3.1+dfsg/shlr/windbg/kd.c:100:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
						memcpy (&pkt, sig, sizeof (sig));
data/radare2-4.3.1+dfsg/shlr/windbg/kd.c:120:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buf, &pkt, sizeof(kd_packet_t));
data/radare2-4.3.1+dfsg/shlr/windbg/transport.c:45:22:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
	return sel_backend->open (path);
data/radare2-4.3.1+dfsg/shlr/windbg/transport.h:23:14:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
    void *(* open)(const char *path);
data/radare2-4.3.1+dfsg/shlr/windbg/windbg.c:304:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char tag[4];
data/radare2-4.3.1+dfsg/shlr/windbg/windbg.c:1006:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buf, rr->data, R_MIN (size, pkt->length - sizeof (*rr)));
data/radare2-4.3.1+dfsg/shlr/windbg/windbg.c:1178:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buf, rr->data, rr->r_mem.read);
data/radare2-4.3.1+dfsg/shlr/windbg/windbg.c:1233:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (buf, rr->data, rr->r_mem.read);
data/radare2-4.3.1+dfsg/shlr/windbg/windbg.h:30:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char name[17];
data/radare2-4.3.1+dfsg/shlr/zip/include/gzguts.h:39:11:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
#  define open _open
data/radare2-4.3.1+dfsg/shlr/zip/include/zipint.h:80:9:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
#define open(a, b, c)	_open((a), (b))
data/radare2-4.3.1+dfsg/shlr/zip/include/zipint.h:100:9:  [2] (tmpfile) mkstemp:
  Potential for temporary file vulnerability in some circumstances. Some
  older Unix-like systems create temp files with permission to write by all
  by default, so be sure to set the umask to override this. Also, some older
  Unix systems might fail to use O_EXCL when opening the file, so make sure
  that O_EXCL is used by the library (CWE-377).
#define mkstemp _zip_mkstemp
data/radare2-4.3.1+dfsg/shlr/zip/include/zutil.h:47:16:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
extern z_const char * const z_errmsg[10]; /* indexed by 2-zlib_error */
data/radare2-4.3.1+dfsg/shlr/zip/include/zutil.h:109:6:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
     fopen((name), (mode), "mbc=60", "ctx=stm", "rfm=fix", "mrs=512")
data/radare2-4.3.1+dfsg/shlr/zip/include/zutil.h:186:30:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
#  define F_OPEN(name, mode) fopen((name), (mode))
data/radare2-4.3.1+dfsg/shlr/zip/include/zutil.h:210:21:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
#    define zmemcpy memcpy
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_close.c:268:15:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
	    za->zp = fopen(za->zn, "rb");
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_close.c:454:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buf[BUFSIZE];
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_close.c:489:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buf[BUFSIZE];
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_close.c:526:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buf[TORRENT_CRC_LEN+1];
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_close.c:612:14:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
    if ((tfd=open(temp, O_RDWR|O_CREAT, 0644)) == -1) {
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_close.c:619:14:  [2] (tmpfile) mkstemp:
  Potential for temporary file vulnerability in some circumstances. Some
  older Unix-like systems create temp files with permission to write by all
  by default, so be sure to set the umask to override this. Also, some older
  Unix systems might fail to use O_EXCL when opening the file, so make sure
  that O_EXCL is used by the library (CWE-377).
    if ((tfd=mkstemp(temp)) == -1) {
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_dirent.c:220:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy(tde, sde, sizeof(*sde));
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_dirent.c:332:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    unsigned char buf[CDENTRYSIZE];
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_dirent.c:547:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    unsigned char b[6];
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_dirent.c:812:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy(p, raw, len);
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_dirent.c:906:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy(r, *buf, len);
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_error_strerror.c:49:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buf[128], *s;
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_error_strerror.c:54:2:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
	sprintf(buf, "Unknown error %d", err->zip_err);
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_extra_field.c:210:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy (p, data, size);
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_extra_field.c:330:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    unsigned char b[4];
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_open.c:85:15:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
	    if ((f = fopen(fn, "rb")) == NULL) {
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_open.c:95:13:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
    if ((fp=fopen(fn, "rb")) == NULL) {
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_open.c:374:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buf[8+1];
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_open.c:384:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy(buf, cdir->comment->raw+TORRENT_SIG_LEN, 8);
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_source_buffer.c:106:6:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	    memcpy(buf, z->buf, n);
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_source_crc.c:155:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy(data, ctx->e, sizeof(ctx->e));
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_source_deflate.c:47:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buffer[BUFSIZE];
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_source_deflate.c:300:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy(data, ctx->e, sizeof(int)*2);
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_source_deflate.c:369:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy(data, ctx->e, sizeof(int)*2);
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_source_filep.c:136:16:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
	    if ((z->f=fopen(z->fname, "rb")) == NULL) {
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_source_filep.c:195:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
		memcpy(data, &z->st, sizeof(z->st));
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_source_filep.c:233:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy(data, z->e, sizeof(int)*2);
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_source_pkware.c:214:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy(data, ctx->e, sizeof(int)*2);
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_source_window.c:84:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char b[8192];
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_source_window.c:139:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy(data, ctx->e, sizeof(ctx->e));
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_string.c:169:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy(s->raw, raw, length);
data/radare2-4.3.1+dfsg/shlr/zip/zip/zipint.h:81:9:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
#define open(a, b, c)	_open((a), (b))
data/radare2-4.3.1+dfsg/shlr/zip/zlib/crc32.c:143:15:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
        out = fopen("crc32.h", "w");
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzguts.h:49:11:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
#  define open _open
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzlib.c:36:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    static char buf[1024];
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzlib.c:65:9:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
        sprintf(buf, "unknown win32 error (%ld)", error);
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzlib.c:245:9:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
        open((const char *)path, oflag, 0666));
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzlib.c:298:5:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
    sprintf(path, "<fd:%d>", fd);   /* for debugging */
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzlib.c:615:5:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
    strcat(state->msg, ": ");
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzread.c:161:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy(state->x.next, strm->next_in, strm->avail_in);
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzread.c:325:13:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
            memcpy(buf, state->x.next, n);
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzread.c:452:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    unsigned char buf[1];
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzread.c:592:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy(buf, state->x.next, n);
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzwrite.c:213:13:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
            memcpy(state->in + have, buf, copy);
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzwrite.c:310:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    unsigned char buf[1];
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzwrite.c:445:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy(state->in, state->in + state->size, left);
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzwrite.c:544:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy(state->in, state->in + state->size, left);
data/radare2-4.3.1+dfsg/shlr/zip/zlib/inflate.c:640:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    unsigned char hbuf[4];      /* buffer for gzip header crc calculation */
data/radare2-4.3.1+dfsg/shlr/zip/zlib/inflate.c:1405:14:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    unsigned char buf[4];       /* to restore bit buffer to byte string */
data/radare2-4.3.1+dfsg/shlr/zip/zlib/trees.c:328:20:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
    FILE *header = fopen("trees.h", "w");
data/radare2-4.3.1+dfsg/shlr/zip/zlib/zutil.c:13:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
z_const char * const z_errmsg[10] = {
data/radare2-4.3.1+dfsg/shlr/zip/zlib/zutil.h:49:16:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
extern z_const char * const z_errmsg[10]; /* indexed by 2-zlib_error */
data/radare2-4.3.1+dfsg/shlr/zip/zlib/zutil.h:109:6:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
     fopen((name), (mode), "mbc=60", "ctx=stm", "rfm=fix", "mrs=512")
data/radare2-4.3.1+dfsg/shlr/zip/zlib/zutil.h:202:30:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
#  define F_OPEN(name, mode) fopen((name), (mode))
data/radare2-4.3.1+dfsg/shlr/zip/zlib/zutil.h:226:21:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
#    define zmemcpy memcpy
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/anal/test_x86im.c:70:10:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
		bits = atoi (argv[2]);
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/cons/graph.c:42:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char title[128];
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/egg/test.c:24:11:  [2] (integer) atoi:
  Unless checked, the resulting number can exceed the expected range
  (CWE-190). If source untrusted, check both minimum and maximum, even if the
  input had no minus sign (large numbers can roll over into negative number;
  consider saving to an unsigned value if that is intended).
			bits = atoi (optarg);
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/parse/parse.c:4:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char str[128];
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/parse/parse.c:23:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char buf[128];
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/socket/client.c:5:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[1024];
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/socket/serverssl.c:6:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf [MAX_LINE+1];
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/socket/serverssl.c:22:3:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
		strcpy (buf, "HTTP/1.0 200 OK\r\n"
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/socket/test.c:6:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[256];
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/socket/test.c:7:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *const args[4] = { "/usr/bin/telnet", "localhost", "9999", 0 };
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/socket/testls.c:6:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[256];
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/socket/testls.c:7:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char *const args[3] = { "/bin/ls", "-l", 0 };
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/argv.c:13:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[256];
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/test_str.c:61:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char dst[256];
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/test_str.c:69:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy(dst, "This is a $hell < fin.txt");
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/test_str.c:73:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy(dst, "\x1b[30mHel\x1b[28mlo");
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/test_str.c:77:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy(dst, "Hello");
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/test_str.c:79:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy(dst, "\x1b[30m");
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/test_str.c:82:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy(dst, "Hello");
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/test_str.c:85:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy(dst, "Hello");
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/test_str.c:88:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy(dst, "Hello");
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/test_str.c:92:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy(dst, "\x1b[30mHel\x1b[29mlo");
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/test_str.c:95:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy(dst, "\x1b[30mHel\x1b[29mlo");
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/test_str.c:98:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy(dst, "\x1b[30mHel\x1b[29mlo");
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/test_str.c:104:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy(dst, "Hello");
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/test_str.c:107:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy(dst, "\x1b[30mHel\x1b[29mlo\x1b[28m");
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/test_str.c:110:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy(dst, "\x1b[30mHel\x1b[29mlo\x1b[28m");
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/test_str.c:113:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy(dst, "\x1b[30mHel\x1b[29mlo\x1b[28m");
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/test_str.c:116:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy(dst, "\x1b[30mHel\x1b[29mlo\x1b[28m");
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/test_str.c:122:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char clean[256];
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/test_str.c:124:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy(str, "\x1b[30mHell\x1b[32mo\nIt'\x1b[33ms a test\n");
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/test_str.c:125:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy(clean, "Hello\nIt's a test\n");
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/test_str.c:131:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy(str, "\x1b[30mHell\x1b[32mo\nIt'\x1b[33ms an hell\n");
data/radare2-4.3.1+dfsg/test/unit/minunit.h:32:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		sprintf (out + strlen(out), "%02x", buf[i]);
data/radare2-4.3.1+dfsg/test/unit/minunit.h:71:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char _meqstr[2048]; \
data/radare2-4.3.1+dfsg/test/unit/minunit.h:78:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char _meqstr[2048]; \
data/radare2-4.3.1+dfsg/test/unit/minunit.h:84:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char _meqstr[2048]; \
data/radare2-4.3.1+dfsg/test/unit/minunit.h:90:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char _meqstr[2048]; \
data/radare2-4.3.1+dfsg/test/unit/minunit.h:96:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char _meqstr[2048];					\
data/radare2-4.3.1+dfsg/test/unit/minunit.h:102:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char _meqstr[2048];					\
data/radare2-4.3.1+dfsg/test/unit/minunit.h:109:4:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
			char _meqstr[2048]; \
data/radare2-4.3.1+dfsg/test/unit/minunit.h:116:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char _meqstr[2048]; \
data/radare2-4.3.1+dfsg/test/unit/minunit.h:122:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char _meqstr[2048]; \
data/radare2-4.3.1+dfsg/test/unit/minunit.h:130:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char _meqstr[2048]; \
data/radare2-4.3.1+dfsg/test/unit/minunit.h:133:3:  [2] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source has a constant maximum length.
		sprintf(_meqstr + strlen(_meqstr), ", got "); \
data/radare2-4.3.1+dfsg/test/unit/test_buf.c:110:11:  [2] (tmpfile) mkstemp:
  Potential for temporary file vulnerability in some circumstances. Some
  older Unix-like systems create temp files with permission to write by all
  by default, so be sure to set the umask to override this. Also, some older
  Unix systems might fail to use O_EXCL when opening the file, so make sure
  that O_EXCL is used by the library (CWE-377).
	int fd = mkstemp (filename);
data/radare2-4.3.1+dfsg/test/unit/test_buf.c:152:11:  [2] (tmpfile) mkstemp:
  Potential for temporary file vulnerability in some circumstances. Some
  older Unix-like systems create temp files with permission to write by all
  by default, so be sure to set the umask to override this. Also, some older
  Unix systems might fail to use O_EXCL when opening the file, so make sure
  that O_EXCL is used by the library (CWE-377).
	int fd = mkstemp (filename);
data/radare2-4.3.1+dfsg/test/unit/test_diff.c:26:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char msg[128];
data/radare2-4.3.1+dfsg/test/unit/test_diff.c:37:30:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		size_t la = strlen ((const char *)tests[i].a), lb = strlen ((const char *)tests[i].b);
data/radare2-4.3.1+dfsg/test/unit/test_diff.c:37:70:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		size_t la = strlen ((const char *)tests[i].a), lb = strlen ((const char *)tests[i].b);
data/radare2-4.3.1+dfsg/test/unit/test_diff.c:55:30:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		size_t la = strlen ((const char *)tests[i].a), lb = strlen ((const char *)tests[i].b);
data/radare2-4.3.1+dfsg/test/unit/test_diff.c:55:70:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		size_t la = strlen ((const char *)tests[i].a), lb = strlen ((const char *)tests[i].b);
data/radare2-4.3.1+dfsg/test/unit/test_list.c:252:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char buf[BUF_LENGTH];
data/radare2-4.3.1+dfsg/test/unit/test_list.c:292:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
		char buf[BUF_LENGTH];
data/radare2-4.3.1+dfsg/test/unit/test_list.c:322:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[BUF_LENGTH];
data/radare2-4.3.1+dfsg/test/unit/test_list.c:385:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[BUF_LENGTH];
data/radare2-4.3.1+dfsg/test/unit/test_list.c:412:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[BUF_LENGTH];
data/radare2-4.3.1+dfsg/test/unit/test_str.c:52:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[65];
data/radare2-4.3.1+dfsg/test/unit/test_str.c:275:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char s[16] = "\x61\xc3\xa1\xe6\x97\xa5\xf0\x9f\x91\x8c\xf0\x9f\x91\x8c\x8c"; // aá日👌
data/radare2-4.3.1+dfsg/test/unit/test_str.c:297:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char s[16] = "\x61\xc3\xa1\xe6\x97\xa5\xf0\x9f\x91\x8c\xf0\x9f\x91\x8c\x8c"; // aá日👌
data/radare2-4.3.1+dfsg/test/unit/test_table.c:66:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char buf[BUF_LENGTH];
data/radare2-4.3.1+dfsg/test/unit/test_unum.c:7:2:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
	char humansz[8];
data/radare2-4.3.1+dfsg/test/unit/test_unum.c:97:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (str, "1 1 + 2 1 + (2 + 3) 4 ");
data/radare2-4.3.1+dfsg/test/unit/test_unum.c:112:2:  [2] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant string.
	strcpy (str, "1 1 + 2 1 + (2 + 3) 4 ");
data/radare2-4.3.1+dfsg/test/unit/test_vector.c:1011:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy (s.v.a, a, sizeof (void *) * 5);
data/radare2-4.3.1+dfsg/binr/radare2/radare2.c:48:26:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        write (out, cmd, strlen (cmd) + 1);
data/radare2-4.3.1+dfsg/binr/radare2/radare2.c:56:25:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
                int n = read (in, buf, bufsz);
data/radare2-4.3.1+dfsg/binr/radare2/radare2.c:58:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                int len = strlen ((const char *)buf);
data/radare2-4.3.1+dfsg/libr/anal/anal.c:401:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	ut8 *buf = calloc (1, strlen (str) + 1);
data/radare2-4.3.1+dfsg/libr/anal/anal.c:462:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (!strncmp (v, "func", strlen ("func") + 1)) {
data/radare2-4.3.1+dfsg/libr/anal/cond.c:109:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			int val0len = strlen (val0) + 10;
data/radare2-4.3.1+dfsg/libr/anal/cond.c:115:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				int val0len = strlen (val0) + strlen (val1) + 10;
data/radare2-4.3.1+dfsg/libr/anal/cond.c:115:35:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				int val0len = strlen (val0) + strlen (val1) + 10;
data/radare2-4.3.1+dfsg/libr/anal/data.c:209:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = strlen (p);
data/radare2-4.3.1+dfsg/libr/anal/esil.c:103:37:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	r_return_val_if_fail(code && op && strlen (op) && esil && esil->ops, false);
data/radare2-4.3.1+dfsg/libr/anal/esil.c:453:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (!str || !(len = strlen (str))) {
data/radare2-4.3.1+dfsg/libr/anal/esil.c:997:9:  [1] (buffer) equal:
  Function does not check the second iterator for over-read conditions
  (CWE-126). This function is often discouraged by most C++ coding standards
  in favor of its safer alternatives provided since C++14. Consider using a
  form of this function that checks the second iterator before potentially
  overflowing it.
    Set equal to high-order bit of result (0 if positive 1 if negative)
data/radare2-4.3.1+dfsg/libr/anal/esil.c:2839:3:  [1] (buffer) strncat:
  Easily used incorrectly (e.g., incorrectly computing the correct maximum
  size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
  or automatically resizing strings.
		strncat (if_buf, word, sizeof (esil->Reil->if_buf) - strlen (if_buf) - 1);
data/radare2-4.3.1+dfsg/libr/anal/esil.c:2839:56:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		strncat (if_buf, word, sizeof (esil->Reil->if_buf) - strlen (if_buf) - 1);
data/radare2-4.3.1+dfsg/libr/anal/esil.c:2840:3:  [1] (buffer) strncat:
  Easily used incorrectly (e.g., incorrectly computing the correct maximum
  size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
  or automatically resizing strings. Risk is low because the source is a
  constant character.
		strncat (if_buf, ",", sizeof (esil->Reil->if_buf) - strlen (if_buf) - 1);
data/radare2-4.3.1+dfsg/libr/anal/esil.c:2840:55:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		strncat (if_buf, ",", sizeof (esil->Reil->if_buf) - strlen (if_buf) - 1);
data/radare2-4.3.1+dfsg/libr/anal/esil2reil.c:25:37:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (!strncmp (s, REIL_TEMP_PREFIX, strlen (REIL_TEMP_PREFIX))) {
data/radare2-4.3.1+dfsg/libr/anal/esil2reil.c:55:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	len = strlen (buf);
data/radare2-4.3.1+dfsg/libr/anal/esil2reil.c:1167:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy (esil->Reil->pc, name, sizeof (esil->Reil->pc) - 1);
data/radare2-4.3.1+dfsg/libr/anal/esil_cfg.c:74:30:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	r_return_val_if_fail (op && strlen (op) && esil && esil->ops, NULL);
data/radare2-4.3.1+dfsg/libr/anal/esil_dfg.c:184:31:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	const ut32 _reg_strlen = 4 + strlen (reg);
data/radare2-4.3.1+dfsg/libr/anal/esil_dfg.c:190:2:  [1] (buffer) strncat:
  Easily used incorrectly (e.g., incorrectly computing the correct maximum
  size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
  or automatically resizing strings. Risk is low because the source is a
  constant string.
	strncat (_reg, "reg.", _reg_strlen);
data/radare2-4.3.1+dfsg/libr/anal/esil_dfg.c:191:2:  [1] (buffer) strncat:
  Easily used incorrectly (e.g., incorrectly computing the correct maximum
  size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
  or automatically resizing strings.
	strncat (_reg, reg, _reg_strlen);
data/radare2-4.3.1+dfsg/libr/anal/esil_dfg.c:320:31:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	const ut32 _reg_strlen = 4 + strlen (reg);
data/radare2-4.3.1+dfsg/libr/anal/esil_dfg.c:325:2:  [1] (buffer) strncat:
  Easily used incorrectly (e.g., incorrectly computing the correct maximum
  size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
  or automatically resizing strings. Risk is low because the source is a
  constant string.
	strncat (_reg, "reg.", _reg_strlen);
data/radare2-4.3.1+dfsg/libr/anal/esil_dfg.c:326:2:  [1] (buffer) strncat:
  Easily used incorrectly (e.g., incorrectly computing the correct maximum
  size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
  or automatically resizing strings.
	strncat (_reg, reg, _reg_strlen);
data/radare2-4.3.1+dfsg/libr/anal/esil_dfg.c:332:37:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	const ut32 origin_reg_strlen = 4 + strlen (reg);
data/radare2-4.3.1+dfsg/libr/anal/esil_dfg.c:337:2:  [1] (buffer) strncat:
  Easily used incorrectly (e.g., incorrectly computing the correct maximum
  size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
  or automatically resizing strings. Risk is low because the source is a
  constant string.
	strncat (origin_reg, "ori.", origin_reg_strlen);
data/radare2-4.3.1+dfsg/libr/anal/esil_dfg.c:338:2:  [1] (buffer) strncat:
  Easily used incorrectly (e.g., incorrectly computing the correct maximum
  size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
  or automatically resizing strings.
	strncat (origin_reg, reg, origin_reg_strlen);
data/radare2-4.3.1+dfsg/libr/anal/esil_dfg.c:358:31:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	const ut32 _reg_strlen = 4 + strlen (reg);
data/radare2-4.3.1+dfsg/libr/anal/esil_dfg.c:363:2:  [1] (buffer) strncat:
  Easily used incorrectly (e.g., incorrectly computing the correct maximum
  size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
  or automatically resizing strings. Risk is low because the source is a
  constant string.
	strncat (_reg, "reg.", _reg_strlen);
data/radare2-4.3.1+dfsg/libr/anal/esil_dfg.c:364:2:  [1] (buffer) strncat:
  Easily used incorrectly (e.g., incorrectly computing the correct maximum
  size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
  or automatically resizing strings.
	strncat (_reg, reg, _reg_strlen);
data/radare2-4.3.1+dfsg/libr/anal/esil_dfg.c:471:31:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	const ut32 _var_strlen = 4 + strlen (var);
data/radare2-4.3.1+dfsg/libr/anal/esil_dfg.c:476:2:  [1] (buffer) strncat:
  Easily used incorrectly (e.g., incorrectly computing the correct maximum
  size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
  or automatically resizing strings. Risk is low because the source is a
  constant string.
	strncat (_var, "var.", _var_strlen);
data/radare2-4.3.1+dfsg/libr/anal/esil_dfg.c:477:2:  [1] (buffer) strncat:
  Easily used incorrectly (e.g., incorrectly computing the correct maximum
  size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
  or automatically resizing strings.
	strncat (_var, var, _var_strlen);
data/radare2-4.3.1+dfsg/libr/anal/esil_dfg.c:486:31:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	const ut32 _var_strlen = 4 + strlen (var);
data/radare2-4.3.1+dfsg/libr/anal/esil_dfg.c:491:2:  [1] (buffer) strncat:
  Easily used incorrectly (e.g., incorrectly computing the correct maximum
  size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
  or automatically resizing strings. Risk is low because the source is a
  constant string.
	strncat (_var, "var.", _var_strlen);
data/radare2-4.3.1+dfsg/libr/anal/esil_dfg.c:492:2:  [1] (buffer) strncat:
  Easily used incorrectly (e.g., incorrectly computing the correct maximum
  size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
  or automatically resizing strings.
	strncat (_var, var, _var_strlen);
data/radare2-4.3.1+dfsg/libr/anal/esil_dfg.c:899:31:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		const ut32 reg_strlen = 4 + strlen (ri->name) + 1;
data/radare2-4.3.1+dfsg/libr/anal/esil_dfg.c:901:3:  [1] (buffer) strncat:
  Easily used incorrectly (e.g., incorrectly computing the correct maximum
  size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
  or automatically resizing strings. Risk is low because the source is a
  constant string.
		strncat (reg, "reg.", reg_strlen);
data/radare2-4.3.1+dfsg/libr/anal/esil_dfg.c:902:3:  [1] (buffer) strncat:
  Easily used incorrectly (e.g., incorrectly computing the correct maximum
  size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
  or automatically resizing strings.
		strncat (reg, ri->name, reg_strlen);
data/radare2-4.3.1+dfsg/libr/anal/esil_trace.c:218:49:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				int len = next? (int)(size_t)(next-ptr)-1 : strlen (ptr);
data/radare2-4.3.1+dfsg/libr/anal/esil_trace.c:239:49:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				int len = next? (int)(size_t)(next-ptr)-1 : strlen (ptr);
data/radare2-4.3.1+dfsg/libr/anal/fcn.c:1685:2:  [1] (buffer) strncat:
  Easily used incorrectly (e.g., incorrectly computing the correct maximum
  size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
  or automatically resizing strings.
	strncat (str_to_find, anal->reg->name[R_REG_NAME_BP], 39);
data/radare2-4.3.1+dfsg/libr/anal/meta.c:116:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		size = strlen (s);
data/radare2-4.3.1+dfsg/libr/anal/meta.c:155:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		size = strlen (s);
data/radare2-4.3.1+dfsg/libr/anal/meta.c:234:35:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (type == R_META_TYPE_ANY || (strlen (sdbkv_key (kv)) > 5 && sdbkv_key (kv)[5] == type)) {
data/radare2-4.3.1+dfsg/libr/anal/meta.c:352:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (strlen (k) < 8) {
data/radare2-4.3.1+dfsg/libr/anal/meta.c:892:35:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (type == R_META_TYPE_ANY || (strlen (sdbkv_key (kv)) > 5 && sdbkv_key (kv)[5] == type)) {
data/radare2-4.3.1+dfsg/libr/anal/meta.c:1017:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if ((strlen (sdbkv_key (kv)) > 5 && sdbkv_key (kv)[5] == type)) {
data/radare2-4.3.1+dfsg/libr/anal/p/anal_avr.c:71:51:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define STR_BEGINS(in, s)		r_str_ncasecmp (in, s, strlen (s))
data/radare2-4.3.1+dfsg/libr/anal/p/anal_avr.c:1644:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			if (t && strlen (t) > 1) {
data/radare2-4.3.1+dfsg/libr/anal/p/anal_avr.c:1645:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				t += strlen (t) - 1;
data/radare2-4.3.1+dfsg/libr/anal/p/anal_i4004.c:184:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (basm, i4004_e[low], basz);
data/radare2-4.3.1+dfsg/libr/anal/p/anal_i4004.c:188:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (basm, i4004_f[low], basz);
data/radare2-4.3.1+dfsg/libr/anal/p/anal_ppc_cs.c:718:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			op1[strlen (op1) - 1] = 0;
data/radare2-4.3.1+dfsg/libr/anal/p/anal_ppc_cs.c:731:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			op1[strlen (op1) - 1] = 0;
data/radare2-4.3.1+dfsg/libr/anal/p/anal_ppc_cs.c:741:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			op1[strlen (op1) - 1] = 0;
data/radare2-4.3.1+dfsg/libr/anal/p/anal_ppc_cs.c:751:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			op1[strlen (op1) - 1] = 0;
data/radare2-4.3.1+dfsg/libr/anal/p/anal_ppc_cs.c:762:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			op1[strlen (op1) - 1] = 0;
data/radare2-4.3.1+dfsg/libr/anal/p/anal_ppc_cs.c:778:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			op1[strlen (op1) - 1] = 0;
data/radare2-4.3.1+dfsg/libr/anal/p/anal_ppc_cs.c:809:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			op1[strlen (op1) - 1] = 0;
data/radare2-4.3.1+dfsg/libr/anal/p/anal_ppc_cs.c:831:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			op1[strlen(op1) - 1] = 0;
data/radare2-4.3.1+dfsg/libr/anal/p/anal_tms320.c:22:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	return !strncasecmp(str, token, strlen(token));
data/radare2-4.3.1+dfsg/libr/anal/p/anal_ws.c:20:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (buf_asm && (strlen (buf_asm) > 4) && buf_asm[0] == 'm' && buf_asm[1] == 'a' && l == atoi (buf_asm + 5)) {
data/radare2-4.3.1+dfsg/libr/anal/p/anal_x86_cs.c:293:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (out, buf_, BUF_SZ);
data/radare2-4.3.1+dfsg/libr/anal/p/anal_x86_cs.c:299:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (out, buf_, BUF_SZ);
data/radare2-4.3.1+dfsg/libr/anal/p/anal_x86_cs.c:306:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
				strncpy (out, buf_, BUF_SZ);
data/radare2-4.3.1+dfsg/libr/anal/p/anal_x86_cs.c:313:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (out, buf_, BUF_SZ);
data/radare2-4.3.1+dfsg/libr/anal/p/anal_x86_cs.c:317:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				int out_len = strlen (out);
data/radare2-4.3.1+dfsg/libr/anal/p/anal_x86_cs.c:326:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (out, buf_, BUF_SZ);
data/radare2-4.3.1+dfsg/libr/anal/p/anal_x86_cs.c:329:5:  [1] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant character.
				strcpy (out, "0");
data/radare2-4.3.1+dfsg/libr/anal/p/anal_x86_cs.c:332:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (out, buf_, BUF_SZ);
data/radare2-4.3.1+dfsg/libr/anal/p/anal_x86_cs.c:3133:10:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
			(void)read ((ut32)ebx, dst, (size_t)edx);
data/radare2-4.3.1+dfsg/libr/anal/reflines.c:290:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int pdlen = strlen (pd);
data/radare2-4.3.1+dfsg/libr/anal/reflines.c:422:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		l = strlen (str);
data/radare2-4.3.1+dfsg/libr/anal/reflines.c:440:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	const char prev_col = col_str[strlen (col_str) - 1];
data/radare2-4.3.1+dfsg/libr/anal/rtti_msvc.c:384:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	size_t original_len = strlen (name);
data/radare2-4.3.1+dfsg/libr/anal/rtti_msvc.c:954:91:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	context.col_td_classes = ht_up_new (NULL, (HtUPKvFreeFunc)str_value_free, (HtUPCalcSizeV)strlen);
data/radare2-4.3.1+dfsg/libr/anal/sign.c:159:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	unsigned int i = 0, prev = 0, len = strlen (types);
data/radare2-4.3.1+dfsg/libr/anal/sign.c:230:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (strlen (word) < 3 || word[1] != ':') {
data/radare2-4.3.1+dfsg/libr/anal/sign.c:246:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			if (strlen (token) == 2 * sizeof (RSignGraph)) {
data/radare2-4.3.1+dfsg/libr/anal/sign.c:303:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			if (strlen (token) != 2 * it->bytes->size) {
data/radare2-4.3.1+dfsg/libr/anal/sign.c:316:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			if (strlen (token) != 2 * it->bytes->size) {
data/radare2-4.3.1+dfsg/libr/anal/sign.c:469:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (v, res, R_SIGN_VAL_MAXSZ);
data/radare2-4.3.1+dfsg/libr/anal/sign.c:929:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (!strncmp (k, ctx->buf, strlen (ctx->buf))) {
data/radare2-4.3.1+dfsg/libr/anal/sign.c:1178:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	size_t current_space_name_len = strlen (current_space->name);
data/radare2-4.3.1+dfsg/libr/anal/sign.c:1179:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	size_t other_space_name_len = strlen (other_space->name);
data/radare2-4.3.1+dfsg/libr/anal/sign.c:1559:41:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		const char *pad = r_str_pad (' ', 30- strlen (it->name));
data/radare2-4.3.1+dfsg/libr/anal/sign.c:1792:33:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (!strncmp (k, ctx->oprefix, strlen (ctx->oprefix))) {
data/radare2-4.3.1+dfsg/libr/anal/sign.c:1793:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		zigname = k + strlen (ctx->oprefix);
data/radare2-4.3.1+dfsg/libr/anal/type.c:79:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int tmp_len = strlen (name) + strlen (type);
data/radare2-4.3.1+dfsg/libr/anal/type.c:79:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int tmp_len = strlen (name) + strlen (type);
data/radare2-4.3.1+dfsg/libr/anal/var.c:1222:31:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			if (*fcn_type && (fcn_type[strlen (fcn_type) - 1] == '*')) {
data/radare2-4.3.1+dfsg/libr/anal/var.c:1253:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			size_t len = strlen (type);
data/radare2-4.3.1+dfsg/libr/anal/var.c:1285:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		tmp_len = strlen (var->type);
data/radare2-4.3.1+dfsg/libr/anal/var.c:1298:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			tmp_len = strlen (var->type);
data/radare2-4.3.1+dfsg/libr/anal/var.c:1313:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			tmp_len = strlen (var->type);
data/radare2-4.3.1+dfsg/libr/asm/arch/8051/8051_ass.c:187:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	size_t arglen = strlen (arguments) + 1;
data/radare2-4.3.1+dfsg/libr/asm/arch/8051/8051_ass.c:193:26:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		arg[0] = realloc (tmp, strlen (tmp) + 1); tmp = 0;
data/radare2-4.3.1+dfsg/libr/asm/arch/8051/8051_ass.c:199:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			arg[1] = realloc (tmp, strlen (tmp) + 1); tmp = 0;
data/radare2-4.3.1+dfsg/libr/asm/arch/8051/8051_ass.c:205:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				arg[2] = realloc (tmp, strlen (tmp) + 1); tmp = 0;
data/radare2-4.3.1+dfsg/libr/asm/arch/8051/8051_ass.c:399:26:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	char *bitpart = malloc (strlen (addr_str) + 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/8051/8051_ass.c:400:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	char *bytepart = malloc (strlen (addr_str) + 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/8051/8051_ass.c:415:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	r_str_ncpy (bitpart, separator + 1, strlen (separator));
data/radare2-4.3.1+dfsg/libr/asm/arch/8051/8051_ass.c:419:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (1 < strlen (bitpart)
data/radare2-4.3.1+dfsg/libr/asm/arch/amd29k/amd29k.c:424:60:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (!buffer || buffer_size < 4 || !instruction || (cpu && strlen (cpu) < 5)) {
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-dis.c:175:27:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
#define WRITE_FORMAT_RB()	strcat (formatString, "]")
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-dis.c:299:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define inc_bp() bp = bp + strlen (bp)
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-dis.c:432:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
  strncpy (state->instrBuffer, instrName, sizeof (state->instrBuffer)-1);
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arc-dis.c:438:8:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
	      strcat (state->instrBuffer, ".");
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:262:27:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
#define WRITE_FORMAT_LB() strcat(formatString, "[")
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:263:27:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
#define WRITE_FORMAT_RB() strcat(formatString, "]")
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:383:26:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define inc_bp() bp = bp+strlen(bp)
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:566:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy (state->instrBuffer, instrName, sizeof (state->instrBuffer) - 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:571:4:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
			strcat (state->instrBuffer, ".");
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:3915:11:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
          strncpy(buf, operand, sizeof (buf) - 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/arc/gnu/arcompact-dis.c:3918:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
          i = strlen(tmpBuffer) + 1;
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-dis.c:3044:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
  strncpy (name, inst->opcode->name, len);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-opc.c:3306:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	  size_t len = strlen (buf);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/aarch64/aarch64-opc.c:3424:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	  size_t len = strlen (buf);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:208:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	for (i = 0; i < strlen(input); i++) {
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:266:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (strlen (opcode) > strlen (input)) {
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:266:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (strlen (opcode) > strlen (input)) {
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:270:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		input += strlen (opcode);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:408:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (2 > strlen (input)) {
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:414:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (strlen(input) > 3) {
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:417:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		res |= (strlen (input) & 0x3) << 4;
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:418:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		length = strlen (input);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:463:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	char *temp = r_str_ndup (str, strlen (str) - 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:605:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			memmove (s, s + 1, strlen (s + 1) + 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:649:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	char *temp2 = malloc (strlen (input) + 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:654:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	temp = (char *)malloc (strlen (input) + 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:677:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (i == strlen (temp)) {
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:685:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (temp2, temp, i);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:711:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if ((strlen (input) < 1) || (!(*input == '['))) {
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:720:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (!input || (strlen (input) < 2) || (*input != '[') || !r_str_endswith (input, "]")) {
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:724:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	char *temp = r_str_ndup (input, strlen (input) - 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:739:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	char *temp = r_str_ndup (input, strlen (input) - 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:751:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (!input || (strlen (input) < 2) || (*input != '{') || !r_str_endswith (input, "}")) {
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:757:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	char *temp = r_str_ndup (input, strlen (input) - 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:773:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	char *temp = r_str_ndup (input, strlen (input) - 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:786:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (!input || (strlen (input) < 2) || (input[strlen(input) - 2] != ']' || !r_str_endswith (input, "!"))) {
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:786:47:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (!input || (strlen (input) < 2) || (input[strlen(input) - 2] != ']' || !r_str_endswith (input, "!"))) {
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:790:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	char *temp = r_str_ndup (input, strlen (input) - 2);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:805:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	char *temp = r_str_ndup (input, strlen (input) - 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:954:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	char *temp = r_str_ndup (input, strlen (input) - 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:990:26:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if ((conc) & (input[i][strlen (input[i]) - 1] == '}')) {
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:1096:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy (type, str, sizeof (type) - 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:1107:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (arg, ++space, sizeof(arg) - 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:1149:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (strlen (str) + 1 >= sizeof (ao->op)) {
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:1152:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy (ao->op, str, sizeof (ao->op)-1);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:2403:4:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
			strcat (ao->a[2],"]");
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:2408:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				ao->a[1][strlen (ao->a[1]) -1] = '\0';
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:2680:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			ao->a[2][strlen (ao->a[2]) -1] = '\0';
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:2714:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			ao->a[2][strlen (ao->a[2]) -1] = '\0';
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:2807:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				ao->a[1][strlen (ao->a[1]) - 1] = '\0';
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:3492:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			ao->a[1][strlen (ao->a[1]) - 1] = '\0';
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:3557:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			ao->a[1][strlen (ao->a[1]) -1] = '\0';
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:3791:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			ao->a[0][strlen (ao->a[0]) - 1] = '\0';
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:4494:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			ao->a[0][strlen (ao->a[0]) - 1] = '\0';
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:4598:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			ao->a[2][strlen (ao->a[2]) - 1] = '\0';
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:4698:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			ao->a[0][strlen (ao->a[0]) - 1] = '\0';
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:4744:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				ao->a[1][strlen (ao->a[1]) -1] = '\0';
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:4919:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			ao->a[2][strlen (ao->a[2]) - 1] = '\0';
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:4953:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			ao->a[2][strlen (ao->a[2]) - 1] = '\0';
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:5060:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			ao->a[2][strlen (ao->a[2]) - 1] = '\0';
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:5359:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			ao->a[1][strlen (ao->a[1]) - 1] = '\0';
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:6080:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (!strncmp (ao->op, ops[i].name, strlen (ops[i].name))) {
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:6082:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			arm_opcode_cond (ao, strlen(ops[i].name));
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:6099:7:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
						strncpy (rn, ao->a[1], 7);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:6552:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				int len = strlen (ao->a[1]) + 1;
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass.c:6556:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120). Risk is low because the source is a
  constant string.
				strncpy (ao->op, "rsbs", 5);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass64.c:875:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (strlen (token) > 4 && op->operands[operand].shift != ARM_NO_SHIFT) {
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/armass64.c:939:53:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					if (!r_str_ncasecmp (token, msr_const[i].name, strlen (msr_const[i].name))) {
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/gnu/arm-dis.c:6908:26:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      unsigned int len = strlen (regnames[i].name);
data/radare2-4.3.1+dfsg/libr/asm/arch/arm/gnu/arm-dis.c:6917:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		    (int)(max_len - strlen (regnames[i].name)), ' ',
data/radare2-4.3.1+dfsg/libr/asm/arch/avr/disasm.c:53:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	len = strlen (code);
data/radare2-4.3.1+dfsg/libr/asm/arch/avr/format.c:53:3:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
		strcat (out, " ");
data/radare2-4.3.1+dfsg/libr/asm/arch/avr/format.c:182:27:  [1] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source is a constant character.
	case OPERAND_X: retVal = sprintf(strOperand, "x"); break;
data/radare2-4.3.1+dfsg/libr/asm/arch/avr/format.c:185:27:  [1] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source is a constant character.
	case OPERAND_Y: retVal = sprintf(strOperand, "y"); break;
data/radare2-4.3.1+dfsg/libr/asm/arch/avr/format.c:188:27:  [1] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source is a constant character.
	case OPERAND_Z: retVal = sprintf(strOperand, "z"); break;
data/radare2-4.3.1+dfsg/libr/asm/arch/cr16/cr16_disas.c:704:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120). Risk is low because the source is a
  constant string.
			strncpy(cmd->instr, "jal", CR16_INSTR_MAXLEN - 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/cr16/cr16_disas.c:717:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120). Risk is low because the source is a
  constant string.
			strncpy(cmd->instr, "jump", CR16_INSTR_MAXLEN - 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/cr16/cr16_disas.c:880:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120). Risk is low because the source is a
  constant string.
		strncpy(cmd->instr, "retx", CR16_INSTR_MAXLEN - 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/cr16/cr16_disas.c:884:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120). Risk is low because the source is a
  constant string.
		strncpy(cmd->instr, "di", CR16_INSTR_MAXLEN - 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/cr16/cr16_disas.c:888:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120). Risk is low because the source is a
  constant string.
		strncpy(cmd->instr, "ei", CR16_INSTR_MAXLEN - 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/cr16/cr16_disas.c:892:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120). Risk is low because the source is a
  constant string.
		strncpy(cmd->instr, "nop", CR16_INSTR_MAXLEN - 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/cr16/cr16_disas.c:896:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120). Risk is low because the source is a
  constant string.
		strncpy(cmd->instr, "wait", CR16_INSTR_MAXLEN - 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/cr16/cr16_disas.c:900:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120). Risk is low because the source is a
  constant string.
		strncpy(cmd->instr, "eiwait", CR16_INSTR_MAXLEN - 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/cr16/cr16_disas.c:906:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120). Risk is low because the source is a
  constant string.
			strncpy(cmd->instr, "excp", CR16_INSTR_MAXLEN - 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/cris/gnu/cris-dis.c:549:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  return outbuffer + strlen (outbuffer);
data/radare2-4.3.1+dfsg/libr/asm/arch/cris/gnu/cris-dis.c:562:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  return outbuffer + strlen (outbuffer);
data/radare2-4.3.1+dfsg/libr/asm/arch/cris/gnu/cris-dis.c:599:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  return outbuffer_start + strlen (outbuffer_start);
data/radare2-4.3.1+dfsg/libr/asm/arch/cris/gnu/cris-dis.c:619:30:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		  return outbuffer_start + strlen (outbuffer_start);
data/radare2-4.3.1+dfsg/libr/asm/arch/cris/gnu/cris-dis.c:626:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  return outbuffer_start + strlen (outbuffer_start);
data/radare2-4.3.1+dfsg/libr/asm/arch/cris/gnu/cris-dis.c:1335:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		tp += strlen (tp);
data/radare2-4.3.1+dfsg/libr/asm/arch/dcpu16/asm.c:75:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (param[strlen(param) - 1] == ']')  {
data/radare2-4.3.1+dfsg/libr/asm/arch/dcpu16/asm.c:77:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		param[strlen(param) - 1] = 0;
data/radare2-4.3.1+dfsg/libr/asm/arch/dcpu16/asm.c:99:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int digit_count = strlen(param);
data/radare2-4.3.1+dfsg/libr/asm/arch/dcpu16/asm.c:144:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int digit_count = strlen(param);
data/radare2-4.3.1+dfsg/libr/asm/arch/dcpu16/asm.c:216:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (strlen (line)<4) return 0;
data/radare2-4.3.1+dfsg/libr/asm/arch/dcpu16/dis.c:76:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			return strlen (out);
data/radare2-4.3.1+dfsg/libr/asm/arch/gb/gbasm.c:22:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (strlen (buf_asm) < minlen || minlen < 1) {
data/radare2-4.3.1+dfsg/libr/asm/arch/gb/gbasm.c:27:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	i = strlen (ptr_asm);
data/radare2-4.3.1+dfsg/libr/asm/arch/gb/gbasm.c:47:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if ((i = strlen (buf_asm)) < minlen) {
data/radare2-4.3.1+dfsg/libr/asm/arch/gb/gbasm.c:77:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (strlen (q + 1) < 4) {
data/radare2-4.3.1+dfsg/libr/asm/arch/gb/gbasm.c:90:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (strlen (buf_asm) < minlen) {
data/radare2-4.3.1+dfsg/libr/asm/arch/gb/gbasm.c:95:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	i = strlen (ptr_asm);
data/radare2-4.3.1+dfsg/libr/asm/arch/gb/gbasm.c:115:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	r_str_replace_in (buf_asm, strlen (buf_asm), ", ", ",", true);
data/radare2-4.3.1+dfsg/libr/asm/arch/gb/gbasm.c:116:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if ((i = strlen (buf_asm)) < minlen) {
data/radare2-4.3.1+dfsg/libr/asm/arch/gb/gbasm.c:142:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (strlen (buf_asm) < 6) {
data/radare2-4.3.1+dfsg/libr/asm/arch/gb/gbasm.c:172:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	ut32 buf_len = strlen (buf);
data/radare2-4.3.1+dfsg/libr/asm/arch/gb/gbasm.c:189:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if ((i = strlen (buf_asm)) < 5) {
data/radare2-4.3.1+dfsg/libr/asm/arch/gb/gbasm.c:218:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if ((i = strlen (buf_asm)) < 5) {
data/radare2-4.3.1+dfsg/libr/asm/arch/gb/gbasm.c:279:30:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		r_str_replace_in (buf_asm, strlen(buf_asm), ", ", ",", true);
data/radare2-4.3.1+dfsg/libr/asm/arch/gb/gbasm.c:280:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (strlen(buf_asm) < 5)
data/radare2-4.3.1+dfsg/libr/asm/arch/gb/gbasm.c:333:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (strlen (buf_asm) < 5) {
data/radare2-4.3.1+dfsg/libr/asm/arch/gb/gbasm.c:335:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		} else if (strlen (buf_asm) < 6) {
data/radare2-4.3.1+dfsg/libr/asm/arch/gb/gbasm.c:378:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (strlen (buf_asm) < 5) {
data/radare2-4.3.1+dfsg/libr/asm/arch/gb/gbasm.c:388:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (strlen (buf_asm) < 7) {
data/radare2-4.3.1+dfsg/libr/asm/arch/gb/gbasm.c:406:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (strlen (buf_asm) < 6)
data/radare2-4.3.1+dfsg/libr/asm/arch/gb/gbasm.c:423:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (strlen (buf_asm) < 4) {
data/radare2-4.3.1+dfsg/libr/asm/arch/gb/gbasm.c:462:26:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				r_str_replace_in (p, strlen(p), ", ", ",", true);
data/radare2-4.3.1+dfsg/libr/asm/arch/gb/gbasm.c:474:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (strlen (buf_asm) < 4)
data/radare2-4.3.1+dfsg/libr/asm/arch/gb/gbasm.c:501:26:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				r_str_replace_in (p, strlen(p), ", ", ",", true);
data/radare2-4.3.1+dfsg/libr/asm/arch/gb/gbasm.c:512:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (strlen(buf_asm) < 6) {
data/radare2-4.3.1+dfsg/libr/asm/arch/gb/gbasm.c:541:26:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				r_str_replace_in (p, strlen(p), ", ", ",", true);
data/radare2-4.3.1+dfsg/libr/asm/arch/h8300/h8300_disas.c:136:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy(cmd->instr, commands_4bit[opcode], H8300_INSTR_MAXLEN - 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/h8300/h8300_disas.c:163:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy(cmd->instr, commands_9bit[ext_opcode], H8300_INSTR_MAXLEN - 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/h8300/h8300_disas.c:175:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy(cmd->instr, bytes[3] & 0x80 ? "bior" : "bor",
data/radare2-4.3.1+dfsg/libr/asm/arch/h8300/h8300_disas.c:179:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy(cmd->instr, bytes[3] & 0x80 ? "biand" : "band",
data/radare2-4.3.1+dfsg/libr/asm/arch/h8300/h8300_disas.c:183:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy(cmd->instr, bytes[3] & 0x80 ? "bild" : "bld",
data/radare2-4.3.1+dfsg/libr/asm/arch/h8300/h8300_disas.c:187:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy(cmd->instr, bytes[3] & 0x80 ? "bist" : "bst",
data/radare2-4.3.1+dfsg/libr/asm/arch/h8300/h8300_disas.c:191:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy(cmd->instr, bytes[3] & 0x80 ? "bixor" : "bxor",
data/radare2-4.3.1+dfsg/libr/asm/arch/h8300/h8300_disas.c:196:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120). Risk is low because the source is a
  constant string.
			strncpy(cmd->instr, "bset", H8300_INSTR_MAXLEN - 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/h8300/h8300_disas.c:200:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120). Risk is low because the source is a
  constant string.
			strncpy(cmd->instr, "bnot", H8300_INSTR_MAXLEN - 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/h8300/h8300_disas.c:210:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy(cmd->instr, commands[bytes[0]], H8300_INSTR_MAXLEN - 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/h8300/h8300_disas.c:372:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy(cmd->instr, tmp == 0x7 ? "pop" : "push",
data/radare2-4.3.1+dfsg/libr/asm/arch/h8300/h8300_disas.c:548:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120). Risk is low because the source is a
  constant string.
		strncpy(cmd->instr, "not", H8300_INSTR_MAXLEN - 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/h8300/h8300_disas.c:551:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120). Risk is low because the source is a
  constant string.
		strncpy(cmd->instr, "rotxl", H8300_INSTR_MAXLEN - 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/h8300/h8300_disas.c:554:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120). Risk is low because the source is a
  constant string.
		strncpy(cmd->instr, "rotxr", H8300_INSTR_MAXLEN - 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/h8300/h8300_disas.c:557:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120). Risk is low because the source is a
  constant string.
		strncpy(cmd->instr, "shll", H8300_INSTR_MAXLEN - 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/h8300/h8300_disas.c:559:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120). Risk is low because the source is a
  constant string.
		strncpy(cmd->instr, "shlr", H8300_INSTR_MAXLEN - 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/h8300/h8300_disas.c:734:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120). Risk is low because the source is a
  constant string.
		strncpy(cmd->instr, "movfpe", H8300_INSTR_MAXLEN);
data/radare2-4.3.1+dfsg/libr/asm/arch/h8300/h8300_disas.c:736:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120). Risk is low because the source is a
  constant string.
		strncpy(cmd->instr, "movtpe", H8300_INSTR_MAXLEN);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-dis.c:53:11:  [1] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant character.
          strcpy(instrBuffer, "");
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:1652:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  size_t len = strlen (opcode->enc);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:1832:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
          len = strlen (alias [i].name);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2645:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      fm_len = strlen  (hexagon_operands [i].fmt);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:2988:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
              len = strlen (operand.fmt);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:3092:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  buf = alloca (strlen (operand->fmt) + strlen (suffix) + 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:3092:41:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  buf = alloca (strlen (operand->fmt) + strlen (suffix) + 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/hexagon/gnu/hexagon-opc.c:3169:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    size_t len = strlen(name);
data/radare2-4.3.1+dfsg/libr/asm/arch/i8080/i8080dis.c:135:20:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
      if (!branch) strcat(text, " ");
data/radare2-4.3.1+dfsg/libr/asm/arch/i8080/i8080dis.c:136:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      arg(text + strlen(text), cmd, &op->arg1, p);
data/radare2-4.3.1+dfsg/libr/asm/arch/i8080/i8080dis.c:138:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      arg(text + strlen(text), cmd, &op->arg2, p);
data/radare2-4.3.1+dfsg/libr/asm/arch/include/libiberty.h:588:40:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   const unsigned long libiberty_len = strlen (libiberty_optr) + 1; \
data/radare2-4.3.1+dfsg/libr/asm/arch/include/libiberty.h:602:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   libiberty_len = strlen (libiberty_optr) + 1, \
data/radare2-4.3.1+dfsg/libr/asm/arch/lanai/gnu/lanai-dis.c:485:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    int length_diff = strlen (op0->args) - strlen (op1->args);
data/radare2-4.3.1+dfsg/libr/asm/arch/lanai/gnu/lanai-dis.c:485:44:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    int length_diff = strlen (op0->args) - strlen (op1->args);
data/radare2-4.3.1+dfsg/libr/asm/arch/mips/gnu/mips-dis.c:461:66:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	  if (strncmp (mips_abi_choices[i].name, name, namelen) == 0 && strlen (mips_abi_choices[i].name) == namelen) {
data/radare2-4.3.1+dfsg/libr/asm/arch/mips/gnu/mips-dis.c:476:67:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	  if (strncmp (mips_arch_choices[i].name, name, namelen) == 0 && strlen (mips_arch_choices[i].name) == namelen) {
data/radare2-4.3.1+dfsg/libr/asm/arch/mips/gnu/mips-dis.c:614:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      && strlen ("gpr-names") == optionlen)
data/radare2-4.3.1+dfsg/libr/asm/arch/mips/gnu/mips-dis.c:624:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      && strlen ("fpr-names") == optionlen)
data/radare2-4.3.1+dfsg/libr/asm/arch/mips/gnu/mips-dis.c:634:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      && strlen ("cp0-names") == optionlen)
data/radare2-4.3.1+dfsg/libr/asm/arch/mips/gnu/mips-dis.c:647:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      && strlen ("hwr-names") == optionlen)
data/radare2-4.3.1+dfsg/libr/asm/arch/mips/gnu/mips-dis.c:657:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      && strlen ("reg-names") == optionlen)
data/radare2-4.3.1+dfsg/libr/asm/arch/mips/mipsasm.c:167:2:  [1] (buffer) sscanf:
  It's unclear if the %s limit in the format string is small enough
  (CWE-120). Check that the limit is sufficiently small, or use a different
  input function.
	sscanf (s, "%31s", w0);
data/radare2-4.3.1+dfsg/libr/asm/arch/mips/mipsasm.c:172:13:  [1] (buffer) sscanf:
  It's unclear if the %s limit in the format string is small enough
  (CWE-120). Check that the limit is sufficiently small, or use a different
  input function.
				case 3: sscanf (s, "%31s %31s %31s %31s", w0, w1, w2, w3); break;
data/radare2-4.3.1+dfsg/libr/asm/arch/mips/mipsasm.c:173:14:  [1] (buffer) sscanf:
  It's unclear if the %s limit in the format string is small enough
  (CWE-120). Check that the limit is sufficiently small, or use a different
  input function.
				case -3: sscanf (s, "%31s %31s %31s %31s", w0, w1, w2, w3); break;
data/radare2-4.3.1+dfsg/libr/asm/arch/mips/mipsasm.c:174:13:  [1] (buffer) sscanf:
  It's unclear if the %s limit in the format string is small enough
  (CWE-120). Check that the limit is sufficiently small, or use a different
  input function.
				case 2: sscanf (s, "%31s %31s %31s", w0, w1, w2); break;
data/radare2-4.3.1+dfsg/libr/asm/arch/mips/mipsasm.c:175:14:  [1] (buffer) sscanf:
  It's unclear if the %s limit in the format string is small enough
  (CWE-120). Check that the limit is sufficiently small, or use a different
  input function.
				case -2: sscanf (s, "%31s %31s %31s", w0, w1, w2); break;
data/radare2-4.3.1+dfsg/libr/asm/arch/mips/mipsasm.c:176:13:  [1] (buffer) sscanf:
  It's unclear if the %s limit in the format string is small enough
  (CWE-120). Check that the limit is sufficiently small, or use a different
  input function.
				case 1: sscanf (s, "%31s %31s", w0, w1); break;
data/radare2-4.3.1+dfsg/libr/asm/arch/mips/mipsasm.c:177:14:  [1] (buffer) sscanf:
  It's unclear if the %s limit in the format string is small enough
  (CWE-120). Check that the limit is sufficiently small, or use a different
  input function.
				case -1: sscanf (s, "%31s %31s", w0, w1); break;
data/radare2-4.3.1+dfsg/libr/asm/arch/mips/mipsasm.c:178:13:  [1] (buffer) sscanf:
  It's unclear if the %s limit in the format string is small enough
  (CWE-120). Check that the limit is sufficiently small, or use a different
  input function.
				case 0: sscanf (s, "%31s", w0); break;
data/radare2-4.3.1+dfsg/libr/asm/arch/msp430/msp430_disas.c:93:5:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				strlen(strchr(cmd->operands, ',') + 2) + 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/msp430/msp430_disas.c:306:2:  [1] (buffer) strncat:
  Easily used incorrectly (e.g., incorrectly computing the correct maximum
  size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
  or automatically resizing strings.
	strncat(cmd->operands, dstbuf, sizeof (cmd->operands) - 1 - strlen(cmd->operands));
data/radare2-4.3.1+dfsg/libr/asm/arch/msp430/msp430_disas.c:306:62:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	strncat(cmd->operands, dstbuf, sizeof (cmd->operands) - 1 - strlen(cmd->operands));
data/radare2-4.3.1+dfsg/libr/asm/arch/msp430/msp430_disas.c:317:3:  [1] (buffer) strncat:
  Easily used incorrectly (e.g., incorrectly computing the correct maximum
  size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
  or automatically resizing strings. Risk is low because the source is a
  constant string.
		strncat (cmd->instr, ".b", sizeof (cmd->instr) - 1 - strlen(cmd->instr));
data/radare2-4.3.1+dfsg/libr/asm/arch/msp430/msp430_disas.c:317:56:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		strncat (cmd->instr, ".b", sizeof (cmd->instr) - 1 - strlen(cmd->instr));
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:42:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	sprintf (buf+strlen (buf), "%s", s);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:52:3:  [1] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source is a constant character.
		sprintf (buf+strlen (buf), " ");
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:52:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		sprintf (buf+strlen (buf), " ");
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:61:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				sprintf (buf+strlen (buf), "%d", rd);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:64:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				sprintf (buf+strlen (buf), "%d", rs1);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:67:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				sprintf (buf+strlen (buf), "%d", (int) EXTRACT_OPERAND (RS2, l));
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:70:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				sprintf (buf+strlen (buf), "%d", (int) EXTRACT_OPERAND (CUSTOM_IMM, l));
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:79:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				sprintf (buf+strlen (buf), "%s",
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:84:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				sprintf (buf+strlen (buf), "%s",
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:88:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				sprintf (buf+strlen (buf), "%s", riscv_gpr_names[rd]);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:91:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				sprintf (buf+strlen (buf), "%s", riscv_gpr_names[X_SP]);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:94:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				sprintf (buf+strlen (buf), "%s",
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:98:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				sprintf (buf+strlen (buf), "%d", (int)EXTRACT_RVC_SIMM3 (l));
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:101:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				sprintf (buf+strlen (buf), "%d", (int)EXTRACT_RVC_IMM (l));
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:104:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				sprintf (buf+strlen (buf), "%d", (int)EXTRACT_RVC_LW_IMM (l));
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:107:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				sprintf (buf+strlen (buf), "%d", (int)EXTRACT_RVC_LD_IMM (l));
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:110:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				sprintf (buf+strlen (buf), "%d", (int)EXTRACT_RVC_LWSP_IMM (l));
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:113:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				sprintf (buf+strlen (buf), "%d", (int)EXTRACT_RVC_LDSP_IMM (l));
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:116:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				sprintf (buf+strlen (buf), "%d", (int)EXTRACT_RVC_ADDI4SPN_IMM (l));
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:119:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				sprintf (buf+strlen (buf), "%d", (int)EXTRACT_RVC_ADDI16SP_IMM (l));
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:122:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				sprintf (buf+strlen (buf), "%d", (int)EXTRACT_RVC_SWSP_IMM (l));
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:125:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				sprintf (buf+strlen (buf), "%d", (int)EXTRACT_RVC_SDSP_IMM (l));
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:129:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				sprintf (buf+strlen (buf), "0x%"PFMT64x, (ut64) target);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:133:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				sprintf (buf+strlen (buf), "0x%"PFMT64x, (ut64)target);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:136:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				sprintf (buf+strlen (buf), "0x%x",
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:140:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				sprintf (buf+strlen (buf), "0x%x", (int) EXTRACT_RVC_IMM (l) & 0x3f);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:143:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				sprintf (buf+strlen (buf), "0x%x", (int) EXTRACT_RVC_IMM (l) & 0x1f);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:146:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				sprintf (buf+strlen (buf), "%s",
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:150:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				sprintf (buf+strlen (buf), "%s",
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:157:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			sprintf (buf+strlen (buf), "%c ", *d);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:163:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			sprintf (buf+strlen (buf), "%c", *d);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:168:5:  [1] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source is a constant character.
				sprintf (buf+strlen (buf), "0");
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:168:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				sprintf (buf+strlen (buf), "0");
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:174:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			sprintf (buf+strlen (buf), "%s", riscv_gpr_names[rs1]);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:178:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			sprintf (buf+strlen (buf), "%s",
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:183:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			sprintf (buf+strlen (buf), "0x%x",
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:203:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			sprintf (buf+strlen (buf), "%d", (int) EXTRACT_ITYPE_IMM (l));
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:206:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			sprintf (buf+strlen (buf), "%d", (int) EXTRACT_STYPE_IMM (l));
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:210:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			sprintf (buf+strlen (buf), "0x%"PFMT64x, (ut64)target);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:214:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			sprintf (buf+strlen (buf), "0x%"PFMT64x, (ut64)target);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:217:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			sprintf (buf+strlen (buf), "%s", riscv_gpr_names[rd]);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:220:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			sprintf (buf+strlen (buf), "%s", riscv_gpr_names[0]);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:223:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			sprintf (buf+strlen (buf), "0x%x", (int) EXTRACT_OPERAND (SHAMT, l));
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:226:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			sprintf (buf+strlen (buf), "0x%x", (int) EXTRACT_OPERAND (SHAMTW, l));
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:230:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			sprintf (buf+strlen (buf), "%s", riscv_fpr_names[rs1]);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:233:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			sprintf (buf+strlen (buf), "%s", riscv_fpr_names[EXTRACT_OPERAND (RS2, l)]);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:236:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			sprintf (buf+strlen (buf), "%s", riscv_fpr_names[rd]);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:239:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			sprintf (buf+strlen (buf), "%s", riscv_fpr_names[EXTRACT_OPERAND (RS3, l)]);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:252:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					sprintf (buf+strlen (buf), "%s", csr_name);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:254:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					sprintf (buf+strlen (buf), "0x%x", csr);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:259:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			sprintf (buf+strlen (buf), "%d", rs1);
data/radare2-4.3.1+dfsg/libr/asm/arch/riscv/riscv.c:263:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			sprintf (buf+strlen (buf), "# internal error, undefined modifier (%c)",
data/radare2-4.3.1+dfsg/libr/asm/arch/sparc/gnu/sparc-dis.c:368:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    int length_diff = strlen (op0->args) - strlen (op1->args);
data/radare2-4.3.1+dfsg/libr/asm/arch/sparc/gnu/sparc-dis.c:368:44:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    int length_diff = strlen (op0->args) - strlen (op1->args);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/c55plus.c:40:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	ins_decoded_len = strlen(ins_decoded);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/c55plus_decode.c:94:3:  [1] (buffer) getchar:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
		getchar();
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/c55plus_decode.c:546:3:  [1] (buffer) getchar:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
		getchar();
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/utils.c:13:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	ut32 len_s1 = s1? strlen (s1) : 0;
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/c55x_plus/utils.c:14:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	ut32 len_s2 = s2? strlen (s2) : 0;
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/tms320_dasm.c:306:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	memmove(pos + strlen(data), pos + strlen(token), strlen(pos + strlen(token)) + 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/tms320_dasm.c:306:36:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	memmove(pos + strlen(data), pos + strlen(token), strlen(pos + strlen(token)) + 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/tms320_dasm.c:306:51:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	memmove(pos + strlen(data), pos + strlen(token), strlen(pos + strlen(token)) + 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/tms320_dasm.c:306:64:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	memmove(pos + strlen(data), pos + strlen(token), strlen(pos + strlen(token)) + 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/tms320/tms320_dasm.c:307:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	memmove(pos, data, strlen(data));
data/radare2-4.3.1+dfsg/libr/asm/arch/xap/dis.c:60:15:  [1] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant character.
	case INST_U: strcpy(d->d_asm, ""); s->s_u = 1; break;
data/radare2-4.3.1+dfsg/libr/asm/arch/xap/dis.c:120:5:  [1] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant character.
				strcpy(s->s_nopd->d_asm, "");
data/radare2-4.3.1+dfsg/libr/asm/arch/xap/dis.c:124:4:  [1] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant character.
			strcpy(d->d_asm, "");
data/radare2-4.3.1+dfsg/libr/asm/arch/xap/dis.c:320:5:  [1] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant character.
				strcpy(s->s_nopd->d_asm, "");
data/radare2-4.3.1+dfsg/libr/asm/arch/xap/dis.c:373:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			if ((strlen (r) + 4 + strlen (d->d_asm)) < sizeof (d->d_asm)) {
data/radare2-4.3.1+dfsg/libr/asm/arch/xap/dis.c:373:26:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			if ((strlen (r) + 4 + strlen (d->d_asm)) < sizeof (d->d_asm)) {
data/radare2-4.3.1+dfsg/libr/asm/arch/xap/dis.c:380:3:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
		strcat (d->d_asm, "@");
data/radare2-4.3.1+dfsg/libr/asm/arch/xap/dis.c:383:3:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
		strcat (d->d_asm, "#");
data/radare2-4.3.1+dfsg/libr/asm/arch/xap/dis.c:386:3:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
		strcat (d->d_asm, "(");
data/radare2-4.3.1+dfsg/libr/asm/arch/xap/dis.c:427:4:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
			strcat(d->d_asm, ")");
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/elf32-xtensa.c:2183:53:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      *error_message = vsprint_msg (opname, ": %s", strlen (msg) + 2, msg);
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/elf32-xtensa.c:2223:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  orig_len = strlen (origmsg);
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/elf32-xtensa.c:2224:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  len = orig_len + strlen (fmt) + arglen + 20;
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/elf32-xtensa.c:2347:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				    strlen (symbol->name) + 17,
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/elf32-xtensa.c:3096:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			     strlen (name) + 2, name);
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/elf32-xtensa.c:3142:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					 strlen (name) + 2, name);
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/elf32-xtensa.c:3145:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					 strlen (name) + 22,
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/elf32-xtensa.c:3883:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    int n = strlen (command);
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/elf32-xtensa.c:11172:44:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      prop_sec_name = (char *) bfd_malloc (strlen (base_name) + 1
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/elf32-xtensa.c:11173:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					   + (suffix ? strlen (suffix) : 0));
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/elf32-xtensa.c:11191:44:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      prop_sec_name = (char *) bfd_malloc (strlen (sec->name)
data/radare2-4.3.1+dfsg/libr/asm/arch/xtensa/gnu/elf32-xtensa.c:11192:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					   + strlen (linkonce_kind) + 1);
data/radare2-4.3.1+dfsg/libr/asm/arch/z80/expressions.c:200:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      s1 = strlen (l->name);
data/radare2-4.3.1+dfsg/libr/asm/arch/z80/z80asm.c:256:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy (buf->name, *p, c - *p - 1);
data/radare2-4.3.1+dfsg/libr/asm/asm.c:43:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int len = strlen (input) - 1;
data/radare2-4.3.1+dfsg/libr/asm/asm.c:490:43:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	return (!strncmp (a->cur->arch, h->arch, strlen (a->cur->arch)));
data/radare2-4.3.1+dfsg/libr/asm/asm.c:651:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	ut8 *buf = malloc (strlen (hexstr) + 1);
data/radare2-4.3.1+dfsg/libr/asm/asm.c:705:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (!(acode->assembly = malloc (strlen (assembly) + 16))) {
data/radare2-4.3.1+dfsg/libr/asm/p/asm_6502_cs.c:53:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				memmove (ptrstr, ptrstr + 4, strlen (ptrstr + 4) + 1);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_arm_as.c:53:30:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		(void)write (ifd, asm_buf, strlen (asm_buf));
data/radare2-4.3.1+dfsg/libr/asm/p/asm_arm_as.c:70:9:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
		len = read (ofd, buf, sizeof (buf));
data/radare2-4.3.1+dfsg/libr/asm/p/asm_avr.c:50:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	const int len = strlen (reg);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_avr.c:127:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					if (strlen(instr[2]) > 0) {
data/radare2-4.3.1+dfsg/libr/asm/p/asm_avr.c:147:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					if (strlen(instr[1]) > 0) {
data/radare2-4.3.1+dfsg/libr/asm/p/asm_avr.c:192:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (!first || strlen (first) < 2) {
data/radare2-4.3.1+dfsg/libr/asm/p/asm_avr.c:204:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (second && strlen (second) < 2) {
data/radare2-4.3.1+dfsg/libr/asm/p/asm_avr.c:301:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (strlen(operand) > 2) {
data/radare2-4.3.1+dfsg/libr/asm/p/asm_avr.c:310:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (strlen(operand) > 1) {
data/radare2-4.3.1+dfsg/libr/asm/p/asm_avr.c:319:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (strlen(operand) > 1) {
data/radare2-4.3.1+dfsg/libr/asm/p/asm_avr.c:349:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (tokens[tokens_cnt], token, MAX_TOKEN_SIZE-1);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_m680x_cs.c:85:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				memmove (ptrstr, ptrstr + 4, strlen (ptrstr + 4) + 1);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_sysz.c:47:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				memmove (ptrstr, ptrstr + 4, strlen (ptrstr + 4) + 1);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_x86_as.c:43:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	write (ifd, asm_buf, strlen (asm_buf));
data/radare2-4.3.1+dfsg/libr/asm/p/asm_x86_as.c:58:9:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
		len = read (ofd, opbuf, sizeof (opbuf));
data/radare2-4.3.1+dfsg/libr/asm/p/asm_x86_cs.c:114:33:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			memmove (ptrstr, ptrstr + 4, strlen (ptrstr + 4) + 1);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_x86_nasm.c:29:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		write (ifd, asm_buf, strlen (asm_buf));
data/radare2-4.3.1+dfsg/libr/asm/p/asm_x86_nasm.c:37:14:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
		op->size = read (ofd, buf, sizeof (buf));
data/radare2-4.3.1+dfsg/libr/asm/p/asm_x86_nz.c:2729:31:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	char* fcmov = op->mnemonic + strlen("fcmov");
data/radare2-4.3.1+dfsg/libr/asm/p/asm_x86_nz.c:4473:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (*begin > strlen (str)) {
data/radare2-4.3.1+dfsg/libr/asm/p/asm_x86_nz.c:4826:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				tmp = malloc (strlen (str + pos) + 1);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_x86_nz.c:4831:13:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
				temp *= read;
data/radare2-4.3.1+dfsg/libr/asm/p/asm_x86_nz.c:4840:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (op->rep_op, str, MAX_REPOP_LENGTH - 1);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_x86_nz.c:4874:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (op->rep_op, str, MAX_REPOP_LENGTH - 1);
data/radare2-4.3.1+dfsg/libr/asm/p/asm_x86_nz.c:5006:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy (op, str, sizeof (op) - 1);
data/radare2-4.3.1+dfsg/libr/bin/bin.c:527:35:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (!r_str_cmp (name, bp->name, strlen (name))) {
data/radare2-4.3.1+dfsg/libr/bin/bin.c:533:35:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (!r_str_cmp (name, bx->name, strlen (name))) {
data/radare2-4.3.1+dfsg/libr/bin/bobj.c:81:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (q && q[strlen (cn)] == '.') {
data/radare2-4.3.1+dfsg/libr/bin/bobj.c:82:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			q = strdup (q + strlen (cn) + 1);
data/radare2-4.3.1+dfsg/libr/bin/bobj.c:118:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					if (mn && mn[strlen (cn)] == '.') {
data/radare2-4.3.1+dfsg/libr/bin/bobj.c:119:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
						mn += strlen (cn) + 1;
data/radare2-4.3.1+dfsg/libr/bin/bobj.c:214:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int namepad_len = strlen (cls->name) + 32;
data/radare2-4.3.1+dfsg/libr/bin/bobj.c:511:36:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			if (r_str_is_printable (dec) && strlen (dec) > 3) {
data/radare2-4.3.1+dfsg/libr/bin/dbginfo.c:74:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (file, nf, sizeof (file) - 1);
data/radare2-4.3.1+dfsg/libr/bin/dbginfo.c:82:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		out2 = malloc ((strlen (file) + 64 + strlen (out)) * sizeof (char));
data/radare2-4.3.1+dfsg/libr/bin/dbginfo.c:82:40:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		out2 = malloc ((strlen (file) + 64 + strlen (out)) * sizeof (char));
data/radare2-4.3.1+dfsg/libr/bin/dbginfo.c:89:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			snprintf (out2, strlen (file) + 63 + strlen (out), "%s:%d%s%s",
data/radare2-4.3.1+dfsg/libr/bin/dbginfo.c:89:41:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			snprintf (out2, strlen (file) + 63 + strlen (out), "%s:%d%s%s",
data/radare2-4.3.1+dfsg/libr/bin/dbginfo.c:106:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int sz = strlen (file) + 10;
data/radare2-4.3.1+dfsg/libr/bin/demangle.c:30:58:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			if (plugin->demangle && !strncmp (plugin->name, name, strlen (plugin->name))) {
data/radare2-4.3.1+dfsg/libr/bin/demangle.c:86:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			size_t len = strlen (lib);
data/radare2-4.3.1+dfsg/libr/bin/demangle.c:99:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		size_t len = strlen (bin->file);
data/radare2-4.3.1+dfsg/libr/bin/demangle.c:144:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120). Risk is low because the source is a
  constant string.
	strncpy (str, "_Z1hic", sizeof (str)-1);
data/radare2-4.3.1+dfsg/libr/bin/demangle.c:145:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120). Risk is low because the source is a
  constant string.
	strncpy (str, "main(Ljava/lang/String;I)V", sizeof (str)-1);
data/radare2-4.3.1+dfsg/libr/bin/demangle.c:146:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120). Risk is low because the source is a
  constant string.
	strncpy (str, "main([Ljava/lang/String;)V", sizeof (str)-1);
data/radare2-4.3.1+dfsg/libr/bin/demangle.c:147:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120). Risk is low because the source is a
  constant string.
	strncpy (str, "foo([III)Ljava/lang/Integer;", sizeof (str)-1);
data/radare2-4.3.1+dfsg/libr/bin/dwarf.c:338:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
							allocated_id = calloc (1, strlen (comp_dir) +
data/radare2-4.3.1+dfsg/libr/bin/dwarf.c:339:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
									strlen (include_dir) + 8);
data/radare2-4.3.1+dfsg/libr/bin/dwarf.c:340:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
							snprintf (allocated_id, strlen (comp_dir) + strlen (include_dir) + 8,
data/radare2-4.3.1+dfsg/libr/bin/dwarf.c:340:52:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
							snprintf (allocated_id, strlen (comp_dir) + strlen (include_dir) + 8,
data/radare2-4.3.1+dfsg/libr/bin/dwarf.c:352:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				namelen = len + (include_dir?strlen (include_dir):0) + 8;
data/radare2-4.3.1+dfsg/libr/bin/dwarf.c:496:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		buf += (strlen (filename) + 1);
data/radare2-4.3.1+dfsg/libr/bin/dwarf.c:1286:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		buf += (strlen ((const char*)buf) + 1);
data/radare2-4.3.1+dfsg/libr/bin/filter.c:204:53:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			for (i = 0, ptr = addrs; i < splits; i++, ptr += strlen (ptr) + 1) {
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c:805:77:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
							const char *fname = sdb_fmt ("%s(%s%-*s)", tmp_val, name, (int)(12 - strlen (name)),")");
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c:1081:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
				strncpy (name, &bin->dynstr[aux->vna_name], sizeof (name)-1);
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c:2465:45:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	return r_mem_mem (tmp, 64, (const ut8 *)s, strlen (s)) != NULL;
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c:2475:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				(const ut8*)s, strlen (s)) != NULL;
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c:2622:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (ret, bin->strtab + bin->dyn_buf[j].d_un.d_val, ELF_STRING_LENGTH);
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c:2649:52:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (!strncmp (bin->g_sections[i].name, ".rela.", strlen (".rela."))) {
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c:2654:58:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		} else if (!strncmp (bin->g_sections[i].name, ".rel.", strlen (".rel."))){
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c:2729:67:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		bool is_rela = 0 == strncmp (bin->g_sections[i].name, ".rela.", strlen (".rela."));
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c:2730:67:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		bool is_rel  = 0 == strncmp (bin->g_sections[i].name, ".rel.",  strlen (".rel."));
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c:2797:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (ret[k].name, bin->strtab + bin->dyn_buf[j].d_un.d_val, ELF_STRING_LENGTH);
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c:2824:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy (ret[*i].name, name, R_ARRAY_SIZE (ret[*i].name) - 1);
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c:2918:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (ret[i].name, invalid_s, sizeof (ret[i].name) - 1);
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c:2921:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (ret[i].name, &bin->shstrtab[SHNAME], sizeof (ret[i].name) - 1);
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c:2927:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (ret[i].name, unknown_s, sizeof (ret[i].name) - 1);
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c:3323:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int len = strlen (ptr->name);
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c:3704:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120). Risk is low because the source is a
  constant string.
	strncpy (ret[i].name, "ehdr", ELF_STRING_LENGTH);
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c:3707:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120). Risk is low because the source is a
  constant string.
	strncpy (ret[i].name, "shoff", ELF_STRING_LENGTH);
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c:3710:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120). Risk is low because the source is a
  constant string.
	strncpy (ret[i].name, "phoff", ELF_STRING_LENGTH);
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c:3950:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				len_str += strlen (str) + 1;
data/radare2-4.3.1+dfsg/libr/bin/format/elf/elf.c:4018:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	const size_t buflen = strlen (buf);
data/radare2-4.3.1+dfsg/libr/bin/format/mach0/dyldcache.c:223:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy (ret->path, libname, sizeof (ret->path) - 1);
data/radare2-4.3.1+dfsg/libr/bin/format/mach0/dyldcache.c:246:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int path_length = strlen (lib->path);
data/radare2-4.3.1+dfsg/libr/bin/format/mach0/mach0.c:2334:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				ur.p += strlen ((char*) ur.p) + 1;
data/radare2-4.3.1+dfsg/libr/bin/format/mach0/mach0.c:2389:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		ur.p += strlen (next->label) + 1;
data/radare2-4.3.1+dfsg/libr/bin/format/mach0/mach0.c:3281:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (libs[i].name, bin->libs[i], R_BIN_MACH0_STRING_LENGTH);
data/radare2-4.3.1+dfsg/libr/bin/format/objc/mach0_classes.c:299:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				left = strlen (name) + 1;
data/radare2-4.3.1+dfsg/libr/bin/format/objc/mach0_classes.c:443:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				left = strlen (name) + 1;
data/radare2-4.3.1+dfsg/libr/bin/format/objc/mach0_classes.c:469:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				left = strlen (name) + 1;
data/radare2-4.3.1+dfsg/libr/bin/format/objc/mach0_classes.c:586:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				left = strlen (name) + 1;
data/radare2-4.3.1+dfsg/libr/bin/format/objc/mach0_classes.c:611:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				left = strlen (rtype) + 1;
data/radare2-4.3.1+dfsg/libr/bin/format/objc/mach0_classes.c:776:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				left = strlen (name) + 1;
data/radare2-4.3.1+dfsg/libr/bin/format/objc/mach0_classes.c:823:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		modlen = strlen (s + off);
data/radare2-4.3.1+dfsg/libr/bin/format/objc/mach0_classes.c:836:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		modlen = strlen (kstr);
data/radare2-4.3.1+dfsg/libr/bin/format/objc/mach0_classes.c:1020:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			left = strlen (klass->name) + 1;
data/radare2-4.3.1+dfsg/libr/bin/format/objc/mach0_classes.c:1125:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			const int _objc_class_len = strlen (_objc_class);
data/radare2-4.3.1+dfsg/libr/bin/format/objc/mach0_classes.c:1441:31:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		const int _objc_class_len = strlen (_objc_class);
data/radare2-4.3.1+dfsg/libr/bin/format/pe/dotnet.c:279:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
    strncpy(stream_name, stream_header->Name, DOTNET_STREAM_NAME_SIZE);
data/radare2-4.3.1+dfsg/libr/bin/format/pe/dotnet.c:311:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen(stream_name) +
data/radare2-4.3.1+dfsg/libr/bin/format/pe/dotnet.c:312:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        4 - (strlen(stream_name) % 4));
data/radare2-4.3.1+dfsg/libr/bin/format/pe/dotnet.c:876:15:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
              strncpy(typelib, (char*) blob_offset, MAX_TYPELIB_SIZE);
data/radare2-4.3.1+dfsg/libr/bin/format/pe/dotnet.c:1115:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        if (name != NULL && strlen(name) > 0)
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.c:416:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
				strncpy (name, dll_name, sizeof (name) - 1);
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.c:421:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				size_t len = strlen (symdllname);
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.c:688:7:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
						strncpy ((char*) exp[symctr].name, shortname, PE_NAME_LENGTH - 1);
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.c:695:8:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
							strncpy ((char*) exp[symctr].name, longname, PE_NAME_LENGTH - 1);
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.c:3225:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (res->file_name, (const char*)
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.c:3241:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
				strncpy (res->file_name, (const char*)
data/radare2-4.3.1+dfsg/libr/bin/format/pe/pe.c:3794:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy ((char*) sections[j].name, new_name, R_ARRAY_SIZE (sections[j].name) - 1);
data/radare2-4.3.1+dfsg/libr/bin/format/xnu/r_cf_dict.c:496:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	const int len = strlen (string);
data/radare2-4.3.1+dfsg/libr/bin/mangling/cxx.c:28:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int plen = strlen (prefixes[i]);
data/radare2-4.3.1+dfsg/libr/bin/mangling/cxx/cp-demangle.c:1052:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    return d_make_name (di, s, strlen (s));
data/radare2-4.3.1+dfsg/libr/bin/mangling/cxx/cp-demangle.c:4255:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  d_append_buffer (dpi, s, strlen (s));
data/radare2-4.3.1+dfsg/libr/bin/mangling/cxx/cp-demangle.c:6237:47:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  cplus_demangle_init_info (mangled, options, strlen (mangled), &di);
data/radare2-4.3.1+dfsg/libr/bin/mangling/cxx/cp-demangle.c:6268:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	d_advance (&di, strlen (d_str (&di)));
data/radare2-4.3.1+dfsg/libr/bin/mangling/cxx/cp-demangle.c:6393:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      if (strlen (demangled) < *length)
data/radare2-4.3.1+dfsg/libr/bin/mangling/cxx/cp-demangle.c:6518:51:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  cplus_demangle_init_info (mangled, DMGL_GNU_V3, strlen (mangled), &di);
data/radare2-4.3.1+dfsg/libr/bin/mangling/cxx/cp-demangle.c:6703:8:  [1] (buffer) getchar:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	  c = getchar ();
data/radare2-4.3.1+dfsg/libr/bin/mangling/cxx/cp-demangle.c:6709:12:  [1] (buffer) getchar:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	      c = getchar ();
data/radare2-4.3.1+dfsg/libr/bin/mangling/cxx/libiberty.h:667:40:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   const unsigned long libiberty_len = strlen (libiberty_optr) + 1; \
data/radare2-4.3.1+dfsg/libr/bin/mangling/cxx/libiberty.h:681:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
   libiberty_len = strlen (libiberty_optr) + 1, \
data/radare2-4.3.1+dfsg/libr/bin/mangling/microsoft_demangle.c:121:59:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int str_for_copy_len = (copy_len == 0 && str_for_copy) ? strlen (str_for_copy) : copy_len;
data/radare2-4.3.1+dfsg/libr/bin/mangling/microsoft_demangle.c:291:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	str_info->len = strlen (str); \
data/radare2-4.3.1+dfsg/libr/bin/mangling/microsoft_demangle.c:571:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		str_info->len = strlen (tmp);
data/radare2-4.3.1+dfsg/libr/bin/mangling/microsoft_demangle.c:712:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	check_len = strlen (case_string); \
data/radare2-4.3.1+dfsg/libr/bin/mangling/microsoft_demangle.c:722:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int buff_len = strlen (state->buff_for_parsing);
data/radare2-4.3.1+dfsg/libr/bin/mangling/microsoft_demangle.c:743:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	check_len = strlen (case_string); \
data/radare2-4.3.1+dfsg/libr/bin/mangling/microsoft_demangle.c:753:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int buff_len = strlen (state->buff_for_parsing);
data/radare2-4.3.1+dfsg/libr/bin/mangling/microsoft_demangle.c:1279:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		i = strlen (curr_pos);
data/radare2-4.3.1+dfsg/libr/bin/mangling/microsoft_demangle.c:1487:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			str_arg->len = strlen (tmp);
data/radare2-4.3.1+dfsg/libr/bin/mangling/microsoft_demangle.c:1491:41:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			if (strncmp (tmp, "void", 4) == 0 && strlen (tmp) == 4) {
data/radare2-4.3.1+dfsg/libr/bin/mangling/microsoft_demangle.c:1569:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			func_str.curr_pos -= strlen ("#{return_type}") - strlen (ret_type);
data/radare2-4.3.1+dfsg/libr/bin/mangling/microsoft_demangle.c:1569:53:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			func_str.curr_pos -= strlen ("#{return_type}") - strlen (ret_type);
data/radare2-4.3.1+dfsg/libr/bin/mangling/objc.c:117:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				args = malloc (((strlen (arg) + 4) * nargs) + 1);
data/radare2-4.3.1+dfsg/libr/bin/mangling/rust.c:8:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	size_t len = strlen (seq);
data/radare2-4.3.1+dfsg/libr/bin/mangling/rust.c:33:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	len = strlen (str);
data/radare2-4.3.1+dfsg/libr/bin/mangling/rust.c:40:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	while ((len = strlen (in)) > 0) {
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:99:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy (buf, s, len);
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:109:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int len = strlen (t[0].code);
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:172:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		return swift_demangle (s, strlen (s), NULL, NULL, 0);
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:179:41:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define STRCAT_BOUNDS(x) if (((x) + 2 + strlen (out)) > sizeof (out)) break;
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:214:26:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	const char *q_end = p + strlen (p);
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:327:6:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
					strcat (out, ".");
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:330:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				len = R_MIN (len, strlen (q));
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:365:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			if (len < strlen (q)) {
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:374:6:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
					strcat (out, ".");
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:375:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					STRCAT_BOUNDS (strlen (name));
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:379:6:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
					strcat (out, ".");
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:380:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					STRCAT_BOUNDS (strlen (attr));
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:385:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					STRCAT_BOUNDS (strlen (attr2));
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:463:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					p = resolve (types, (strlen (q) > 2)? q + 3: "", &attr); // type
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:497:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
									STRCAT_BOUNDS (strlen (attr));
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:507:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
								STRCAT_BOUNDS (strlen (attr));
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:529:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
								STRCAT_BOUNDS (strlen (attr));
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:531:9:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
								strcat (out, " ");
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:533:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
							STRCAT_BOUNDS (strlen (s));
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:547:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
								STRCAT_BOUNDS (strlen (attr));
data/radare2-4.3.1+dfsg/libr/bin/mangling/swift-sd.c:554:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
							STRCAT_BOUNDS (strlen (attr));
data/radare2-4.3.1+dfsg/libr/bin/p/bin_cgc.c:29:55:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define WZ(x,y) p_tmp=r_buf_size (buf);Z(x);W(p_tmp,y,strlen(y))
data/radare2-4.3.1+dfsg/libr/bin/p/bin_dbginfo_dex.c:15:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
				strncpy (file, ret, len);
data/radare2-4.3.1+dfsg/libr/bin/p/bin_dbginfo_elf.c:16:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
				strncpy (file, ret, len);
data/radare2-4.3.1+dfsg/libr/bin/p/bin_dex.c:222:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			int len = strlen (accessStr);
data/radare2-4.3.1+dfsg/libr/bin/p/bin_dex.c:298:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		buff_len = strlen (buff);
data/radare2-4.3.1+dfsg/libr/bin/p/bin_dex.c:1797:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			len = strlen (class_name);
data/radare2-4.3.1+dfsg/libr/bin/p/bin_dex.c:1911:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (strlen (m->name) > 30 && m->bind &&
data/radare2-4.3.1+dfsg/libr/bin/p/bin_dex.c:1913:26:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		    !strcmp (m->name + strlen (m->name) - 31,
data/radare2-4.3.1+dfsg/libr/bin/p/bin_dex.c:1927:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			if (strlen (m->name) > 26 &&
data/radare2-4.3.1+dfsg/libr/bin/p/bin_dex.c:1928:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			    !strcmp (m->name + strlen (m->name) - 27,
data/radare2-4.3.1+dfsg/libr/bin/p/bin_dyldcache.c:1147:22:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
		return fd->plugin->read (io, fd, buf, count);
data/radare2-4.3.1+dfsg/libr/bin/p/bin_dyldcache.c:1206:36:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	cache->original_io_read = plugin->read;
data/radare2-4.3.1+dfsg/libr/bin/p/bin_elf.c:49:55:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define WZ(x,y) p_tmp=r_buf_size (buf);Z(x);W(p_tmp,y,strlen(y))
data/radare2-4.3.1+dfsg/libr/bin/p/bin_mach0.c:96:8:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
			if (read < sec->size) {
data/radare2-4.3.1+dfsg/libr/bin/p/bin_mach0.c:322:30:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	const int _objc_class_len = strlen (_objc_class);
data/radare2-4.3.1+dfsg/libr/bin/p/bin_mach0.c:324:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	const int _objc_metaclass_len = strlen (_objc_metaclass);
data/radare2-4.3.1+dfsg/libr/bin/p/bin_mach0.c:723:55:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define WZ(x,y) p_tmp=r_buf_size (buf);Z(x);W(p_tmp,y,strlen(y))
data/radare2-4.3.1+dfsg/libr/bin/p/bin_mach0.c:874:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		const int dyld_len = strlen (dyld) + 1;
data/radare2-4.3.1+dfsg/libr/bin/p/bin_mach0.c:883:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			const int lib_len = strlen (lib) + 1;
data/radare2-4.3.1+dfsg/libr/bin/p/bin_mach064.c:43:55:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define WZ(x,y) p_tmp=r_buf_size (buf);Z(x);W(p_tmp,y,strlen(y))
data/radare2-4.3.1+dfsg/libr/bin/p/bin_mach064.c:190:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		const int dyld_len = strlen (dyld) + 1;
data/radare2-4.3.1+dfsg/libr/bin/p/bin_mach064.c:199:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			const int lib_len = strlen (lib) + 1;
data/radare2-4.3.1+dfsg/libr/bin/p/bin_pe.c:43:55:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define WZ(x,y) p_tmp=r_buf_size (buf);Z(x);W(p_tmp,y,strlen(y))
data/radare2-4.3.1+dfsg/libr/bin/p/bin_symbols.c:235:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		bs->length = strlen (s);
data/radare2-4.3.1+dfsg/libr/bin/p/bin_vsf.c:62:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			if (offset + strlen (_machines[i].name) > bf->size) {
data/radare2-4.3.1+dfsg/libr/bin/p/bin_vsf.c:66:46:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			if (!strncmp (machine, _machines[i].name, strlen (_machines[i].name))) {
data/radare2-4.3.1+dfsg/libr/bin/p/bin_vsf.c:82:8:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
			if (read != sizeof(module)) {
data/radare2-4.3.1+dfsg/libr/bin/p/bin_vsf.c:89:25:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
				res->mem = offset + read;
data/radare2-4.3.1+dfsg/libr/bin/p/bin_vsf.c:91:25:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
				res->rom = offset + read;
data/radare2-4.3.1+dfsg/libr/bin/p/bin_vsf.c:93:25:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
				res->mem = offset + read;
data/radare2-4.3.1+dfsg/libr/bin/p/bin_vsf.c:95:25:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
				res->rom = offset + read;
data/radare2-4.3.1+dfsg/libr/bin/p/bin_vsf.c:98:38:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
				r_buf_read_at (bf->buf, offset + read, (ut8 *)res->maincpu, sizeof (*res->maincpu));
data/radare2-4.3.1+dfsg/libr/bin/p/bin_vsf.c:309:6:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	if (read != sizeof(hdr)) {
data/radare2-4.3.1+dfsg/libr/bin/p/bin_vsf.c:497:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (ptr->name, _symbols[i].symbol_name, R_BIN_SIZEOF_STRINGS);
data/radare2-4.3.1+dfsg/libr/bin/p/bin_write_mach0.c:60:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	size_t lib_len = strlen (lib);
data/radare2-4.3.1+dfsg/libr/bin/p/bin_xnu_kernelcache.c:1861:34:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	obj->original_io_read = plugin->read;
data/radare2-4.3.1+dfsg/libr/bin/p/bin_xnu_kernelcache.c:1908:22:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
		return fd->plugin->read (io, fd, buf, count);
data/radare2-4.3.1+dfsg/libr/bin/pdb/pdb.c:689:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			name = (char *) malloc (strlen (tmp) + strlen (*name_field) + 1 + 2);
data/radare2-4.3.1+dfsg/libr/bin/pdb/pdb.c:689:43:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			name = (char *) malloc (strlen (tmp) + strlen (*name_field) + 1 + 2);
data/radare2-4.3.1+dfsg/libr/bin/pdb/pdb.c:745:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			name = (char *) malloc (strlen (tmp) + strlen (*name_field) + 1 + 2);
data/radare2-4.3.1+dfsg/libr/bin/pdb/pdb.c:745:43:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			name = (char *) malloc (strlen (tmp) + strlen (*name_field) + 1 + 2);
data/radare2-4.3.1+dfsg/libr/bin/pdb/pdb.c:761:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			name = (char *) malloc (strlen (tmp) + strlen (*name_field) + 1 + 2);
data/radare2-4.3.1+dfsg/libr/bin/pdb/pdb.c:761:43:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			name = (char *) malloc (strlen (tmp) + strlen (*name_field) + 1 + 2);
data/radare2-4.3.1+dfsg/libr/bin/pdb/pdb.c:800:37:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		*command_field = (char *) malloc (strlen ("\"pf.") + 1);
data/radare2-4.3.1+dfsg/libr/bin/pdb/pdb.c:807:37:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		*command_field = (char *) malloc (strlen ("\"td enum ") + 1);
data/radare2-4.3.1+dfsg/libr/bin/pdb/pdb.c:833:54:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		members_field[i] = (char *) malloc (sizeof(char) * strlen (name) + 1);
data/radare2-4.3.1+dfsg/libr/bin/pdb/pdb.c:846:54:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		members_field[i] = (char *) malloc (sizeof(char) * strlen (name) + 8 + 1 + 1);	// 8 - hex int, 1 - =
data/radare2-4.3.1+dfsg/libr/bin/pdb/pdb.c:1011:30:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
							"member_type", type + strlen ("(member)") + 1,
data/radare2-4.3.1+dfsg/libr/bin/pdb/pdb_downloader.c:54:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	archive_name_len = strlen (opt->dbg_file);
data/radare2-4.3.1+dfsg/libr/bin/pdb/pdb_downloader.c:75:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	abspath_to_file[strlen (abspath_to_file) - 1] = 'b';
data/radare2-4.3.1+dfsg/libr/bin/pdb/pdb_downloader.c:139:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		archive_name_escaped[strlen (archive_name_escaped) - 1] = 'b';
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1011:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	name_len = strlen ("array: ");
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1013:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		name_len += strlen (tmp_name);
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1049:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	name_len = strlen ("pointer to ");
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1051:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		name_len += strlen (tmp_name);
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1086:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	name_len = strlen ("modifier ");
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1088:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		name_len += strlen (tmp_name);
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1108:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	const int name_len = strlen ("proc ");
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1135:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	name_len = strlen ("bitfield ");
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1137:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		name_len += strlen (tmp_name);
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1163:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	name_len = strlen ("fieldlist ");
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1189:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	name_len = strlen ("enum ");
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1191:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		name_len += strlen (tmp_name);
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1225:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	name_len = strlen(tmp1);
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1227:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		name_len += strlen (tmp_name);
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1249:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	name_len = strlen ("arg_list");
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1286:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	name_len = strlen("mfunction ");
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1306:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	name_len = strlen (tmp1);
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1308:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		name_len += strlen (tmp_name);
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1329:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	name_len = strlen ("vtshape");
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1346:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	name_len = strlen (tmp1);
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1348:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		name_len += strlen (tmp_name);
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1389:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	name_len = strlen ("nesttype ");
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1391:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		name_len += strlen (tmp_name);
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1419:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	name_len = strlen (tmp1);
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1421:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		name_len += strlen (tmp_name);
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1454:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	name_len = strlen ("(member) ");
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1456:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		name_len += strlen (tmp_name);
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1491:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	name_len = strlen ("onemethod ");
data/radare2-4.3.1+dfsg/libr/bin/pdb/tpi.c:1493:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		name_len += strlen (tmp_name);
data/radare2-4.3.1+dfsg/libr/config/config.c:151:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = strlen (str);
data/radare2-4.3.1+dfsg/libr/config/config.c:162:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (strlen (str) == 0) {
data/radare2-4.3.1+dfsg/libr/cons/canvas.c:379:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					int len = strlen (atr);
data/radare2-4.3.1+dfsg/libr/cons/canvas.c:395:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				olen += strlen (rune);
data/radare2-4.3.1+dfsg/libr/cons/cons.c:156:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		olen = strlen (obuf);
data/radare2-4.3.1+dfsg/libr/cons/cons.c:380:4:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
			read (0, buf, sizeof (buf));
data/radare2-4.3.1+dfsg/libr/cons/cons.c:480:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	write (2, click, strlen (click));
data/radare2-4.3.1+dfsg/libr/cons/cons.c:1055:33:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					__cons_write (Color_RESET, strlen (Color_RESET));
data/radare2-4.3.1+dfsg/libr/cons/cons.c:1105:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (palloc (MOAR + strlen (format) * 20)) {
data/radare2-4.3.1+dfsg/libr/cons/cons.c:1192:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	len = strlen (str);
data/radare2-4.3.1+dfsg/libr/cons/cons.c:1501:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	write (2, code, strlen (code));
data/radare2-4.3.1+dfsg/libr/cons/cons.c:1509:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			write (2, code, strlen (code));
data/radare2-4.3.1+dfsg/libr/cons/cons.c:1514:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			write (2, code, strlen (code));
data/radare2-4.3.1+dfsg/libr/cons/cons.c:1567:3:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		strlen (inv[0]),
data/radare2-4.3.1+dfsg/libr/cons/cons.c:1568:3:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		strlen (inv[1])
data/radare2-4.3.1+dfsg/libr/cons/cons.c:1576:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int word_len = strlen (word);
data/radare2-4.3.1+dfsg/libr/cons/cons.c:1603:51:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			I.context->buffer_len = I.context->buffer_sz = strlen (res);
data/radare2-4.3.1+dfsg/libr/cons/cons.c:1745:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		I.break_word_len = strlen (s);
data/radare2-4.3.1+dfsg/libr/cons/cons.c:1765:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int len0 = strlen (help[i]);
data/radare2-4.3.1+dfsg/libr/cons/cons.c:1766:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int len1 = strlen (help[i + 1]);
data/radare2-4.3.1+dfsg/libr/cons/cons.c:1773:37:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (!strncmp (help[i], usage_str, strlen (usage_str))) {
data/radare2-4.3.1+dfsg/libr/cons/cons.c:1784:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			int str_length = strlen (help[i]) + strlen (help[i + 1]);
data/radare2-4.3.1+dfsg/libr/cons/cons.c:1784:40:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			int str_length = strlen (help[i]) + strlen (help[i + 1]);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:72:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		I.buffer.length = strlen (I.buffer.data);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:100:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		I.buffer.length = strlen (I.buffer.data);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:121:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	I.buffer.length = strlen (I.buffer.data);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:140:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	I.buffer.length = strlen (I.buffer.data);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:147:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int len = strlen (I.clipboard);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:182:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		I.buffer.length = strlen (I.buffer.data);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:227:11:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	if ((t = read (0, s, 1)) != 1) {
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:271:13:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
		int rsz = read (0, s, 1);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:296:40:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				strncpy_s (buf, sizeof (buf), tmp, strlen (tmp));
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:326:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	return strlen ((char *)s);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:348:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (line->buffer.data, line->history.data[--line->history.index], R_LINE_BUFSIZE - 1);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:349:46:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		line->buffer.index = line->buffer.length = strlen (line->buffer.data);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:373:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (line->buffer.data, line->history.data[line->history.index], R_LINE_BUFSIZE - 1);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:374:46:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		line->buffer.index = line->buffer.length = strlen (line->buffer.data);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:444:43:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			const char *pad = r_str_pad (' ', 32 - strlen (I.history.data[i]));
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:530:41:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		sel_widget->w = R_MAX (sel_widget->w, strlen (sel_widget->options[y]));
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:649:37:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			I.buffer.length = R_MIN (delta + strlen (sel_widget->options[sel_widget->selection]), R_LINE_BUFSIZE - 1);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:650:79:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			memcpy (I.buffer.data + delta, sel_widget->options[sel_widget->selection], strlen (sel_widget->options[sel_widget->selection]));
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:654:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		I.buffer.length = R_MIN (strlen (sel_widget->options[sel_widget->selection]), R_LINE_BUFSIZE - 1);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:665:52:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (argc == 0 || (argc == 1 && I.buffer.length >= strlen (argv[0]))) {
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:728:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			I.buffer.index, strlen (I.buffer.data), ' ');
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:731:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int largv0 = strlen (argv[0]? argv[0]: "");
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:732:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		size_t len_t = strlen (t);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:751:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			I.buffer.length = strlen (I.buffer.data);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:759:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			int min_common_len = strlen (root);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:760:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			size_t len_t = strlen (t);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:783:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			I.buffer.length = strlen (I.buffer.data);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:806:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			int l = strlen (argv[i]);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:821:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			slen = strlen (argv[i]);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:835:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		I.buffer.index -= strlen (r_list_get_n (I.kill_ring, I.kill_ring_ptr));
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:851:4:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			strlen (I.buffer.data + I.buffer.index + 1) + 1);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:863:5:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				strlen (I.buffer.data + I.buffer.index));
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:888:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int chars = R_MAX (1, strlen (I.buffer.data));
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:1132:6:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
					strncpy (I.buffer.data, I.buffer.data + I.buffer.index, I.buffer.length);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:1149:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				I.buffer.length = strlen (I.buffer.data);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:1161:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				I.buffer.index = strlen (I.buffer.data);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:1264:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			R_MIN (strlen (I.contents) + 1, R_LINE_BUFSIZE - 1));
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:1266:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		I.buffer.index = I.buffer.length = strlen (I.contents);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:1344:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				I.buffer.length = strlen (I.buffer.data);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:1356:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				I.buffer.index = strlen (I.buffer.data);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:1364:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					I.buffer.length = strlen (tmp_ed_cmd);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:1367:7:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
						strncpy (I.buffer.data, tmp_ed_cmd, R_LINE_BUFSIZE - 1);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:1370:26:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
						I.buffer.length -= strlen (tmp_ed_cmd);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:1460:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
						int len = strlen (txt);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:1481:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (I.buffer.data, I.buffer.data + I.buffer.index, I.buffer.length);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:1531:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			memmove (buf, buf + 1, strlen (buf));
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:1788:5:  [1] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant character.
				strcpy (I.buffer.data + I.buffer.length, " ");
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:1817:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
				strncpy (I.buffer.data, gcomp_line, R_LINE_BUFSIZE - 1);
data/radare2-4.3.1+dfsg/libr/cons/dietline.c:1819:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				I.buffer.length = strlen (gcomp_line);
data/radare2-4.3.1+dfsg/libr/cons/editor.c:15:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy (I->line->buffer.data, r_str_word_get0 (lines, _n),
data/radare2-4.3.1+dfsg/libr/cons/editor.c:18:51:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	I->line->buffer.index = I->line->buffer.length = strlen (I->line->buffer.data);
data/radare2-4.3.1+dfsg/libr/cons/grep.c:15:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			memmove (prev, p, strlen (p) + 1);
data/radare2-4.3.1+dfsg/libr/cons/grep.c:192:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	len = strlen (str) - 1;
data/radare2-4.3.1+dfsg/libr/cons/grep.c:199:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (buf, str, R_MIN (len, sizeof (buf) - 1));
data/radare2-4.3.1+dfsg/libr/cons/grep.c:203:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (buf, str, sizeof (buf) - 1);
data/radare2-4.3.1+dfsg/libr/cons/grep.c:296:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	len = strlen (buf) - 1;
data/radare2-4.3.1+dfsg/libr/cons/grep.c:311:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			wlen = strlen (optr);
data/radare2-4.3.1+dfsg/libr/cons/grep.c:324:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (grep->strings[grep->nstrings - 1],
data/radare2-4.3.1+dfsg/libr/cons/grep.c:347:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		memmove (p - 1, p, strlen(p) + 1);
data/radare2-4.3.1+dfsg/libr/cons/grep.c:372:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	len = strlen (p1);
data/radare2-4.3.1+dfsg/libr/cons/grep.c:489:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			cons->context->buffer_len = strlen (out);
data/radare2-4.3.1+dfsg/libr/cons/grep.c:502:33:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				cons->context->buffer_len = strlen (u);
data/radare2-4.3.1+dfsg/libr/cons/grep.c:525:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			cons->context->buffer_len = strlen (out);
data/radare2-4.3.1+dfsg/libr/cons/grep.c:665:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int cnt = grep->charCounter? strlen (cons->context->buffer): cons->lines;
data/radare2-4.3.1+dfsg/libr/cons/grep.c:670:31:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		cons->context->buffer_len = strlen (cons->context->buffer);
data/radare2-4.3.1+dfsg/libr/cons/grep.c:691:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				int len = strlen (str);\
data/radare2-4.3.1+dfsg/libr/cons/grep.c:761:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			if (grep->end && (strlen (grep->strings[i]) != strlen (p))) {
data/radare2-4.3.1+dfsg/libr/cons/grep.c:761:51:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			if (grep->end && (strlen (grep->strings[i]) != strlen (p))) {
data/radare2-4.3.1+dfsg/libr/cons/grep.c:790:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
						int toklen = strlen (tok);
data/radare2-4.3.1+dfsg/libr/cons/hud.c:61:36:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	const char *filter_end = filter + strlen (filter);
data/radare2-4.3.1+dfsg/libr/cons/hud.c:80:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			token_len = strlen (current_token);
data/radare2-4.3.1+dfsg/libr/cons/hud.c:204:74:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	HtPP *ht = ht_pp_new (NULL, (HtPPKvFreeFunc)mht_free_kv, (HtPPCalcSizeV)strlen);
data/radare2-4.3.1+dfsg/libr/cons/hud.c:255:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (user_input, I(line)->buffer.data, HUD_BUF_SIZE - 1); 				// to search
data/radare2-4.3.1+dfsg/libr/cons/hud.c:326:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int len = strlen (msg);
data/radare2-4.3.1+dfsg/libr/cons/input.c:371:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			fwrite (p, strlen (p), 1, stdout);
data/radare2-4.3.1+dfsg/libr/cons/input.c:392:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	ret = strlen (buf);
data/radare2-4.3.1+dfsg/libr/cons/input.c:625:16:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	ssize_t ret = read (STDIN_FILENO, buf, 1);
data/radare2-4.3.1+dfsg/libr/cons/input.c:650:8:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	(void)read (0, &key, 1);
data/radare2-4.3.1+dfsg/libr/cons/output.c:118:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = strlen ((const char *)ptr);
data/radare2-4.3.1+dfsg/libr/cons/output.c:405:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		size_t len = strlen (fmt);
data/radare2-4.3.1+dfsg/libr/cons/pager.c:18:3:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		strlen (inv[0]),
data/radare2-4.3.1+dfsg/libr/cons/pager.c:19:3:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		strlen (inv[1])
data/radare2-4.3.1+dfsg/libr/cons/pager.c:114:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		m.rm_eo = slen = strlen (clean);
data/radare2-4.3.1+dfsg/libr/cons/pal.c:312:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (strlen (fgcolor) == 7) {
data/radare2-4.3.1+dfsg/libr/cons/pal.c:324:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (strlen (fgcolor) == 7) {
data/radare2-4.3.1+dfsg/libr/cons/pal.c:331:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		} else if (strlen (fgcolor) == 10) {
data/radare2-4.3.1+dfsg/libr/cons/pal.c:342:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (strlen (bgcolor) == 7) {
data/radare2-4.3.1+dfsg/libr/cons/pal.c:348:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				size_t len = strlen (out);
data/radare2-4.3.1+dfsg/libr/cons/pal.c:351:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		} else if (strlen (bgcolor) == 10) {
data/radare2-4.3.1+dfsg/libr/cons/pal.c:357:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				size_t len = strlen (out);
data/radare2-4.3.1+dfsg/libr/cons/pal.c:370:5:  [1] (buffer) strncat:
  Easily used incorrectly (e.g., incorrectly computing the correct maximum
  size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
  or automatically resizing strings.
				strncat (out, colors[i].code,
data/radare2-4.3.1+dfsg/libr/cons/pal.c:371:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					sizeof (out) - strlen (out) - 1);
data/radare2-4.3.1+dfsg/libr/cons/pal.c:381:5:  [1] (buffer) strncat:
  Easily used incorrectly (e.g., incorrectly computing the correct maximum
  size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
  or automatically resizing strings.
				strncat (out, colors[i].bgcode,
data/radare2-4.3.1+dfsg/libr/cons/pal.c:382:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					sizeof (out) - strlen (out) - 1);
data/radare2-4.3.1+dfsg/libr/cons/pal.c:554:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			int j, len = strlen (name);
data/radare2-4.3.1+dfsg/libr/cons/rgb.c:301:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	size_t len = strlen (outstr);
data/radare2-4.3.1+dfsg/libr/cons/stiv.c:89:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int idx, pal_len = strlen (pal);
data/radare2-4.3.1+dfsg/libr/cons/stiv.c:159:7:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
		n = read(0, buf+readsz, imgsz);
data/radare2-4.3.1+dfsg/libr/cons/utf8.c:26:7:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
		n = read(fd, buffer, 1);
data/radare2-4.3.1+dfsg/libr/core/agraph.c:214:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			ut32 len = strlen (n->title) + MARGIN_TEXT_X;
data/radare2-4.3.1+dfsg/libr/core/agraph.c:246:4:  [1] (buffer) strncat:
  Easily used incorrectly (e.g., incorrectly computing the correct maximum
  size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
  or automatically resizing strings.
			strncat (title, sdb_fmt (Color_YELLOW"[o%s]"Color_RESET,  shortcut), left);
data/radare2-4.3.1+dfsg/libr/core/agraph.c:248:4:  [1] (buffer) strncat:
  Easily used incorrectly (e.g., incorrectly computing the correct maximum
  size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
  or automatically resizing strings.
			strncat (title, sdb_fmt ("[o%s]", shortcut), left);
data/radare2-4.3.1+dfsg/libr/core/agraph.c:289:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				int l = strlen (n->title);
data/radare2-4.3.1+dfsg/libr/core/agraph.c:300:58:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			append_shortcut (g, title, n->title, sizeof (title) - strlen (title) - 1);
data/radare2-4.3.1+dfsg/libr/core/agraph.c:361:58:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			append_shortcut (g, title, n->title, sizeof (title) - strlen (title) - 1);
data/radare2-4.3.1+dfsg/libr/core/agraph.c:363:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if ((delta_x < strlen (title)) && G (n->x + MARGIN_TEXT_X + delta_x, n->y + 1)) {
data/radare2-4.3.1+dfsg/libr/core/agraph.c:406:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					if (delta_x < strlen (dots)) {
data/radare2-4.3.1+dfsg/libr/core/agraph.c:2650:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			size_t len = strlen (g->title);
data/radare2-4.3.1+dfsg/libr/core/agraph.c:3469:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int title_len = strlen (g->title);
data/radare2-4.3.1+dfsg/libr/core/agraph.c:3719:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = strlen (b);
data/radare2-4.3.1+dfsg/libr/core/anal_tp.c:66:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (!is_default && (strlen (v->name) > strlen (name))) {
data/radare2-4.3.1+dfsg/libr/core/anal_tp.c:66:41:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (!is_default && (strlen (v->name) > strlen (name))) {
data/radare2-4.3.1+dfsg/libr/core/anal_tp.c:167:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (regname, op_esil, size - 1);
data/radare2-4.3.1+dfsg/libr/core/anal_tp.c:272:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	fmt[strlen (fmt) - 1] = '\0';
data/radare2-4.3.1+dfsg/libr/core/anal_tp.c:397:12:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
							if (read > 0) {
data/radare2-4.3.1+dfsg/libr/core/anal_tp.c:398:19:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
								formatstr[read] = '\0';
data/radare2-4.3.1+dfsg/libr/core/anal_tp.c:742:6:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
					strncpy (prev_type, var->type, sizeof (prev_type) - 1);
data/radare2-4.3.1+dfsg/libr/core/canal.c:694:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	const size_t locsize = strlen (locname);
data/radare2-4.3.1+dfsg/libr/core/canal.c:1398:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					int flen = strlen (filestr);
data/radare2-4.3.1+dfsg/libr/core/canal.c:1700:74:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                                        (const ut8*)str, strlen (str),
data/radare2-4.3.1+dfsg/libr/core/canal.c:1701:75:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                                        (const ut8*)str2, strlen (str2));
data/radare2-4.3.1+dfsg/libr/core/canal.c:4178:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				i += strlen ((const char*)buf + i) + 1;
data/radare2-4.3.1+dfsg/libr/core/canal.c:4752:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	tmp_esil_str_len = strlen (esilstr) + strlen (spname) + maxaddrlen;
data/radare2-4.3.1+dfsg/libr/core/canal.c:4752:40:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	tmp_esil_str_len = strlen (esilstr) + strlen (spname) + maxaddrlen;
data/radare2-4.3.1+dfsg/libr/core/canal.c:4759:53:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (!*esilstr || (strncmp ( esilstr, tmp_esil_str, strlen (tmp_esil_str)))) {
data/radare2-4.3.1+dfsg/libr/core/canal.c:4764:91:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	snprintf (tmp_esil_str, tmp_esil_str_len - 1, "%20" PFMT64u "%s", esil_cpy.old, &esilstr[strlen (spname) + 4]);
data/radare2-4.3.1+dfsg/libr/core/casm.c:205:59:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					matches = !r_str_ncasecmp (opst, tokens[matchcount], strlen (tokens[matchcount]));
data/radare2-4.3.1+dfsg/libr/core/casm.c:238:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					code[strlen (code) - 2] = 0;
data/radare2-4.3.1+dfsg/libr/core/casm.c:523:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		asmlen = strlen (c->assembly);
data/radare2-4.3.1+dfsg/libr/core/cbin.c:39:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		const int keyl = strlen (key);
data/radare2-4.3.1+dfsg/libr/core/cbin.c:61:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	char *a = malloc (strlen (arg) + 1);
data/radare2-4.3.1+dfsg/libr/core/cbin.c:87:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	char *a = malloc (strlen (arg) + 1);
data/radare2-4.3.1+dfsg/libr/core/cbin.c:286:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				b64.size = strlen (b64.string);
data/radare2-4.3.1+dfsg/libr/core/cbin.c:376:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
						memmove (ptr + 1, ptr + 2, strlen (ptr + 2) + 1);
data/radare2-4.3.1+dfsg/libr/core/cbin.c:976:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				r_str_filter (line, strlen (line));
data/radare2-4.3.1+dfsg/libr/core/cbin.c:985:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					memmove (file, slash + 1, strlen (slash));
data/radare2-4.3.1+dfsg/libr/core/cbin.c:1385:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		size_t module_len = strlen (module);
data/radare2-4.3.1+dfsg/libr/core/cbin.c:1390:46:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		const char *import = reloc->import->name + strlen ("Ordinal_");
data/radare2-4.3.1+dfsg/libr/core/cbin.c:1977:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		r_name_filter (sn->methflag, strlen (sn->methflag));
data/radare2-4.3.1+dfsg/libr/core/cbin.c:2537:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	json_output [strlen (json_output) - 1] = 0;
data/radare2-4.3.1+dfsg/libr/core/cbin.c:2673:33:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		r_name_filter (section->name, strlen (section->name) + 1);
data/radare2-4.3.1+dfsg/libr/core/cbin.c:3114:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			mn = ms + strlen ("method.");
data/radare2-4.3.1+dfsg/libr/core/cbin.c:3209:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					if (strlen (cmd) > 2) {
data/radare2-4.3.1+dfsg/libr/core/cconfig.c:58:41:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	return a && b && a->name && b->name && strlen (a->name) > strlen (b->name);
data/radare2-4.3.1+dfsg/libr/core/cconfig.c:58:60:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	return a && b && a->name && b->name && strlen (a->name) > strlen (b->name);
data/radare2-4.3.1+dfsg/libr/core/cconfig.c:549:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (strlen (node->value) > 1 && node->value[1] == '?') {
data/radare2-4.3.1+dfsg/libr/core/cconfig.c:816:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (strlen (node->value) > 1 && node->value[1] == '?') {
data/radare2-4.3.1+dfsg/libr/core/cconfig.c:1012:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (strlen (node->value) > 1 && node->value[1] == '?') {
data/radare2-4.3.1+dfsg/libr/core/cconfig.c:2137:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (strlen (node->value) > 1 && node->value[1] == '?') {
data/radare2-4.3.1+dfsg/libr/core/cconfig.c:2419:26:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				r_name_filter (name, strlen (name));
data/radare2-4.3.1+dfsg/libr/core/cconfig.c:2420:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				r_str_filter (name, strlen (name));
data/radare2-4.3.1+dfsg/libr/core/cconfig.c:2483:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (strlen (node->value) > 1 && node->value[1] == '?') {
data/radare2-4.3.1+dfsg/libr/core/cfile.c:507:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (strlen (lib) >= 3 && lib[1] == ':' && lib[2] == '\\') {
data/radare2-4.3.1+dfsg/libr/core/cio.c:157:26:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			str = (char *)malloc (strlen (arg) / 2 + 1);
data/radare2-4.3.1+dfsg/libr/core/cmd.c:601:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int i = strlen (input);
data/radare2-4.3.1+dfsg/libr/core/cmd.c:635:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		size_t len = strlen (def);
data/radare2-4.3.1+dfsg/libr/core/cmd.c:880:53:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			r_core_yank_set (core, 0, (const ut8*)input + 2, strlen (input + 2));
data/radare2-4.3.1+dfsg/libr/core/cmd.c:1406:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy (line->buffer.data, line->sdbshell_hist_iter->data, R_LINE_BUFSIZE - 1);
data/radare2-4.3.1+dfsg/libr/core/cmd.c:1407:45:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	line->buffer.index = line->buffer.length = strlen (line->buffer.data);
data/radare2-4.3.1+dfsg/libr/core/cmd.c:1416:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy (line->buffer.data, line->sdbshell_hist_iter->data, R_LINE_BUFSIZE - 1);
data/radare2-4.3.1+dfsg/libr/core/cmd.c:1417:45:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	line->buffer.index = line->buffer.length = strlen (line->buffer.data);
data/radare2-4.3.1+dfsg/libr/core/cmd.c:1823:35:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		write (1, Color_RESET_TERMINAL, strlen (Color_RESET_TERMINAL));
data/radare2-4.3.1+dfsg/libr/core/cmd.c:2529:26:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		memmove (cmd, cmd + 9, strlen (cmd + 9) + 1);
data/radare2-4.3.1+dfsg/libr/core/cmd.c:2747:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			memmove ($0 + 1, $0 + 2, strlen ($0 + 2) + 1);
data/radare2-4.3.1+dfsg/libr/core/cmd.c:2921:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				memmove (ch, ptr, strlen (ptr) + 1);
data/radare2-4.3.1+dfsg/libr/core/cmd.c:3027:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				memmove (ch, ptr, strlen (ptr) + 1);
data/radare2-4.3.1+dfsg/libr/core/cmd.c:3140:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				memmove (ch, ptr, strlen (ptr) + 1);
data/radare2-4.3.1+dfsg/libr/core/cmd.c:3147:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			memmove (ptr, ptr + 1, strlen (ptr));
data/radare2-4.3.1+dfsg/libr/core/cmd.c:3400:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					buf = malloc (strlen (ptr + 2) + 1);
data/radare2-4.3.1+dfsg/libr/core/cmd.c:3461:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					len = strlen (ptr + 2);
data/radare2-4.3.1+dfsg/libr/core/cmd.c:3506:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			if (strlen (ptr + 1) == 13 && strlen (ptr2 + 1) == 6 &&
data/radare2-4.3.1+dfsg/libr/core/cmd.c:3506:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			if (strlen (ptr + 1) == 13 && strlen (ptr2 + 1) == 6 &&
data/radare2-4.3.1+dfsg/libr/core/cmd.c:3510:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			} else if (strlen (ptr + 1) == 9 && strlen (ptr2 + 1) == 4) {
data/radare2-4.3.1+dfsg/libr/core/cmd.c:3510:40:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			} else if (strlen (ptr + 1) == 9 && strlen (ptr2 + 1) == 4) {
data/radare2-4.3.1+dfsg/libr/core/cmd.c:4553:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	size_t s_len = strlen (s);
data/radare2-4.3.1+dfsg/libr/core/cmd.c:4568:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	char *dst = R_NEWS (char, strlen (s) + 1);
data/radare2-4.3.1+dfsg/libr/core/cmd.c:4746:68:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	return ts_parser_parse_string (state->parser, NULL, state->input, strlen (state->input));
data/radare2-4.3.1+dfsg/libr/core/cmd.c:4832:65:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	TSNode command = ts_node_child_by_field_name (node, "command", strlen ("command"));
data/radare2-4.3.1+dfsg/libr/core/cmd.c:4836:59:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	TSNode args = ts_node_child_by_field_name (node, "args", strlen ("args"));
data/radare2-4.3.1+dfsg/libr/core/cmd.c:4894:60:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	TSNode number = ts_node_child_by_field_name (node, "arg", strlen ("arg"));
data/radare2-4.3.1+dfsg/libr/core/cmd.c:4899:65:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	TSNode command = ts_node_child_by_field_name (node, "command", strlen ("command"));
data/radare2-4.3.1+dfsg/libr/core/cmd.c:4924:79:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	TSNode redirect_op = ts_node_child_by_field_name (node, "redirect_operator", strlen ("redirect_operator"));
data/radare2-4.3.1+dfsg/libr/core/cmd.c:4955:57:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	TSNode arg = ts_node_child_by_field_name (node, "arg", strlen ("arg"));
data/radare2-4.3.1+dfsg/libr/core/cmd.c:4961:66:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		TSNode command = ts_node_child_by_field_name (node, "command", strlen ("command"));
data/radare2-4.3.1+dfsg/libr/core/cmd.c:4986:67:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			TSNode command = ts_node_child_by_field_name (node, "command", strlen ("command"));
data/radare2-4.3.1+dfsg/libr/core/cmd.c:5017:36:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	} else if (!strcmp (node_string + strlen (node_string) - 2, "?*")) {
data/radare2-4.3.1+dfsg/libr/core/cmd.c:5018:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		size_t node_len = strlen (node_string);
data/radare2-4.3.1+dfsg/libr/core/cmd.c:5356:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	sz = strlen (arg_str);
data/radare2-4.3.1+dfsg/libr/core/cmd.c:5372:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	size_t len = strlen (arg_str);
data/radare2-4.3.1+dfsg/libr/core/cmd.c:5829:65:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	TSNode command = ts_node_child_by_field_name (node, "command", strlen ("command"));
data/radare2-4.3.1+dfsg/libr/core/cmd.c:5845:65:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	TSNode command = ts_node_child_by_field_name (node, "command", strlen ("command"));
data/radare2-4.3.1+dfsg/libr/core/cmd.c:5846:63:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	TSNode arg = ts_node_child_by_field_name (node, "specifier", strlen ("specifier"));
data/radare2-4.3.1+dfsg/libr/core/cmd.c:5861:65:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	TSNode command = ts_node_child_by_field_name (node, "command", strlen ("command"));
data/radare2-4.3.1+dfsg/libr/core/cmd.c:5878:65:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	TSNode command = ts_node_child_by_field_name (node, "command", strlen ("command"));
data/radare2-4.3.1+dfsg/libr/core/cmd.c:5905:65:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	TSNode command = ts_node_child_by_field_name (node, "command", strlen ("command"));
data/radare2-4.3.1+dfsg/libr/core/cmd.c:6012:69:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		TSSymbol symbol = ts_language_symbol_for_name (lang, entry->name, strlen (entry->name), true);
data/radare2-4.3.1+dfsg/libr/core/cmd.c:6020:62:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		*sym_ptr = ts_language_symbol_for_name (lang, entry->name, strlen (entry->name), true);
data/radare2-4.3.1+dfsg/libr/core/cmd.c:6033:62:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	TSTree *tree = ts_parser_parse_string (parser, NULL, input, strlen (input));
data/radare2-4.3.1+dfsg/libr/core/cmd.c:6114:39:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (strncmp (cstr, core->cmdfilter, strlen (core->cmdfilter))) {
data/radare2-4.3.1+dfsg/libr/core/cmd.c:6152:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	char *cmd = malloc (strlen (cstr) + 4096);
data/radare2-4.3.1+dfsg/libr/core/cmd.c:6545:42:  [1] (buffer) equal:
  Function does not check the second iterator for over-read conditions
  (CWE-126). This function is often discouraged by most C++ coding standards
  in favor of its safer alternatives provided since C++14. Consider using a
  form of this function that checks the second iterator before potentially
  overflowing it.
	DEFINE_CMD_DESCRIPTOR_SPECIAL (core, =, equal);
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:1141:42:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		const char *pad = r_str_pad (' ', 10 - strlen (p->name));
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:1150:42:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		const char *pad = r_str_pad (' ', 10 - strlen (p->name));
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:1553:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				r_str_filter (str, strlen (str));
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:1724:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				char *pseudo = calloc (128 + strlen (strsub), 3);
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:1876:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				char *pseudo = calloc (128 + strlen (disasm), 3);
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:2551:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (strlen (name) < 4) {
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:3334:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					for (i = 0; i < strlen (fcnname_aux); i++) {
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:4297:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				int len = bits ? strlen (bits) : 0;
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:4914:6:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	p = strncpy (nomalloc, input, 255);
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:6199:46:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
						const char *pad = r_str_pad (' ', 16 - strlen (ptr));
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:7741:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int len = strlen (n->body);
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:7821:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int n_args, B_LEN = strlen ("base64:");
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:9698:30:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
						(*fcn_type && fcn_type[strlen (fcn_type) - 1] == '*') ? "" : " ",
data/radare2-4.3.1+dfsg/libr/core/cmd_anal.c:9823:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			ut8 *buf = malloc (strlen (input) + 1);
data/radare2-4.3.1+dfsg/libr/core/cmd_api.c:161:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					strlen (cmd->aliases.keys[i]));
data/radare2-4.3.1+dfsg/libr/core/cmd_api.c:183:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy (item->cmd, lcmd, sizeof (item->cmd)-1);
data/radare2-4.3.1+dfsg/libr/core/cmd_api.c:184:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy (item->cmd_short, scmd, sizeof (item->cmd_short)-1);
data/radare2-4.3.1+dfsg/libr/core/cmd_api.c:185:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	item->cmd_len = strlen (lcmd);
data/radare2-4.3.1+dfsg/libr/core/cmd_api.c:186:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy (item->desc, desc, sizeof (item->desc)-1);
data/radare2-4.3.1+dfsg/libr/core/cmd_api.c:201:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy (item->cmd, cmd, sizeof (item->cmd)-1);
data/radare2-4.3.1+dfsg/libr/core/cmd_api.c:202:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy (item->desc, desc, sizeof (item->desc)-1);
data/radare2-4.3.1+dfsg/libr/core/cmd_api.c:261:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int ret, inplen = strlen (input)+1;
data/radare2-4.3.1+dfsg/libr/core/cmd_api.c:265:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			int lcmd = strlen (c->cmd_short);
data/radare2-4.3.1+dfsg/libr/core/cmd_api.c:266:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			int linp = strlen (input+c->cmd_len);
data/radare2-4.3.1+dfsg/libr/core/cmd_api.c:348:31:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (*name && name[1] && name[strlen (name)-1]==')') {
data/radare2-4.3.1+dfsg/libr/core/cmd_api.c:383:31:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	macro->codelen = (pbody[0])? strlen (pbody)+2 : 4096;
data/radare2-4.3.1+dfsg/libr/core/cmd_api.c:407:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (macro->code, pbody, macro->codelen);
data/radare2-4.3.1+dfsg/libr/core/cmd_api.c:429:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			lidx = strlen (buf)-2;
data/radare2-4.3.1+dfsg/libr/core/cmd_api.c:430:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			lbufp = strlen (bufp);
data/radare2-4.3.1+dfsg/libr/core/cmd_api.c:536:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					wordlen = strlen (word);
data/radare2-4.3.1+dfsg/libr/core/cmd_api.c:581:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (ptr[strlen (ptr)-1]==':' && !strchr (ptr, ' ')) {
data/radare2-4.3.1+dfsg/libr/core/cmd_api.c:638:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
				strncpy (labels[*labels_n].name, ptr, 64);
data/radare2-4.3.1+dfsg/libr/core/cmd_api.c:639:33:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				labels[*labels_n].ptr = ptr+strlen (ptr)+1;
data/radare2-4.3.1+dfsg/libr/core/cmd_api.c:643:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		return ptr + strlen (ptr)+1;
data/radare2-4.3.1+dfsg/libr/core/cmd_cmp.c:376:43:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		char *s = r_diff_buffers_unified (d, a, strlen(a), b, strlen(b));
data/radare2-4.3.1+dfsg/libr/core/cmd_cmp.c:376:57:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		char *s = r_diff_buffers_unified (d, a, strlen(a), b, strlen(b));
data/radare2-4.3.1+dfsg/libr/core/cmd_cmp.c:405:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				int pos = strlen (r_strbuf_get (&op.buf_asm));
data/radare2-4.3.1+dfsg/libr/core/cmd_cmp.c:486:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (strlen (input) < 3) {
data/radare2-4.3.1+dfsg/libr/core/cmd_cmp.c:517:39:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		const char *extra = r_str_pad (' ', strlen (n) - 10);
data/radare2-4.3.1+dfsg/libr/core/cmd_cmp.c:593:4:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			strlen (input + 2) + 1, '*');
data/radare2-4.3.1+dfsg/libr/core/cmd_cmp.c:633:35:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (!(filled = (char *) malloc (strlen (input) + 1))) {
data/radare2-4.3.1+dfsg/libr/core/cmd_cmp.c:636:26:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		memcpy (filled, input, strlen (input) + 1);
data/radare2-4.3.1+dfsg/libr/core/cmd_cmp.c:637:31:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (!(buf = (ut8 *) malloc (strlen (input) + 1))) {
data/radare2-4.3.1+dfsg/libr/core/cmd_cmp.c:641:31:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		ret = r_hex_bin2str (block, strlen (input) / 2, (char *) buf);
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:572:36:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	r_file_dump (file, (const ut8*)s, strlen (s), 0);
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:4582:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (strlen (input) > 2) {
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:5245:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
								int al = strlen ((const char*)a);
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:5246:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
								int bl = strlen ((const char*)b);
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:5428:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			if (strlen (input + 2) < 4096){
data/radare2-4.3.1+dfsg/libr/core/cmd_debug.c:5471:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				if (strlen (input + 2) < 4096){
data/radare2-4.3.1+dfsg/libr/core/cmd_eval.c:125:35:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (!r_str_cmp (_arg, "default", strlen (_arg))) {
data/radare2-4.3.1+dfsg/libr/core/cmd_eval.c:353:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		} else if (strlen (input)>3) {
data/radare2-4.3.1+dfsg/libr/core/cmd_flag.c:136:44:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                if (!strncmp (f->name, kw, strlen (kw))) {
data/radare2-4.3.1+dfsg/libr/core/cmd_flag.c:153:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	const size_t prefix_len = strlen (prefix);
data/radare2-4.3.1+dfsg/libr/core/cmd_flag.c:158:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (prefix_len > strlen (f->name)) {
data/radare2-4.3.1+dfsg/libr/core/cmd_flag.c:165:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int name_len = strlen (name);
data/radare2-4.3.1+dfsg/libr/core/cmd_flag.c:167:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			if (prefix_len > strlen (f2->name)) {
data/radare2-4.3.1+dfsg/libr/core/cmd_flag.c:185:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		const int kw_len = strlen (kw);
data/radare2-4.3.1+dfsg/libr/core/cmd_flag.c:241:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	const int prefix_len = strlen (prefix);
data/radare2-4.3.1+dfsg/libr/core/cmd_flag.c:329:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				a_len = strlen (a) + 4;
data/radare2-4.3.1+dfsg/libr/core/cmd_flag.c:335:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				title_size = strlen (title);
data/radare2-4.3.1+dfsg/libr/core/cmd_flag.c:336:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				padsize -= strlen (title) / 2;
data/radare2-4.3.1+dfsg/libr/core/cmd_flag.c:342:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				padsize = (w / 2) - title_size - strlen (b) - 4;
data/radare2-4.3.1+dfsg/libr/core/cmd_help.c:303:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				end = dollar + strlen (dollar);
data/radare2-4.3.1+dfsg/libr/core/cmd_help.c:466:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (out, input+(input[1]==' '? 2: 1), sizeof (out)-1);
data/radare2-4.3.1+dfsg/libr/core/cmd_help.c:491:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			const int buflen = (strlen (input+3) * 4) + 1;
data/radare2-4.3.1+dfsg/libr/core/cmd_help.c:818:43:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				const char *pad = r_str_pad (' ', 6 - strlen (vars[i]));
data/radare2-4.3.1+dfsg/libr/core/cmd_help.c:887:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			core->num->value = strlen (input);
data/radare2-4.3.1+dfsg/libr/core/cmd_help.c:890:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			core->num->value = strlen (input);
data/radare2-4.3.1+dfsg/libr/core/cmd_help.c:902:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			ut8 *out = malloc (strlen (input) + 1);
data/radare2-4.3.1+dfsg/libr/core/cmd_help.c:1147:58:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				r_core_yank_set_str (core, R_CORE_FOREIGN_ADDR, foo, strlen (foo) + 1);
data/radare2-4.3.1+dfsg/libr/core/cmd_info.c:86:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int al = strlen (a);
data/radare2-4.3.1+dfsg/libr/core/cmd_info.c:385:82:  [1] (buffer) equal:
  Function does not check the second iterator for over-read conditions
  (CWE-126). This function is often discouraged by most C++ coding standards
  in favor of its safer alternatives provided since C++14. Consider using a
  form of this function that checks the second iterator before potentially
  overflowing it.
static bool is_equal_file_hashes(RList *lfile_hashes, RList *rfile_hashes, bool *equal) {
data/radare2-4.3.1+dfsg/libr/core/cmd_info.c:388:24:  [1] (buffer) equal:
  Function does not check the second iterator for over-read conditions
  (CWE-126). This function is often discouraged by most C++ coding standards
  in favor of its safer alternatives provided since C++14. Consider using a
  form of this function that checks the second iterator before potentially
  overflowing it.
	r_return_val_if_fail (equal, false);
data/radare2-4.3.1+dfsg/libr/core/cmd_info.c:469:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (strlen (input + 1 + suffix_shift) > 1) {
data/radare2-4.3.1+dfsg/libr/core/cmd_info.c:616:58:  [1] (buffer) equal:
  Function does not check the second iterator for over-read conditions
  (CWE-126). This function is often discouraged by most C++ coding standards
  in favor of its safer alternatives provided since C++14. Consider using a
  form of this function that checks the second iterator before potentially
  overflowing it.
					if (!is_equal_file_hashes (new_hashes, old_hashes, &equal)) {
data/radare2-4.3.1+dfsg/libr/core/cmd_info.c:636:11:  [1] (buffer) equal:
  Function does not check the second iterator for over-read conditions
  (CWE-126). This function is often discouraged by most C++ coding standards
  in favor of its safer alternatives provided since C++14. Consider using a
  form of this function that checks the second iterator before potentially
  overflowing it.
					if (!equal) {
data/radare2-4.3.1+dfsg/libr/core/cmd_info.c:648:11:  [1] (buffer) equal:
  Function does not check the second iterator for over-read conditions
  (CWE-126). This function is often discouraged by most C++ coding standards
  in favor of its safer alternatives provided since C++14. Consider using a
  form of this function that checks the second iterator before potentially
  overflowing it.
					if (!equal) {
data/radare2-4.3.1+dfsg/libr/core/cmd_log.c:152:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int len = strlen (s);
data/radare2-4.3.1+dfsg/libr/core/cmd_macro.c:73:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		buf[strlen (buf) - 1]=0;
data/radare2-4.3.1+dfsg/libr/core/cmd_macro.c:82:41:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				memmove (comma + 1, buf + mustcall, strlen (buf + mustcall) + 1);
data/radare2-4.3.1+dfsg/libr/core/cmd_meta.c:452:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			text = malloc (strlen (comment)+ strlen (newcomment)+2);
data/radare2-4.3.1+dfsg/libr/core/cmd_meta.c:452:37:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			text = malloc (strlen (comment)+ strlen (newcomment)+2);
data/radare2-4.3.1+dfsg/libr/core/cmd_meta.c:455:5:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
				strcat (text, " ");
data/radare2-4.3.1+dfsg/libr/core/cmd_meta.c:584:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			text = malloc (strlen (comment)+ strlen (newcomment)+2);
data/radare2-4.3.1+dfsg/libr/core/cmd_meta.c:584:37:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			text = malloc (strlen (comment)+ strlen (newcomment)+2);
data/radare2-4.3.1+dfsg/libr/core/cmd_meta.c:587:5:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
				strcat (text, " ");
data/radare2-4.3.1+dfsg/libr/core/cmd_meta.c:771:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (strlen (input) > len) {
data/radare2-4.3.1+dfsg/libr/core/cmd_meta.c:791:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (name, t, sizeof (name) - 1);
data/radare2-4.3.1+dfsg/libr/core/cmd_meta.c:833:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
						name_len = strlen (name);
data/radare2-4.3.1+dfsg/libr/core/cmd_meta.c:872:7:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
						strncpy (name, p, sizeof (name)-1);
data/radare2-4.3.1+dfsg/libr/core/cmd_meta.c:877:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
								strncpy (name, fi->name, sizeof (name)-1);
data/radare2-4.3.1+dfsg/libr/core/cmd_meta.c:966:44:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					sdb_encode ((const ut8 *) oldcomment, strlen(oldcomment)), fcn->addr);
data/radare2-4.3.1+dfsg/libr/core/cmd_mount.c:84:35:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (!strncmp (path, root->path, strlen (path))) {
data/radare2-4.3.1+dfsg/libr/core/cmd_mount.c:314:36:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				memmove (localFile, slash + 1, strlen (slash));
data/radare2-4.3.1+dfsg/libr/core/cmd_mount.c:406:52:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				r_fs_write (core->fs, f, 0, (const ut8 *)data, strlen (data));
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:668:49:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					const int idx = ((float)block[j] / 255) * (strlen (chars) - 1);
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:776:49:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					const int idx = ((float)block[j] / 255) * (strlen (chars) - 1);
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:1618:44:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define append(x, y) { strcat (x, y); x += strlen (y); }
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:1672:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int addrpadlen = strlen (sdb_fmt ("%08"PFMT64x, addr)) - 8;
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:1685:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	j = strlen (bytes);
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:1857:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			ebytes += strlen (ebytes);
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:1903:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					int notej_len = strlen (note[j]);
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:2206:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (strlen (offstr) > 12) {
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:2207:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			cols -= ((strlen (offstr) - 12) * 2);
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:2623:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			int len = qoe? qoe - ox: strlen (ox + 3);
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:2827:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		line += strlen (line) + 1;
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:2877:2:  [1] (buffer) sscanf:
  It's unclear if the %s limit in the format string is small enough
  (CWE-120). Check that the limit is sufficiently small, or use a different
  input function.
	sscanf (input, "%31s", algo);
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:3022:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
							  memmove (p, p + 4, strlen (p + 4) + 1);
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:4262:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			char *m = malloc ((strlen (mnem) * 2) + 32);
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:4420:45:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					const char *pad = r_str_pad (' ', 20 - strlen (asmop.buf_hex));
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:4830:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (section_name && strlen (section_name) < 1) {
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:5161:33:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					char *hex_arg = calloc (1, strlen (arg) + 1);
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:5241:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				buf_len = strlen (buf);
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:6356:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				printraw (core, strlen ((const char *) core->block), 0);
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:7223:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	return strlen (buf);
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:7246:33:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				white = r_str_pad (' ', 9 - strlen (space));
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:7280:35:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					white = r_str_pad (' ', 10 - strlen (space));
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:7299:33:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				white = r_str_pad (' ', 9 - strlen (space));
data/radare2-4.3.1+dfsg/libr/core/cmd_print.c:7317:35:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					white = r_str_pad (' ', 10 - strlen (space));
data/radare2-4.3.1+dfsg/libr/core/cmd_project.c:175:42:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					r_file_dump (str, (const ut8*)data, strlen (data), false);
data/radare2-4.3.1+dfsg/libr/core/cmd_project.c:201:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
							r_file_dump (str, data, strlen ((const char *) data), 0);
data/radare2-4.3.1+dfsg/libr/core/cmd_search.c:361:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			ut8 *kw = malloc (strlen (prelude) + 1);
data/radare2-4.3.1+dfsg/libr/core/cmd_search.c:678:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int len = strlen ("io.maps.");
data/radare2-4.3.1+dfsg/libr/core/cmd_search.c:694:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int len = strlen ("io.sky.");
data/radare2-4.3.1+dfsg/libr/core/cmd_search.c:730:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int len = strlen ("bin.segments.");
data/radare2-4.3.1+dfsg/libr/core/cmd_search.c:785:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int len = strlen ("bin.sections.");
data/radare2-4.3.1+dfsg/libr/core/cmd_search.c:1036:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			end = start + strlen (grep);
data/radare2-4.3.1+dfsg/libr/core/cmd_search.c:1039:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (grep_str, start, end - start);
data/radare2-4.3.1+dfsg/libr/core/cmd_search.c:1076:41:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (!r_str_ncasecmp (opst, "invalid", strlen ("invalid")) ||
data/radare2-4.3.1+dfsg/libr/core/cmd_search.c:1077:39:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		    !r_str_ncasecmp (opst, ".byte", strlen (".byte"))) {
data/radare2-4.3.1+dfsg/libr/core/cmd_search.c:1104:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				end = end? end: start + strlen (start); // latest field?
data/radare2-4.3.1+dfsg/libr/core/cmd_search.c:1108:6:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
					strncpy (grep_str, start, end - start);
data/radare2-4.3.1+dfsg/libr/core/cmd_search.c:2554:7:  [1] (buffer) equal:
  Function does not check the second iterator for over-read conditions
  (CWE-126). This function is often discouraged by most C++ coding standards
  in favor of its safer alternatives provided since C++14. Consider using a
  form of this function that checks the second iterator before potentially
  overflowing it.
		if (equal >= count) {
data/radare2-4.3.1+dfsg/libr/core/cmd_search.c:2555:14:  [1] (buffer) equal:
  Function does not check the second iterator for over-read conditions
  (CWE-126). This function is often discouraged by most C++ coding standards
  in favor of its safer alternatives provided since C++14. Consider using a
  form of this function that checks the second iterator before potentially
  overflowing it.
			int pc = (equal * 100) / core->blocksize;
data/radare2-4.3.1+dfsg/libr/core/cmd_search.c:2556:59:  [1] (buffer) equal:
  Function does not check the second iterator for over-read conditions
  (CWE-126). This function is often discouraged by most C++ coding standards
  in favor of its safer alternatives provided since C++14. Consider using a
  form of this function that checks the second iterator before potentially
  overflowing it.
			r_cons_printf ("0x%08"PFMT64x " %4d/%d %3d%%  ", addr, equal, core->blocksize, pc);
data/radare2-4.3.1+dfsg/libr/core/cmd_search.c:3568:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = strlen (input + strstart);
data/radare2-4.3.1+dfsg/libr/core/cmd_search.c:3822:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			char *buf = malloc (strlen (input) * 2);
data/radare2-4.3.1+dfsg/libr/core/cmd_search_rop.c:201:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		*esil_main = r_str_ndup (esil_str, strlen (esil_str) - strlen (*esil_flg) - 1);
data/radare2-4.3.1+dfsg/libr/core/cmd_search_rop.c:201:58:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		*esil_main = r_str_ndup (esil_str, strlen (esil_str) - strlen (*esil_flg) - 1);
data/radare2-4.3.1+dfsg/libr/core/cmd_type.c:633:30:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	return !strncmp (v, "func", strlen ("func") + 1);
data/radare2-4.3.1+dfsg/libr/core/cmd_type.c:637:31:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	return !strncmp (v, "union", strlen ("union") + 1);
data/radare2-4.3.1+dfsg/libr/core/cmd_type.c:642:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (!strncmp (k, "link.", strlen ("link."))) {
data/radare2-4.3.1+dfsg/libr/core/cmd_type.c:649:31:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	return !strncmp (k, "link.", strlen ("link."));
data/radare2-4.3.1+dfsg/libr/core/cmd_type.c:653:36:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	r_cons_printf ("0x%s = %s\n", k + strlen ("link."), v);
data/radare2-4.3.1+dfsg/libr/core/cmd_type.c:658:42:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	r_cons_printf ("{\"0x%s\":\"%s\"}", k + strlen ("link."), v);
data/radare2-4.3.1+dfsg/libr/core/cmd_type.c:663:42:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	r_cons_printf ("tl %s = 0x%s\n", v, k + strlen ("link."));
data/radare2-4.3.1+dfsg/libr/core/cmd_type.c:675:48:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	r_core_cmdf (core, "pf %s @ 0x%s\n", fmt, k + strlen ("link."));
data/radare2-4.3.1+dfsg/libr/core/cmd_type.c:687:49:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	r_core_cmdf (core, "pfj %s @ 0x%s\n", fmt, k + strlen ("link."));
data/radare2-4.3.1+dfsg/libr/core/cmd_type.c:693:30:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	return !strncmp (v, "type", strlen ("type") + 1);
data/radare2-4.3.1+dfsg/libr/core/cmd_write.c:193:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	ut8 *buf = malloc (strlen (pairs) + 1);
data/radare2-4.3.1+dfsg/libr/core/cmd_write.c:229:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		keylen = strlen (key + 2);
data/radare2-4.3.1+dfsg/libr/core/cmd_write.c:248:26:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				ut8 *biniv = malloc (strlen (iv) + 1);
data/radare2-4.3.1+dfsg/libr/core/cmd_write.c:251:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					ivlen = strlen(iv);
data/radare2-4.3.1+dfsg/libr/core/cmd_write.c:435:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			if (strlen (input) > 4 && strncmp (input + 4, "0x", 2)) {
data/radare2-4.3.1+dfsg/libr/core/cmd_write.c:547:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				(ut8*)out, strlen (out))) {
data/radare2-4.3.1+dfsg/libr/core/cmd_write.c:739:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	len = strlen (input);
data/radare2-4.3.1+dfsg/libr/core/cmd_write.c:807:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		str_len = strlen (str) + 1;
data/radare2-4.3.1+dfsg/libr/core/cmd_write.c:912:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				len = *input ? strlen (input) : 0;
data/radare2-4.3.1+dfsg/libr/core/cmd_write.c:934:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			len = strlen (input);
data/radare2-4.3.1+dfsg/libr/core/cmd_write.c:963:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				len = *input ? strlen (input) : 0;
data/radare2-4.3.1+dfsg/libr/core/cmd_write.c:1543:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
							a += strlen (".offset ");
data/radare2-4.3.1+dfsg/libr/core/cmd_write.c:1611:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int len = strlen (input);
data/radare2-4.3.1+dfsg/libr/core/cmd_zign.c:285:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int len = strlen (args0);
data/radare2-4.3.1+dfsg/libr/core/cmd_zign.c:307:30:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (!blen || (blen & 1) || strlen ((char*) ++sep) != blen) {
data/radare2-4.3.1+dfsg/libr/core/cmd_zign.c:323:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		blen = strlen (hexbytes) + 4;
data/radare2-4.3.1+dfsg/libr/core/cmd_zign.c:774:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				for (j = 0; j < strlen (arg); j++) {
data/radare2-4.3.1+dfsg/libr/core/cmd_zign.c:780:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					strlen (arg) - 2));
data/radare2-4.3.1+dfsg/libr/core/core.c:140:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int len = strlen (str);
data/radare2-4.3.1+dfsg/libr/core/core.c:538:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (strlen (str) > 5) {
data/radare2-4.3.1+dfsg/libr/core/core.c:671:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				int flagLength = strlen (flagName);
data/radare2-4.3.1+dfsg/libr/core/core.c:1113:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      			if (strlen (pwd) == 1) { // if pwd is root
data/radare2-4.3.1+dfsg/libr/core/core.c:1121:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    		if (strlen (pwd) == 1) {
data/radare2-4.3.1+dfsg/libr/core/core.c:1133:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	n = strlen (basename);
data/radare2-4.3.1+dfsg/libr/core/core.c:1215:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	n = strlen (basename);
data/radare2-4.3.1+dfsg/libr/core/core.c:1288:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int len = strlen (ptr);
data/radare2-4.3.1+dfsg/libr/core/core.c:1314:51:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define ADDARG(x) if (!strncmp (buf->data+chr, x, strlen (buf->data+chr))) { r_line_completion_push (completion, x); }
data/radare2-4.3.1+dfsg/libr/core/core.c:1327:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			int length = strlen (radare_argv[i]);
data/radare2-4.3.1+dfsg/libr/core/core.c:1343:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int n = strlen (str);
data/radare2-4.3.1+dfsg/libr/core/core.c:1359:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int n = strlen (str);
data/radare2-4.3.1+dfsg/libr/core/core.c:1376:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int length = strlen (str);
data/radare2-4.3.1+dfsg/libr/core/core.c:1394:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int n = strlen (str);
data/radare2-4.3.1+dfsg/libr/core/core.c:1412:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int n = strlen (str);
data/radare2-4.3.1+dfsg/libr/core/core.c:1435:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			int n = strlen (tmp);
data/radare2-4.3.1+dfsg/libr/core/core.c:1456:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			int n = strlen (tmp);
data/radare2-4.3.1+dfsg/libr/core/core.c:1482:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int n = strlen (lpath);
data/radare2-4.3.1+dfsg/libr/core/core.c:1491:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int length = strlen (msg);
data/radare2-4.3.1+dfsg/libr/core/core.c:1502:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (strlen (msg) == 0) {
data/radare2-4.3.1+dfsg/libr/core/core.c:1509:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int length = strlen (msg);
data/radare2-4.3.1+dfsg/libr/core/core.c:1519:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (strlen (msg) == 0) {
data/radare2-4.3.1+dfsg/libr/core/core.c:1528:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int n = strlen (str);
data/radare2-4.3.1+dfsg/libr/core/core.c:1543:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int n = strlen(str);
data/radare2-4.3.1+dfsg/libr/core/core.c:1584:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int len = strlen (str);
data/radare2-4.3.1+dfsg/libr/core/core.c:1633:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int n = strlen (p);
data/radare2-4.3.1+dfsg/libr/core/core.c:1738:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int length = strlen (arg);
data/radare2-4.3.1+dfsg/libr/core/core.c:1762:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		n = strlen (ptr);//(buf->data+sdelta);
data/radare2-4.3.1+dfsg/libr/core/core.c:1862:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			int len = strlen (buf->data + chr);
data/radare2-4.3.1+dfsg/libr/core/core.c:1863:30:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			int minlen = R_MIN (len,  strlen (sdbkv_key (kv)));
data/radare2-4.3.1+dfsg/libr/core/core.c:1887:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int len = strlen (buf->data);
data/radare2-4.3.1+dfsg/libr/core/core.c:1909:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			int len = strlen (buf->data + chr);
data/radare2-4.3.1+dfsg/libr/core/core.c:1924:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			int len = strlen (buf->data + chr);
data/radare2-4.3.1+dfsg/libr/core/core.c:1936:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			int len = strlen (buf->data);
data/radare2-4.3.1+dfsg/libr/core/core.c:1953:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			int len = strlen (buf->data + chr);
data/radare2-4.3.1+dfsg/libr/core/core.c:1956:47:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				if (!strncmp (sdbkv_value (kv), "struct", strlen ("struct") + 1)) {
data/radare2-4.3.1+dfsg/libr/core/core.c:2000:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy (buf, ptr, len - 1);
data/radare2-4.3.1+dfsg/libr/core/core.c:2002:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	return strlen (buf);
data/radare2-4.3.1+dfsg/libr/core/core.c:2911:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (strlen (s) > maxlen - sizeof (DOTS)) {
data/radare2-4.3.1+dfsg/libr/core/core.c:2924:2:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
	strcat (s, ":");
data/radare2-4.3.1+dfsg/libr/core/core.c:2934:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	file_len = strlen (filename);
data/radare2-4.3.1+dfsg/libr/core/core.c:2935:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	tmp_len = strlen (tmp);
data/radare2-4.3.1+dfsg/libr/core/core.c:2942:4:  [1] (buffer) strncat:
  Easily used incorrectly (e.g., incorrectly computing the correct maximum
  size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
  or automatically resizing strings.
			strncat (tmp, DOTS, dots_size);
data/radare2-4.3.1+dfsg/libr/core/core.c:3304:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					cmd_len = strlen (cmd_output) + 1;
data/radare2-4.3.1+dfsg/libr/core/core.c:3314:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					int cmd_len = strlen (cmd) + 1;
data/radare2-4.3.1+dfsg/libr/core/core.c:3416:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
							r_socket_write (c, res, strlen (res));
data/radare2-4.3.1+dfsg/libr/core/core.c:3501:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			write (fd, str, strlen (str));
data/radare2-4.3.1+dfsg/libr/core/core.c:3635:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	autocmpl->length = strlen (cmd);
data/radare2-4.3.1+dfsg/libr/core/core.c:3657:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int len = strlen (cmd);
data/radare2-4.3.1+dfsg/libr/core/disasm.c:378:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int len = strlen (line);
data/radare2-4.3.1+dfsg/libr/core/disasm.c:393:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			len = strlen (line);
data/radare2-4.3.1+dfsg/libr/core/disasm.c:1908:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				idx = 12 - strlen (var->name);
data/radare2-4.3.1+dfsg/libr/core/disasm.c:2119:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	linelen = strlen (ds->comment) + 5;
data/radare2-4.3.1+dfsg/libr/core/disasm.c:2304:41:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					r_str_ncpy (addr, flag->name + 5 + strlen ("default."), sizeof (addr));
data/radare2-4.3.1+dfsg/libr/core/disasm.c:2614:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int sect_len = strlen (sect);
data/radare2-4.3.1+dfsg/libr/core/disasm.c:2622:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		pre = strlen (color) + 1;
data/radare2-4.3.1+dfsg/libr/core/disasm.c:2629:2:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
	strcat (out, " ");
data/radare2-4.3.1+dfsg/libr/core/disasm.c:3150:2:  [1] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant character.
	strcpy (extra, " ");
data/radare2-4.3.1+dfsg/libr/core/disasm.c:3157:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			k = ds->nb - strlen (flagstr) - 1;
data/radare2-4.3.1+dfsg/libr/core/disasm.c:3244:41:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		const char *pad = r_str_pad (' ', 8 - strlen (optype));
data/radare2-4.3.1+dfsg/libr/core/disasm.c:3432:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int slen = shortcut? strlen (shortcut): 0;
data/radare2-4.3.1+dfsg/libr/core/disasm.c:3651:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int len = ds->opstr? strlen (ds->opstr): 0;
data/radare2-4.3.1+dfsg/libr/core/disasm.c:3763:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		str_len = strlen (str);
data/radare2-4.3.1+dfsg/libr/core/disasm.c:4061:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			if (strlen (msg) != 1) {
data/radare2-4.3.1+dfsg/libr/core/disasm.c:4149:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			int l = strlen (p);
data/radare2-4.3.1+dfsg/libr/core/disasm.c:4718:31:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
							(*fcn_type && fcn_type[strlen (fcn_type) - 1] == '*') ? "" : " ",
data/radare2-4.3.1+dfsg/libr/core/disasm.c:4841:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		fcn_type[strlen (fcn_type) - 1] == '*' ? "" : " ",
data/radare2-4.3.1+dfsg/libr/core/disasm.c:4852:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
						type[strlen (type) - 1] == '*' ? "": " ",
data/radare2-4.3.1+dfsg/libr/core/disasm.c:6028:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			char *buf = malloc (strlen (aop) + 128);
data/radare2-4.3.1+dfsg/libr/core/disasm.c:6247:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
						int len = strlen (src);
data/radare2-4.3.1+dfsg/libr/core/gdiff.c:104:39:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                if (f->name && (len = strlen (f->name)) > maxnamelen) {
data/radare2-4.3.1+dfsg/libr/core/gdiff.c:113:39:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                if (f->name && (len = strlen (f->name)) > maxnamelen) {
data/radare2-4.3.1+dfsg/libr/core/linux_heap_jemalloc.c:57:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        int ret = strncmp (ptr, str, strlen (str) - 1);
data/radare2-4.3.1+dfsg/libr/core/p/core_java.c:302:37:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	ut32 len = match_me && *match_me ? strlen (match_me) : 0;
data/radare2-4.3.1+dfsg/libr/core/p/core_java.c:317:37:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	ut32 len = match_me && *match_me ? strlen (match_me) : 0;
data/radare2-4.3.1+dfsg/libr/core/p/core_java.c:342:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = strlen (str1);
data/radare2-4.3.1+dfsg/libr/core/p/core_java.c:359:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = strlen (str1);
data/radare2-4.3.1+dfsg/libr/core/p/core_java.c:484:58:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	IFDBG r_cons_printf ("Looking for str: %s (%d)\n", cmd, strlen (cmd));
data/radare2-4.3.1+dfsg/libr/core/p/core_java.c:485:67:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	return r_bin_java_find_cp_const_by_val ( obj, (const ut8 *) cmd, strlen (cmd), R_BIN_JAVA_CP_UTF8);
data/radare2-4.3.1+dfsg/libr/core/p/core_java.c:636:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	ut32 len = cmd && *cmd ? strlen (cmd) : 0;
data/radare2-4.3.1+dfsg/libr/core/p/core_java.c:639:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = cmd && *cmd ? strlen (cmd) : 0;
data/radare2-4.3.1+dfsg/libr/core/p/core_java.c:658:35:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			p = r_cmd_java_strtok (p, ' ', strlen(p));
data/radare2-4.3.1+dfsg/libr/core/p/core_java.c:774:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	ut32 cmd_sz = input && *input ? strlen (input) : 0;
data/radare2-4.3.1+dfsg/libr/core/p/core_java.c:1910:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		d_sz = strlen (p) + 1;
data/radare2-4.3.1+dfsg/libr/core/panels.c:843:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int len = strlen (type);
data/radare2-4.3.1+dfsg/libr/core/panels.c:1061:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int idx = R_MIN (-sx, strlen (white) - 1);
data/radare2-4.3.1+dfsg/libr/core/panels.c:1125:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int idx = R_MIN (-sx, strlen (white) - 1);
data/radare2-4.3.1+dfsg/libr/core/panels.c:1197:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int idx = R_MIN (-sx, strlen (white) - 1);
data/radare2-4.3.1+dfsg/libr/core/panels.c:1240:45:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	char *out = r_str_ndup (panel->model->cmd, strlen (panel->model->cmd) + 1024);
data/radare2-4.3.1+dfsg/libr/core/panels.c:1247:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (strlen (filter) > 1024) {
data/radare2-4.3.1+dfsg/libr/core/panels.c:1251:3:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
		strcat (out, "~");
data/radare2-4.3.1+dfsg/libr/core/panels.c:1732:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	i = strlen (buf);
data/radare2-4.3.1+dfsg/libr/core/panels.c:1755:4:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
			strcat (buf, "\"");
data/radare2-4.3.1+dfsg/libr/core/panels.c:1758:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			int j, len = strlen (buf);
data/radare2-4.3.1+dfsg/libr/core/panels.c:2091:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				__check_if_addr (word, strlen (word))) {
data/radare2-4.3.1+dfsg/libr/core/panels.c:5389:79:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	panels->mht = ht_pp_new (NULL, (HtPPKvFreeFunc)__mht_free_kv, (HtPPCalcSizeV)strlen);
data/radare2-4.3.1+dfsg/libr/core/panels.c:5410:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (line->buffer.data, desc->name, R_LINE_BUFSIZE - 1);
data/radare2-4.3.1+dfsg/libr/core/panels.c:5411:46:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		line->buffer.index = line->buffer.length = strlen (line->buffer.data);
data/radare2-4.3.1+dfsg/libr/core/panels.c:5432:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (line->buffer.data, desc->name, R_LINE_BUFSIZE - 1);
data/radare2-4.3.1+dfsg/libr/core/panels.c:5433:46:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		line->buffer.index = line->buffer.length = strlen (line->buffer.data);
data/radare2-4.3.1+dfsg/libr/core/panels.c:5744:42:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	tmp_cfg = __parse_panels_config (p_cfg, strlen (p_cfg));
data/radare2-4.3.1+dfsg/libr/core/panels.c:5770:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		tmp_cfg += strlen (tmp_cfg) + 1;
data/radare2-4.3.1+dfsg/libr/core/panels.c:5772:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	p_cfg += strlen (p_cfg) + 1;
data/radare2-4.3.1+dfsg/libr/core/panels.c:6633:43:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	while (pos > R && strncmp (padding, pos, strlen (padding))) {
data/radare2-4.3.1+dfsg/libr/core/panels.c:6637:58:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	while (R_STR_ISNOTEMPTY (tmp) && strncmp (padding, tmp, strlen (padding))) {
data/radare2-4.3.1+dfsg/libr/core/panels.c:6641:35:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	char *ret = r_str_newlen (pos += strlen (padding), i - strlen (padding));
data/radare2-4.3.1+dfsg/libr/core/panels.c:6641:57:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	char *ret = r_str_newlen (pos += strlen (padding), i - strlen (padding));
data/radare2-4.3.1+dfsg/libr/core/patch.c:77:45:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				r_buf_append_bytes (b, (const ut8*)str, strlen (str));
data/radare2-4.3.1+dfsg/libr/core/patch.c:79:45:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				r_buf_append_bytes (b, (const ut8*)tmp, strlen (tmp));
data/radare2-4.3.1+dfsg/libr/core/patch.c:80:47:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				r_buf_append_bytes (b, (const ut8*)end+1, strlen (end+1));
data/radare2-4.3.1+dfsg/libr/core/patch.c:83:44:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			r_buf_append_bytes (b, (const ut8*)str, strlen (str));
data/radare2-4.3.1+dfsg/libr/core/project.c:56:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (strncmp (data, magic, strlen (magic))) {
data/radare2-4.3.1+dfsg/libr/core/project.c:230:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		path[strlen (path) - 3] = 0;
data/radare2-4.3.1+dfsg/libr/core/project.c:360:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		size_t thlen = R_MIN (strlen(prjName), sizeof(thname) - 1);
data/radare2-4.3.1+dfsg/libr/core/project.c:361:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (thname, prjName, thlen);
data/radare2-4.3.1+dfsg/libr/core/project.c:505:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				buf[strlen (buf) - 2] = 0;
data/radare2-4.3.1+dfsg/libr/core/project.c:510:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				buf[strlen (buf) - 2] = 0;
data/radare2-4.3.1+dfsg/libr/core/project.c:516:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				buf[strlen (buf) - 1] = 0;
data/radare2-4.3.1+dfsg/libr/core/pseudo.c:262:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int len = strlen (code);
data/radare2-4.3.1+dfsg/libr/core/rtr.c:124:4:  [1] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant character.
			strcpy (msg, "T");
data/radare2-4.3.1+dfsg/libr/core/rtr.c:302:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy (sdup, src + 2, sizeof (sdup) - 1);
data/radare2-4.3.1+dfsg/libr/core/rtr.c:303:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int len = strlen (sdup);
data/radare2-4.3.1+dfsg/libr/core/rtr.c:409:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
						ret = strlen (out_buf);
data/radare2-4.3.1+dfsg/libr/core/rtr.c:433:6:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
					strncpy (new_cmd, name, R_MIN (val_ptr - name, sizeof (new_cmd) - 1));
data/radare2-4.3.1+dfsg/libr/core/rtr.c:435:6:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
					strncpy (new_cmd, name, sizeof (new_cmd) - 1);
data/radare2-4.3.1+dfsg/libr/core/rtr.c:448:6:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
					strncpy (new_cmd, cmd, off);
data/radare2-4.3.1+dfsg/libr/core/rtr.c:518:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			namelen = desc ? strlen (desc->name) : 0;
data/radare2-4.3.1+dfsg/libr/core/rtr.c:681:44:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		r_socket_write (rtr_host[rtr_n].fd, str, strlen (str));
data/radare2-4.3.1+dfsg/libr/core/rtr.c:688:44:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		r_socket_write (rtr_host[rtr_n].fd, str, strlen (str));
data/radare2-4.3.1+dfsg/libr/core/rtr.c:723:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy (input, _input, sizeof (input) - 4);
data/radare2-4.3.1+dfsg/libr/core/rtr.c:813:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		buf[2] = (ut8)(strlen (file) + 1);
data/radare2-4.3.1+dfsg/libr/core/rtr.c:865:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (rtr_host[i].host, host, sizeof (rtr_host[i].host)-1);
data/radare2-4.3.1+dfsg/libr/core/rtr.c:870:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (rtr_host[i].file, file, sizeof (rtr_host[i].file)-1);
data/radare2-4.3.1+dfsg/libr/core/rtr.c:996:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		cmd_len = strlen (cmd);
data/radare2-4.3.1+dfsg/libr/core/rtr.c:1102:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (!strlen (cmd)) {
data/radare2-4.3.1+dfsg/libr/core/rtr.c:1109:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	i = strlen (cmd) + 1;
data/radare2-4.3.1+dfsg/libr/core/rtr.c:1122:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				int res_len = strlen (res) + 1;
data/radare2-4.3.1+dfsg/libr/core/rtr.c:1172:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		r_socket_write (s, (void*)cmd, strlen (cmd));
data/radare2-4.3.1+dfsg/libr/core/rtr.c:1280:69:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		uv_buf_t wrbuf = uv_buf_init (client_context->res, (unsigned int) strlen (client_context->res));
data/radare2-4.3.1+dfsg/libr/core/rtr.c:1437:30:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				r_socket_write (ch, str, strlen (str));
data/radare2-4.3.1+dfsg/libr/core/rtr_http.c:405:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				if (rs->path [strlen (rs->path) - 1] == '/') {
data/radare2-4.3.1+dfsg/libr/core/rtr_shell.c:220:30:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					const char *tail = (res[strlen (res) - 1] == '\n')? "": "\n";
data/radare2-4.3.1+dfsg/libr/core/vasm.c:43:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			int xlen = R_MIN (strlen (hex), R_VISUAL_ASM_BUFSIZE - 2);
data/radare2-4.3.1+dfsg/libr/core/vasm.c:46:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			if (xlen >= strlen (a->blockbuf)) {
data/radare2-4.3.1+dfsg/libr/core/visual.c:574:35:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		max_length = R_MAX (max_length, strlen (help[i]));
data/radare2-4.3.1+dfsg/libr/core/visual.c:579:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		padding = max_length - (strlen (help[i]));
data/radare2-4.3.1+dfsg/libr/core/visual.c:1090:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = strlen (buf);
data/radare2-4.3.1+dfsg/libr/core/visual.c:1098:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = strlen (buf);
data/radare2-4.3.1+dfsg/libr/core/visual.c:1288:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy (line->buffer.data, command, R_LINE_BUFSIZE - 1);
data/radare2-4.3.1+dfsg/libr/core/visual.c:1289:45:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	line->buffer.index = line->buffer.length = strlen (line->buffer.data);
data/radare2-4.3.1+dfsg/libr/core/visual.c:1314:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy (line->buffer.data, command, R_LINE_BUFSIZE - 1);
data/radare2-4.3.1+dfsg/libr/core/visual.c:1315:45:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	line->buffer.index = line->buffer.length = strlen (line->buffer.data);
data/radare2-4.3.1+dfsg/libr/core/visual.c:1459:6:  [1] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant character.
					strcpy (cstr, "?");
data/radare2-4.3.1+dfsg/libr/core/visual.c:1479:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					if (strlen (name) > w -45) {
data/radare2-4.3.1+dfsg/libr/core/visual.c:2522:4:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
			strcat (buf, "\"");
data/radare2-4.3.1+dfsg/libr/core/visual.c:2813:5:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
				strcat (buf, "\"");
data/radare2-4.3.1+dfsg/libr/core/visual.c:2823:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				if (r_cons_fgets (buf + strlen (buf), sizeof (buf) - strlen (buf), 0, NULL) < 0) {
data/radare2-4.3.1+dfsg/libr/core/visual.c:2823:58:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				if (r_cons_fgets (buf + strlen (buf), sizeof (buf) - strlen (buf), 0, NULL) < 0) {
data/radare2-4.3.1+dfsg/libr/core/visual.c:3470:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			i = strlen (buf);
data/radare2-4.3.1+dfsg/libr/core/visual.c:3493:6:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
					strcat (buf, "\"");
data/radare2-4.3.1+dfsg/libr/core/visual.c:3497:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					int j, len = strlen (buf);
data/radare2-4.3.1+dfsg/libr/core/visual.c:3724:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (bar, cmd_visual, sizeof (bar) - 1);
data/radare2-4.3.1+dfsg/libr/core/visual.c:3731:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (bar, cmd, sizeof (bar) - 1);
data/radare2-4.3.1+dfsg/libr/core/visual.c:3892:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	r_cons_gotoxy (w - strlen (s) + 1, 2);
data/radare2-4.3.1+dfsg/libr/core/visual.c:3904:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			r_cons_gotoxy (w - strlen (word) - 1, i + 3);
data/radare2-4.3.1+dfsg/libr/core/visual.c:3923:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		r_cons_gotoxy (w - strlen (s) + 1, h + 1);
data/radare2-4.3.1+dfsg/libr/core/visual.c:3949:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int slen = strlen (s) + 1;
data/radare2-4.3.1+dfsg/libr/core/visual.c:3979:36:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			ut64 nex = from + (block * (i + strlen (word) + 1));
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:114:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			return strlen (esil);
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:119:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		return strlen (esil);
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:523:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			if (!strncmp (s, k, strlen (s))) {
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:533:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
						Color_RESET, pre, k+strlen (s), v);
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:536:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
						pre, k + strlen (s), v);
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:544:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			if (!strncmp (s, k, strlen (s))) {
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:1023:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				name += strlen (_c->name);
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:1085:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					name += strlen (_c->name);
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:1168:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					int len = strlen (grep);
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:1429:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			int extra = strlen (chainstr) / scr_w;
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:1828:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				len = strlen (cmd);
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:1922:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (strlen (k) < 8) {
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:2369:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			str = path + strlen (path);
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:2370:4:  [1] (buffer) strncat:
  Easily used incorrectly (e.g., incorrectly computing the correct maximum
  size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
  or automatically resizing strings. Risk is low because the source is a
  constant character.
			strncat (path, "/", sizeof (path)-strlen (path)-1);
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:2370:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			strncat (path, "/", sizeof (path)-strlen (path)-1);
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:2393:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
				strncpy (path, root, sizeof (path)-1);
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:2420:8:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
							strncpy (path, root, sizeof (path)-1);
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:2436:6:  [1] (buffer) strncat:
  Easily used incorrectly (e.g., incorrectly computing the correct maximum
  size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
  or automatically resizing strings. Risk is low because the source is a
  constant character.
					strncat (path, "/", sizeof (path)-strlen (path)-1);
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:2436:40:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					strncat (path, "/", sizeof (path)-strlen (path)-1);
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:2441:8:  [1] (buffer) strncat:
  Easily used incorrectly (e.g., incorrectly computing the correct maximum
  size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
  or automatically resizing strings.
							strncat (path, file->name, sizeof (path)-strlen (path)-1);
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:2441:49:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
							strncat (path, file->name, sizeof (path)-strlen (path)-1);
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:2443:41:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
							if (root && strncmp (root, path, strlen (root) - 1)) {
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:2444:9:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
								strncpy (path, root, sizeof (path) - 1);
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:2462:7:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
						strncpy (path, root, sizeof (path)-1);
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:2538:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					str = path + strlen (path);
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:2539:6:  [1] (buffer) strncat:
  Easily used incorrectly (e.g., incorrectly computing the correct maximum
  size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
  or automatically resizing strings. Risk is low because the source is a
  constant character.
					strncat (path, "/", sizeof (path)-strlen (path)-1);
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:2539:40:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					strncat (path, "/", sizeof (path)-strlen (path)-1);
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:2543:7:  [1] (buffer) strncat:
  Easily used incorrectly (e.g., incorrectly computing the correct maximum
  size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
  or automatically resizing strings.
						strncat (path, file->name, sizeof (path)-strlen (path)-1);
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:2543:48:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
						strncat (path, file->name, sizeof (path)-strlen (path)-1);
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:2545:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
						if (strncmp (root, path, strlen (root) - 1)) {
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:2546:8:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
							strncpy (path, root, sizeof (path) - 1);
data/radare2-4.3.1+dfsg/libr/core/vmenus.c:4169:52:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			k, color, atoi (cstr+7), esc ? esc - cstr - 1 : strlen (cstr + 1), cstr+1);
data/radare2-4.3.1+dfsg/libr/core/yank.c:372:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	len = buf? strlen ((const char *) buf) + 1: 0;
data/radare2-4.3.1+dfsg/libr/core/yank.c:386:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	len = buf? strlen ((const char *) buf) + 1: 0;
data/radare2-4.3.1+dfsg/libr/crypto/crypto.c:119:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		keylen = strlen ((const char *)key);
data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_rc2.c:182:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy(ptr, crypted_block, BLOCK_SIZE);
data/radare2-4.3.1+dfsg/libr/crypto/p/crypto_rc2.c:193:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy(ptr, crypted_block, 8);
data/radare2-4.3.1+dfsg/libr/debug/ddesc.c:50:36:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	if (dbg && dbg->h && dbg->h->desc.read) {
data/radare2-4.3.1+dfsg/libr/debug/ddesc.c:51:23:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
		return dbg->h->desc.read (fd, addr, len);
data/radare2-4.3.1+dfsg/libr/debug/dreg.c:245:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					len = colwidth - strlen (content);
data/radare2-4.3.1+dfsg/libr/debug/esil.c:12:3:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	[read|write|exec]-[reg|mem] [expression]
data/radare2-4.3.1+dfsg/libr/debug/esil.c:140:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		p += strlen (sep);
data/radare2-4.3.1+dfsg/libr/debug/p/debug_bochs.c:56:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		lenRec = strlen (desc->data);
data/radare2-4.3.1+dfsg/libr/debug/p/debug_bochs.c:63:6:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
					strncpy(num, &desc->data[i], 3);
data/radare2-4.3.1+dfsg/libr/debug/p/debug_bochs.c:65:6:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
					strncpy(addr, &desc->data[i + 28], 18);
data/radare2-4.3.1+dfsg/libr/debug/p/debug_bochs.c:106:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		lenRec = strlen (desc->data);
data/radare2-4.3.1+dfsg/libr/debug/p/debug_bochs.c:109:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
				strncpy (regname, &desc->data[i], 3);
data/radare2-4.3.1+dfsg/libr/debug/p/debug_bochs.c:111:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
				strncpy (&strReg[2], &desc->data[i + 5], 8);
data/radare2-4.3.1+dfsg/libr/debug/p/debug_bochs.c:112:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
				strncpy (&strReg[10], &desc->data[i + 14], 8);
data/radare2-4.3.1+dfsg/libr/debug/p/debug_bochs.c:171:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
				strncpy (&strReg[0], x+3, 7);
data/radare2-4.3.1+dfsg/libr/debug/p/debug_bochs.c:174:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
				strncpy (regname, s[n], 2);
data/radare2-4.3.1+dfsg/libr/debug/p/debug_bochs.c:177:6:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
					strncpy (strBase, x + 5, 10);
data/radare2-4.3.1+dfsg/libr/debug/p/debug_bochs.c:180:7:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
						strncpy (strLimit, x + 6, 10);
data/radare2-4.3.1+dfsg/libr/debug/p/debug_bochs.c:317:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
				strncpy (strIP, ini+1, len);
data/radare2-4.3.1+dfsg/libr/debug/p/debug_gdb.c:184:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		line_len = strlen (ptr);
data/radare2-4.3.1+dfsg/libr/debug/p/debug_gdb.c:207:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (&region2[2], pos_1 + 1, sizeof (region2) - 2 - 1);
data/radare2-4.3.1+dfsg/libr/debug/p/debug_io.c:45:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				memmove (_s_, _s_ + 2, strlen (_s_));
data/radare2-4.3.1+dfsg/libr/debug/p/debug_io.c:49:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				memmove (_s_, _s_ + 2, strlen (_s_));
data/radare2-4.3.1+dfsg/libr/debug/p/debug_io.c:104:26:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	ut8 *bregs = calloc (1, strlen (dr8));
data/radare2-4.3.1+dfsg/libr/debug/p/debug_native.c:299:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (needle && strlen (needle)) {
data/radare2-4.3.1+dfsg/libr/debug/p/debug_native.c:1060:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		line_len = strlen (line);
data/radare2-4.3.1+dfsg/libr/debug/p/debug_native.c:1082:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (name, pos_c, sizeof (name) - 1);
data/radare2-4.3.1+dfsg/libr/debug/p/debug_native.c:1104:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (&region2[2], pos_c + 1, sizeof (region2) - 2 - 1);
data/radare2-4.3.1+dfsg/libr/debug/p/native/bsd/bsd_debug.c:39:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (buffer, (sun && *sun->sun_path)?
data/radare2-4.3.1+dfsg/libr/debug/p/native/bsd/bsd_debug.c:54:4:  [1] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant character.
			strcpy (buffer, "-");
data/radare2-4.3.1+dfsg/libr/debug/p/native/bsd/bsd_debug.c:475:5:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
				strcat (path, " ");
data/radare2-4.3.1+dfsg/libr/debug/p/native/bsd/bsd_debug.c:476:46:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				addr_to_string (&kve->kf_sa_peer, path + strlen (path),
data/radare2-4.3.1+dfsg/libr/debug/p/native/bsd/bsd_debug.c:489:5:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
				strcat (path, " ");
data/radare2-4.3.1+dfsg/libr/debug/p/native/bsd/bsd_debug.c:490:60:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				addr_to_string (&kve->kf_un.kf_sock.kf_sa_peer, path + strlen (path),
data/radare2-4.3.1+dfsg/libr/debug/p/native/darwin.c:9:17:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
                read(fd, cmdline, 1024);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:47:31:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		&& strncmp (name, "[stack", strlen ("[stack")));
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:57:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	bytes_left = strlen (buffer);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:71:2:  [1] (buffer) strncat:
  Easily used incorrectly (e.g., incorrectly computing the correct maximum
  size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
  or automatically resizing strings.
	strncat (p, paux, len - bytes_left - 1);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:103:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy (p->pr_fname, basename, sizeof (p->pr_fname));
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:110:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy (p->pr_psargs, ppsargs, sizeof (p->pr_psargs));
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:269:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int len_name = strlen (name);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:270:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int len_suffx = strlen (deleted_str);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:513:46:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		pmentry->name = strncmp (map->name, "unk", strlen ("unk"))
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:543:47:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			mapping_file.size += SIZE_NT_FILE_DESCSZ + strlen (name) + 1;
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:695:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (pp, p->name, size - (pp - maps_data));
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:696:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			pp += strlen (p->name) + 1;
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:1394:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int len_name_core = round_up (strlen ("CORE") + 1);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:1395:33:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int len_name_linux = round_up (strlen ("LINUX") + 1);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:1402:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120). Risk is low because the source is a
  constant string.
	strncpy (note_info[type].name, "CORE", sizeof (note_info[type].name));
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:1408:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120). Risk is low because the source is a
  constant string.
	strncpy (note_info[type].name, "CORE", sizeof (note_info[type].name));
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:1414:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120). Risk is low because the source is a
  constant string.
	strncpy (note_info[type].name, "CORE", sizeof (note_info[type].name));
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:1420:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120). Risk is low because the source is a
  constant string.
	strncpy (note_info[type].name, "CORE", sizeof (note_info[type].name));
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:1426:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120). Risk is low because the source is a
  constant string.
	strncpy (note_info[type].name, "CORE", sizeof (note_info[type].name));
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:1432:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120). Risk is low because the source is a
  constant string.
	strncpy (note_info[type].name, "CORE", sizeof (note_info[type].name));
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:1438:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120). Risk is low because the source is a
  constant string.
	strncpy (note_info[type].name, "CORE", sizeof (note_info[type].name));
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:1447:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120). Risk is low because the source is a
  constant string.
	strncpy (note_info[type].name, "LINUX", sizeof (note_info[type].name));
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_coredump.c:1454:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120). Risk is low because the source is a
  constant string.
	strncpy (note_info[type].name, "LINUX", sizeof (note_info[type].name));
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_debug.c:1214:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = strlen (path);
data/radare2-4.3.1+dfsg/libr/debug/p/native/linux/linux_debug.c:1215:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len2 = strlen (de->d_name);
data/radare2-4.3.1+dfsg/libr/debug/p/native/procfs.c:19:7:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	nr = read (fd, out, len);
data/radare2-4.3.1+dfsg/libr/debug/p/native/w32.c:266:25:  [1] (buffer) _tcslen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			size_t name_length = _tcslen (name);
data/radare2-4.3.1+dfsg/libr/debug/p/native/w32.c:274:6:  [1] (buffer) _tcsncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
					_tcsncpy (filename, temp_filename,
data/radare2-4.3.1+dfsg/libr/debug/p/native/w32.c:275:7:  [1] (buffer) _tcslen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
						_tcslen (temp_filename) + 1);
data/radare2-4.3.1+dfsg/libr/debug/p/native/w32.c:318:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (lstLibPtr->Path,dllname,MAX_PATH-1);
data/radare2-4.3.1+dfsg/libr/debug/p/native/w32.c:319:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			int i = strlen (dllname);
data/radare2-4.3.1+dfsg/libr/debug/p/native/w32.c:324:25:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
                        strncpy (lstLibPtr->Name, &dllname[i+1], n-i);
data/radare2-4.3.1+dfsg/libr/debug/p/native/windows/windows_debug.c:597:25:  [1] (buffer) _tcslen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			size_t name_length = _tcslen (name);
data/radare2-4.3.1+dfsg/libr/debug/p/native/windows/windows_debug.c:605:6:  [1] (buffer) _tcsncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
					_tcsncpy (filename, temp_filename,
data/radare2-4.3.1+dfsg/libr/debug/p/native/windows/windows_debug.c:606:7:  [1] (buffer) _tcslen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
						_tcslen (temp_filename) + 1);
data/radare2-4.3.1+dfsg/libr/debug/p/native/windows/windows_debug.c:706:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (lstLibPtr->Path, dllname, MAX_PATH - 1);
data/radare2-4.3.1+dfsg/libr/debug/p/native/windows/windows_debug.c:707:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			int i = strlen (dllname);
data/radare2-4.3.1+dfsg/libr/debug/p/native/windows/windows_debug.c:712:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (lstLibPtr->Name, dllname + i + 1, (size_t)n - i);
data/radare2-4.3.1+dfsg/libr/debug/p/native/windows/windows_message.c:474:66:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			if ((ut64)win->h == win_h || !strnicmp (win->name, window_id, strlen (window_id))) {
data/radare2-4.3.1+dfsg/libr/debug/p/native/xnu/xnu_debug.c:1062:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			int alen = strlen (curr_arg);
data/radare2-4.3.1+dfsg/libr/debug/plugin.c:64:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int sp = 8-strlen (h->name);
data/radare2-4.3.1+dfsg/libr/debug/signal.c:68:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (key + 4, k, 20);
data/radare2-4.3.1+dfsg/libr/debug/signal.c:93:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (key + 4, k, 20);
data/radare2-4.3.1+dfsg/libr/egg/egg.c:189:52:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		r_buf_append_bytes (egg->buf, (const ut8 *)code, strlen (code));
data/radare2-4.3.1+dfsg/libr/egg/egg.c:192:52:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		r_buf_append_bytes (egg->src, (const ut8 *)code, strlen (code));
data/radare2-4.3.1+dfsg/libr/egg/egg.c:380:49:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	r_buf_append_bytes (egg->src, (const ut8*)src, strlen (src));
data/radare2-4.3.1+dfsg/libr/egg/egg.c:560:46:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		r_egg_prepend_bytes (egg, (const ut8*)ret, strlen(ret));
data/radare2-4.3.1+dfsg/libr/egg/egg_Cfile.c:92:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		output[strlen (output) - 1] = '\0'; // strip the ending '\n'
data/radare2-4.3.1+dfsg/libr/egg/egg_Cfile.c:232:50:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (!r_file_dump (fileExt, (const ut8*) buffer, strlen (buffer), true)) {
data/radare2-4.3.1+dfsg/libr/egg/egg_Cfile.c:270:54:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (!r_file_dump (fileExt, (const ut8*) cEnv->SHDR, strlen (cEnv->SHDR), false)) {
data/radare2-4.3.1+dfsg/libr/egg/egg_lang.c:347:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	char *ptr, *p = str + strlen (str);
data/radare2-4.3.1+dfsg/libr/egg/egg_lang.c:522:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
						strlen (str + i + dotrim + 1) + 1);
data/radare2-4.3.1+dfsg/libr/egg/egg_lang.c:529:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	len = strlen (str);
data/radare2-4.3.1+dfsg/libr/egg/egg_lang.c:615:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = strlen (str) - 1;
data/radare2-4.3.1+dfsg/libr/egg/emit_arm.c:87:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	off = strlen (str) + 1;
data/radare2-4.3.1+dfsg/libr/egg/emit_arm.c:146:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (lastargs[num - 1], str, sizeof(lastargs[0]) - 1);
data/radare2-4.3.1+dfsg/libr/egg/emit_x86.c:159:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int len = strlen (str);
data/radare2-4.3.1+dfsg/libr/egg/p/egg_bind.c:188:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		r_buf_set_bytes (buf, sc, strlen ((const char *)sc));
data/radare2-4.3.1+dfsg/libr/egg/p/egg_bind.c:190:56:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			if (cd) r_buf_write_at (buf, cd, (const ut8*)shell, strlen (shell)+1);
data/radare2-4.3.1+dfsg/libr/egg/p/egg_exec.c:124:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		r_buf_set_bytes (buf, sc, strlen ((const char *)sc));
data/radare2-4.3.1+dfsg/libr/egg/p/egg_exec.c:127:50:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				r_buf_write_at (buf, cd, (const ut8 *)shell, strlen (shell) + 1);
data/radare2-4.3.1+dfsg/libr/egg/p/egg_reverse.c:60:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		r_buf_set_bytes (buf, sc, strlen ((const char *)sc));
data/radare2-4.3.1+dfsg/libr/egg/p/egg_reverse.c:62:56:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			if (cd) r_buf_write_at (buf, cd, (const ut8*)shell, strlen (shell)+1);
data/radare2-4.3.1+dfsg/libr/egg/rlcc/rlcc.c:93:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int len = strlen (s);
data/radare2-4.3.1+dfsg/libr/flag/flag.c:695:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int i, newNameSize = strlen (name);
data/radare2-4.3.1+dfsg/libr/flag/flag.c:952:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	pfx_len = pfx_len < 0? strlen (pfx): pfx_len;
data/radare2-4.3.1+dfsg/libr/flag/tags.c:25:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (strlen (tag) < 5) {
data/radare2-4.3.1+dfsg/libr/flag/zones.c:172:52:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	eprintf ("%s%s  %s\n", name, r_str_pad (' ', 10 - strlen (name)), from_to);
data/radare2-4.3.1+dfsg/libr/fs/file.c:56:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	p = root->path + strlen (path);
data/radare2-4.3.1+dfsg/libr/fs/fs.c:132:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = strlen (root->path);
data/radare2-4.3.1+dfsg/libr/fs/fs.c:133:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		lenstr = strlen (str);
data/radare2-4.3.1+dfsg/libr/fs/fs.c:195:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = strlen (root->path);
data/radare2-4.3.1+dfsg/libr/fs/fs.c:219:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = strlen (root->path);
data/radare2-4.3.1+dfsg/libr/fs/fs.c:221:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			olen = strlen (path);
data/radare2-4.3.1+dfsg/libr/fs/fs.c:245:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					f = r_fs_file_new (root, path + strlen (root->path));
data/radare2-4.3.1+dfsg/libr/fs/fs.c:251:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				if (strlen (root->path) == 1) {
data/radare2-4.3.1+dfsg/libr/fs/fs.c:254:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					dir = path + strlen (root->path);
data/radare2-4.3.1+dfsg/libr/fs/fs.c:299:27:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
		if (file->p && file->p->read) {
data/radare2-4.3.1+dfsg/libr/fs/fs.c:304:13:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
			file->p->read (file, addr, len);
data/radare2-4.3.1+dfsg/libr/fs/fs.c:323:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			if (strlen (root->path) == 1) {
data/radare2-4.3.1+dfsg/libr/fs/fs.c:326:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				dir = path + strlen (root->path);
data/radare2-4.3.1+dfsg/libr/fs/fs.c:362:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		str = (char*) malloc (strlen (name) + strlen (file->name) + 2);
data/radare2-4.3.1+dfsg/libr/fs/fs.c:362:41:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		str = (char*) malloc (strlen (name) + strlen (file->name) + 2);
data/radare2-4.3.1+dfsg/libr/fs/fs.c:367:3:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
		strcat (str, "/");
data/radare2-4.3.1+dfsg/libr/fs/fs.c:369:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		npath = malloc (strlen (path) + strlen (file->name) + 2);
data/radare2-4.3.1+dfsg/libr/fs/fs.c:369:35:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		npath = malloc (strlen (path) + strlen (file->name) + 2);
data/radare2-4.3.1+dfsg/libr/fs/fs.c:375:3:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
		strcat (npath, "/");
data/radare2-4.3.1+dfsg/libr/fs/fs.c:417:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		found = (char*) malloc (strlen (name) + strlen (item->name) + 2);
data/radare2-4.3.1+dfsg/libr/fs/fs.c:417:43:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		found = (char*) malloc (strlen (name) + strlen (item->name) + 2);
data/radare2-4.3.1+dfsg/libr/fs/fs.c:422:3:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
		strcat (found, "/");
data/radare2-4.3.1+dfsg/libr/fs/fs.c:460:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			found = (char*) malloc (strlen (name) + strlen (item->name) + 2);
data/radare2-4.3.1+dfsg/libr/fs/fs.c:460:44:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			found = (char*) malloc (strlen (name) + strlen (item->name) + 2);
data/radare2-4.3.1+dfsg/libr/fs/fs.c:465:4:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
			strcat (found, "/");
data/radare2-4.3.1+dfsg/libr/fs/fs.c:473:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			found = (char*) malloc (strlen (name) + strlen (item->name) + 2);
data/radare2-4.3.1+dfsg/libr/fs/fs.c:473:44:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			found = (char*) malloc (strlen (name) + strlen (item->name) + 2);
data/radare2-4.3.1+dfsg/libr/fs/fs.c:478:4:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
			strcat (found, "/");
data/radare2-4.3.1+dfsg/libr/fs/fs.c:503:33:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
		if (root->p->open && root->p->read && root->p->close) {
data/radare2-4.3.1+dfsg/libr/fs/fs.c:506:14:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
				root->p->read (file, 0, file->size); //file->data
data/radare2-4.3.1+dfsg/libr/fs/fs.c:709:37:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (r_fs_match (path, root->path, strlen (root->path))) {
data/radare2-4.3.1+dfsg/libr/fs/p/fs_grub_base.c:28:17:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	gfs->file->fs->read (gfs->file, (char*)file->data, len);
data/radare2-4.3.1+dfsg/libr/fs/p/fs_io.c:46:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int encoded_size = strlen (res);
data/radare2-4.3.1+dfsg/libr/fs/p/fs_r2.c:81:45:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (routes[i].cat && !strncmp (path, cwd, strlen (cwd))) {
data/radare2-4.3.1+dfsg/libr/fs/p/fs_r2.c:94:44:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			if (!strncmp (name, routes[i].path + 1, strlen (routes[i].path) - 1)) {
data/radare2-4.3.1+dfsg/libr/fs/p/fs_r2.c:97:40:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			if (!strncmp (path, routes[i].path, strlen (routes[i].path))) {
data/radare2-4.3.1+dfsg/libr/fs/p/fs_r2.c:109:56:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (routes[i].cat && !strncmp (path, routes[i].path, strlen (routes[i].path))) {
data/radare2-4.3.1+dfsg/libr/fs/p/fs_r2.c:131:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	file->size = strlen (res);
data/radare2-4.3.1+dfsg/libr/fs/p/fs_r2.c:148:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		file->size = strlen (res);
data/radare2-4.3.1+dfsg/libr/fs/p/fs_r2.c:154:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		file->size = strlen (res);
data/radare2-4.3.1+dfsg/libr/fs/p/fs_r2.c:174:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	file->size = strlen (res);
data/radare2-4.3.1+dfsg/libr/fs/p/fs_r2.c:193:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	file->size = strlen (res);
data/radare2-4.3.1+dfsg/libr/fs/p/fs_r2.c:200:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	char *prefix = strdup (file->path + strlen ("/cfg/"));
data/radare2-4.3.1+dfsg/libr/fs/p/fs_r2.c:208:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (strlen (path) < 6) {
data/radare2-4.3.1+dfsg/libr/fs/p/fs_r2.c:222:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	file->size = strlen (res);
data/radare2-4.3.1+dfsg/libr/fs/p/fs_r2.c:286:56:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (routes[i].dir && !strncmp (path, routes[i].path, strlen (routes[i].path))) {
data/radare2-4.3.1+dfsg/libr/fs/shell.c:25:66:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		r_fs_write (fs, f, 0, data == NULL ? (const ut8 *) msg : data, strlen (msg));
data/radare2-4.3.1+dfsg/libr/fs/shell.c:46:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (buf, root, sizeof (buf) - 1);
data/radare2-4.3.1+dfsg/libr/fs/shell.c:56:3:  [1] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant character.
		strcpy (path, "/");
data/radare2-4.3.1+dfsg/libr/fs/shell.c:128:6:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
					strncpy (str, path, sizeof (str) - 1);
data/radare2-4.3.1+dfsg/libr/fs/shell.c:129:6:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
					strcat (str, "/");
data/radare2-4.3.1+dfsg/libr/fs/shell.c:177:5:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
				strcat (path, "/");
data/radare2-4.3.1+dfsg/libr/fs/shell.c:179:6:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
					strncpy (path, input, sizeof (opath) - 1);
data/radare2-4.3.1+dfsg/libr/fs/shell.c:181:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					if ((strlen (path) + strlen (input)) >= sizeof (path)) {
data/radare2-4.3.1+dfsg/libr/fs/shell.c:181:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					if ((strlen (path) + strlen (input)) >= sizeof (path)) {
data/radare2-4.3.1+dfsg/libr/fs/shell.c:209:6:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
					strncpy (str, root, sizeof (str) - 1);
data/radare2-4.3.1+dfsg/libr/fs/shell.c:214:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
				strncpy (str, path, sizeof (str) - 1);
data/radare2-4.3.1+dfsg/libr/fs/shell.c:216:4:  [1] (buffer) strncat:
  Easily used incorrectly (e.g., incorrectly computing the correct maximum
  size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
  or automatically resizing strings. Risk is low because the source is a
  constant character.
			strncat (str, "/",   sizeof (str) - strlen (str) - 1);
data/radare2-4.3.1+dfsg/libr/fs/shell.c:216:40:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			strncat (str, "/",   sizeof (str) - strlen (str) - 1);
data/radare2-4.3.1+dfsg/libr/fs/shell.c:217:4:  [1] (buffer) strncat:
  Easily used incorrectly (e.g., incorrectly computing the correct maximum
  size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
  or automatically resizing strings.
			strncat (str, input, sizeof (str) - strlen (str) - 1);
data/radare2-4.3.1+dfsg/libr/fs/shell.c:217:40:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			strncat (str, input, sizeof (str) - strlen (str) - 1);
data/radare2-4.3.1+dfsg/libr/fs/shell.c:251:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					s = malloc (strlen (root) + strlen (input) + 2);
data/radare2-4.3.1+dfsg/libr/fs/shell.c:251:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					s = malloc (strlen (root) + strlen (input) + 2);
data/radare2-4.3.1+dfsg/libr/fs/shell.c:258:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				s = malloc (strlen (path) + strlen (input) + 2);
data/radare2-4.3.1+dfsg/libr/fs/shell.c:258:33:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				s = malloc (strlen (path) + strlen (input) + 2);
data/radare2-4.3.1+dfsg/libr/fs/shell.c:265:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				s = calloc (strlen (input) + 32, 1);
data/radare2-4.3.1+dfsg/libr/fs/shell.c:270:4:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
			strcat (s, "/");
data/radare2-4.3.1+dfsg/libr/hash/hamdist.c:7:68:  [1] (buffer) equal:
  Function does not check the second iterator for over-read conditions
  (CWE-126). This function is often discouraged by most C++ coding standards
  in favor of its safer alternatives provided since C++14. Consider using a
  form of this function that checks the second iterator before potentially
  overflowing it.
In information theory, the Hamming distance between two strings of equal
data/radare2-4.3.1+dfsg/libr/hash/sha2.c:92:34:  [1] (buffer) equal:
  Function does not check the second iterator for over-read conditions
  (CWE-126). This function is often discouraged by most C++ coding standards
  in favor of its safer alternatives provided since C++14. Consider using a
  form of this function that checks the second iterator before potentially
  overflowing it.
#warning Define BYTE_ORDER to be equal to either LITTLE_ENDIAN or BIG_ENDIAN
data/radare2-4.3.1+dfsg/libr/include/r_debug.h:329:8:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	int (*read)(int fd, ut64 addr, int len);
data/radare2-4.3.1+dfsg/libr/include/r_fs.h:67:9:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	bool (*read)(RFSFile *fs, ut64 addr, int len);
data/radare2-4.3.1+dfsg/libr/include/r_io.h:172:8:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	int (*read)(RIO *io, RIODesc *fd, ut8 *buf, int count);
data/radare2-4.3.1+dfsg/libr/include/r_socket.h:122:42:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
R_API int r_socket_read(RSocket *s, ut8 *read, int len);
data/radare2-4.3.1+dfsg/libr/include/r_socket.h:190:18:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	rap_server_read read;
data/radare2-4.3.1+dfsg/libr/include/r_util/r_buf.h:31:14:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	RBufferRead read;
data/radare2-4.3.1+dfsg/libr/include/r_util/r_str.h:27:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			memmove (s, s + 1, strlen (s));
data/radare2-4.3.1+dfsg/libr/include/r_util/r_str.h:69:36:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define r_str_cpy(x,y) memmove(x,y,strlen(y)+1);
data/radare2-4.3.1+dfsg/libr/include/sflib/darwin-arm-64/sflib.h:34:37:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
static inline _sfsyscall3( ssize_t, read, int, fd, void *, buf, size_t, count )
data/radare2-4.3.1+dfsg/libr/include/sflib/darwin-arm-64/sflib.h:87:36:  [1] (access) umask:
  Ensure that umask is given most restrictive possible setting (e.g., 066 or
  077) (CWE-732).
static inline _sfsyscall1( mode_t, umask, mode_t, mask )
data/radare2-4.3.1+dfsg/libr/include/sflib/darwin-x86-32/sflib.h:34:37:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
static inline _sfsyscall3( ssize_t, read, int, fd, void *, buf, size_t, count )
data/radare2-4.3.1+dfsg/libr/include/sflib/darwin-x86-32/sflib.h:85:36:  [1] (access) umask:
  Ensure that umask is given most restrictive possible setting (e.g., 066 or
  077) (CWE-732).
static inline _sfsyscall1( mode_t, umask, mode_t, mask )
data/radare2-4.3.1+dfsg/libr/include/sflib/darwin-x86-64/sflib.h:34:37:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
static inline _sfsyscall3( ssize_t, read, int, fd, void *, buf, size_t, count )
data/radare2-4.3.1+dfsg/libr/include/sflib/darwin-x86-64/sflib.h:85:36:  [1] (access) umask:
  Ensure that umask is given most restrictive possible setting (e.g., 066 or
  077) (CWE-732).
static inline _sfsyscall1( mode_t, umask, mode_t, mask )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-arm-32/sflib.h:32:37:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
static inline _sfsyscall3( ssize_t, read, int, fd, void *, buf, size_t, count )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-arm-32/sflib.h:127:36:  [1] (access) umask:
  Ensure that umask is given most restrictive possible setting (e.g., 066 or
  077) (CWE-732).
static inline _sfsyscall1( mode_t, umask, mode_t, mask )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-arm-64/sflib.h:32:37:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
static inline _sfsyscall3( ssize_t, read, int, fd, void *, buf, size_t, count )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-arm-64/sflib.h:127:36:  [1] (access) umask:
  Ensure that umask is given most restrictive possible setting (e.g., 066 or
  077) (CWE-732).
static inline _sfsyscall1( mode_t, umask, mode_t, mask )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-x86-32/sflib.h:34:37:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
static inline _sfsyscall3( ssize_t, read, int, fd, void *, buf, size_t, count )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-x86-32/sflib.h:91:36:  [1] (access) umask:
  Ensure that umask is given most restrictive possible setting (e.g., 066 or
  077) (CWE-732).
static inline _sfsyscall1( mode_t, umask, mode_t, mask )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-x86-64/sflib.h:32:37:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
static inline _sfsyscall3( ssize_t, read, int, fd, void *, buf, size_t, count )
data/radare2-4.3.1+dfsg/libr/include/sflib/linux-x86-64/sflib.h:127:36:  [1] (access) umask:
  Ensure that umask is given most restrictive possible setting (e.g., 066 or
  077) (CWE-732).
static inline _sfsyscall1( mode_t, umask, mode_t, mask )
data/radare2-4.3.1+dfsg/libr/io/p/io_bochs.c:17:37:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	return !strncmp (file, "bochs://", strlen ("bochs://"));
data/radare2-4.3.1+dfsg/libr/io/p/io_debug.c:483:4:  [1] (obsolete) usleep:
  This C routine is considered obsolete (as opposed to the shell command by
  the same name). The interaction of this function with SIGALRM and other
  timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
  unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
			usleep (100000);
data/radare2-4.3.1+dfsg/libr/io/p/io_default.c:24:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		file += strlen ("file://");
data/radare2-4.3.1+dfsg/libr/io/p/io_default.c:120:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		filename += strlen ("file://");
data/radare2-4.3.1+dfsg/libr/io/p/io_default.c:124:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		filename += strlen ("nocache://");;
data/radare2-4.3.1+dfsg/libr/io/p/io_default.c:162:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		filename += strlen ("file://");
data/radare2-4.3.1+dfsg/libr/io/p/io_default.c:201:12:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
					(void)read (mmo->fd, a_buf+i, aligned);
data/radare2-4.3.1+dfsg/libr/io/p/io_default.c:213:10:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
		return read (mmo->fd, buf, count);
data/radare2-4.3.1+dfsg/libr/io/p/io_default.c:251:12:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
					(void)read (mmo->fd, a_buf + i, aligned);
data/radare2-4.3.1+dfsg/libr/io/p/io_default.c:310:31:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		d->name = strdup (oldname + strlen ("file://"));
data/radare2-4.3.1+dfsg/libr/io/p/io_gdb.c:64:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy (host, file + 6, sizeof (host) - 1);
data/radare2-4.3.1+dfsg/libr/io/p/io_gdb.c:356:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		const char *ptr = cmd + strlen ("exec_file");
data/radare2-4.3.1+dfsg/libr/io/p/io_gprobe.c:119:10:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	count = read (port->fd, buf, sizeof (buf));
data/radare2-4.3.1+dfsg/libr/io/p/io_gprobe.c:253:36:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (!(escaped_port_name = malloc (strlen (port->name) + 5))) {
data/radare2-4.3.1+dfsg/libr/io/p/io_gprobe.c:486:12:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
		result = read (port->fd, ptr, count - bytes_read);
data/radare2-4.3.1+dfsg/libr/io/p/io_gprobe.c:1118:65:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	return pathname && r_str_startswith (pathname, "gprobe://") && strlen (pathname + strlen ("gprobe://"));
data/radare2-4.3.1+dfsg/libr/io/p/io_gprobe.c:1118:84:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	return pathname && r_str_startswith (pathname, "gprobe://") && strlen (pathname + strlen ("gprobe://"));
data/radare2-4.3.1+dfsg/libr/io/p/io_gprobe.c:1126:35:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		gprobe->gport.name = pathname + strlen ("gprobe://");
data/radare2-4.3.1+dfsg/libr/io/p/io_gprobe.c:1182:42:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (r_str_startswith (cmd, "reset") && (strlen (cmd) > 6)) {
data/radare2-4.3.1+dfsg/libr/io/p/io_gprobe.c:1202:44:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (r_str_startswith (cmd, "runcode") && (strlen (cmd) > 8)) {
data/radare2-4.3.1+dfsg/libr/io/p/io_malloc.c:164:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			mal->size = strlen (pathname);
data/radare2-4.3.1+dfsg/libr/io/p/io_null.c:93:44:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (!strncmp (pathname, "null://", 7) && strlen (pathname + 7)) {
data/radare2-4.3.1+dfsg/libr/io/p/io_procpid.c:33:9:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	return read (fdn, buf, sz);
data/radare2-4.3.1+dfsg/libr/io/p/io_ptrace.c:98:8:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
			if (read (fd, buf, len) != -1) {
data/radare2-4.3.1+dfsg/libr/io/p/io_qnx.c:90:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy (host, file + 6, sizeof(host) - 1);
data/radare2-4.3.1+dfsg/libr/io/p/io_r2k_linux.c:228:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int cmd_len = cmd ? strlen (cmd) : 0;
data/radare2-4.3.1+dfsg/libr/io/p/io_r2k_linux.c:573:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = strlen (buf);
data/radare2-4.3.1+dfsg/libr/io/p/io_r2k_linux.c:579:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				memcpy (databuf, buf, strlen (buf) + 1);
data/radare2-4.3.1+dfsg/libr/io/p/io_r2k_linux.c:727:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
						nextstart = i + 7 + (strlen ((const char *)&(proc_data.vmareastruct[i + 7])) - 1 + sizeof (size_t)) / sizeof (size_t);
data/radare2-4.3.1+dfsg/libr/io/p/io_r2k_linux.c:746:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
						nextstart = i + 7 + (strlen ((const char *)&(proc_data.vmareastruct[i + 7])) - 1 + sizeof (size_t)) / sizeof (size_t);
data/radare2-4.3.1+dfsg/libr/io/p/io_r2k_windows.c:79:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	const char *pfile = path + strlen (path);
data/radare2-4.3.1+dfsg/libr/io/p/io_r2k_windows.c:173:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (strlen (driverPath)) {
data/radare2-4.3.1+dfsg/libr/io/p/io_r2pipe.c:28:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		bufn += strlen (bufn);
data/radare2-4.3.1+dfsg/libr/io/p/io_r2web.c:92:35:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	return (!strncmp (pathname, uri, strlen (uri)));
data/radare2-4.3.1+dfsg/libr/io/p/io_r2web.c:108:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int path_len = strlen (path);
data/radare2-4.3.1+dfsg/libr/io/p/io_rap.c:223:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		buf[2] = (ut8)strlen (file);
data/radare2-4.3.1+dfsg/libr/io/p/io_rap.c:282:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	i = strlen (command) + 1;
data/radare2-4.3.1+dfsg/libr/io/p/io_rap.c:324:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		reslen = strlen (res);
data/radare2-4.3.1+dfsg/libr/io/p/io_self.c:107:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			l = strlen (pos_c);
data/radare2-4.3.1+dfsg/libr/io/p/io_shm.c:55:9:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	return read (shm->fd, buf, count);
data/radare2-4.3.1+dfsg/libr/io/p/io_zip.c:318:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		size_t v = strlen (filename_in_zipfile);
data/radare2-4.3.1+dfsg/libr/io/plugin.c:162:21:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	if (!desc->plugin->read) {
data/radare2-4.3.1+dfsg/libr/io/plugin.c:165:23:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	return desc->plugin->read (desc->io, desc, buf, len);
data/radare2-4.3.1+dfsg/libr/lang/lang.c:210:33:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	return r_lang_run (lang, code, strlen (code));
data/radare2-4.3.1+dfsg/libr/lang/lang.c:273:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (buf, p, sizeof (buf) - 1);
data/radare2-4.3.1+dfsg/libr/lang/lang.c:320:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			r_lang_run (lang, buf, strlen (buf));
data/radare2-4.3.1+dfsg/libr/lang/p/c.c:23:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (strlen (file) > (sizeof (name) - 10)) {
data/radare2-4.3.1+dfsg/libr/lang/p/cpipe.c:13:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (strlen (file) > (sizeof (name)-10))
data/radare2-4.3.1+dfsg/libr/lang/p/pipe.c:88:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				int res_len = strlen (res) + 1;
data/radare2-4.3.1+dfsg/libr/lang/p/pipe.c:180:10:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
			ret = read (output[0], buf, sizeof (buf) - 1);
data/radare2-4.3.1+dfsg/libr/lang/p/pipe.c:192:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				write (input[1], res, strlen (res) + 1);
data/radare2-4.3.1+dfsg/libr/lang/p/rust.c:12:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (strlen (file) > (sizeof (name) - 10)) {
data/radare2-4.3.1+dfsg/libr/lang/p/vala.c:15:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (strlen (file) > 500) {
data/radare2-4.3.1+dfsg/libr/lang/p/vala.c:34:4:  [1] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant character.
			strcpy (srcdir, ".");
data/radare2-4.3.1+dfsg/libr/lang/p/vala.c:38:3:  [1] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant character.
		strcpy (srcdir, ".");
data/radare2-4.3.1+dfsg/libr/magic/apprentice.c:282:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		file_oomem (ms, strlen (fn));
data/radare2-4.3.1+dfsg/libr/magic/apprentice.c:492:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		: R_MIN (line_sz, strlen (data));
data/radare2-4.3.1+dfsg/libr/magic/apprentice.c:505:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		size_t len = strlen (line);
data/radare2-4.3.1+dfsg/libr/magic/apprentice.c:553:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		size_t len = strlen (line);
data/radare2-4.3.1+dfsg/libr/magic/apprentice.c:1866:6:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	if (read (fd, mm, (size_t)st.st_size) != (size_t)st.st_size) {
data/radare2-4.3.1+dfsg/libr/magic/apprentice.c:1986:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	fnlen = strlen (fn);
data/radare2-4.3.1+dfsg/libr/magic/apprentice.c:1987:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	extlen = strlen (ext);
data/radare2-4.3.1+dfsg/libr/magic/funcs.c:74:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int obuflen = strlen (ms->o.buf);
data/radare2-4.3.1+dfsg/libr/magic/funcs.c:257:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	len = strlen (ms->o.buf);
data/radare2-4.3.1+dfsg/libr/magic/magic.c:162:15:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
		while ((r = read(fd, (void *)&buf[nbytes],
data/radare2-4.3.1+dfsg/libr/magic/magic.c:180:17:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
		if ((nbytes = read(fd, (char *)buf, HOWMANY)) == -1) {
data/radare2-4.3.1+dfsg/libr/magic/softmagic.c:425:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			t = ms->offset + strlen (p->s);
data/radare2-4.3.1+dfsg/libr/magic/softmagic.c:669:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = strlen(p->s);
data/radare2-4.3.1+dfsg/libr/magic/softmagic.c:685:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = strlen(p->s);
data/radare2-4.3.1+dfsg/libr/main/r2agent.c:154:26:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				size_t escaped_len = strlen (escaped_filename);
data/radare2-4.3.1+dfsg/libr/main/rabin2.c:922:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			data = malloc (strlen (p2)+1);
data/radare2-4.3.1+dfsg/libr/main/rabin2.c:931:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		code = malloc (strlen (p) + 1);
data/radare2-4.3.1+dfsg/libr/main/radare2.c:702:58:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (!r_file_dump (tfn, (const ut8*)customRarunProfile, strlen (customRarunProfile), 0)) {
data/radare2-4.3.1+dfsg/libr/main/radare2.c:935:47:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				is_gdb = (!memcmp (f, "gdb://", R_MIN (f? strlen (f):0, 6)));
data/radare2-4.3.1+dfsg/libr/main/radiff2.c:121:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy (s, (char *) buf, last);
data/radare2-4.3.1+dfsg/libr/main/radiff2.c:754:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			*len += strlen (str->name) + 1;
data/radare2-4.3.1+dfsg/libr/main/radiff2.c:769:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int namelen = strlen (str->name);
data/radare2-4.3.1+dfsg/libr/main/radiff2.c:777:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	*len = strlen ((const char *) buf);
data/radare2-4.3.1+dfsg/libr/main/radiff2.c:821:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	*len = strlen ((const char *) buf);
data/radare2-4.3.1+dfsg/libr/main/radiff2.c:1102:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			sza = strlen ((const char *) bufa);
data/radare2-4.3.1+dfsg/libr/main/radiff2.c:1106:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			szb = strlen ((const char *) bufb);
data/radare2-4.3.1+dfsg/libr/main/ragg2.c:175:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				b = malloc (strlen (r_optarg) + 1);
data/radare2-4.3.1+dfsg/libr/main/ragg2.c:418:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int l = strlen (str);
data/radare2-4.3.1+dfsg/libr/main/ragg2.c:446:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		ut8 *b = malloc (strlen (bytes) + 1);
data/radare2-4.3.1+dfsg/libr/main/ragg2.c:577:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				if (strlen(format) >= 2 && format[1] == 'y') { // Python
data/radare2-4.3.1+dfsg/libr/main/rahash2.c:48:26:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	s.buf = (ut8 *) malloc (strlen (seed) + 128);
data/radare2-4.3.1+dfsg/libr/main/rahash2.c:61:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		s.len = strlen (sptr + 2);
data/radare2-4.3.1+dfsg/libr/main/rahash2.c:66:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			s.len = strlen (sptr);
data/radare2-4.3.1+dfsg/libr/main/rahash2.c:497:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		compareBin = malloc ((strlen (compareStr) + 1) * 2);
data/radare2-4.3.1+dfsg/libr/main/rahash2.c:536:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		iv = (ut8 *) malloc (strlen (ivseed) + 128);
data/radare2-4.3.1+dfsg/libr/main/rahash2.c:539:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			ivlen = strlen (ivseed + 2);
data/radare2-4.3.1+dfsg/libr/main/rahash2.c:544:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				ivlen = strlen (ivseed);
data/radare2-4.3.1+dfsg/libr/main/rahash2.c:566:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			ut8 *out = malloc ((strlen (hashstr) + 1) * 2);
data/radare2-4.3.1+dfsg/libr/main/rahash2.c:578:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				hashstr_len = strlen (hashstr);
data/radare2-4.3.1+dfsg/libr/main/rasm2.c:327:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		clen = strlen (buf);
data/radare2-4.3.1+dfsg/libr/main/rasm2.c:809:14:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
				length = read (0, buf, sizeof (buf) - 1);
data/radare2-4.3.1+dfsg/libr/main/rasm2.c:827:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					int buflen = strlen ((const char *)buf);
data/radare2-4.3.1+dfsg/libr/main/rasm2.c:850:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			len = strlen (usrstr);
data/radare2-4.3.1+dfsg/libr/main/rax2.c:23:12:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
			int n = read (0, buf + l, STDIN_BUFFER_SIZE - l);
data/radare2-4.3.1+dfsg/libr/main/rax2.c:164:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = strlen (str);
data/radare2-4.3.1+dfsg/libr/main/rax2.c:245:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int n = ((strlen (str)) >> 1) + 1;
data/radare2-4.3.1+dfsg/libr/main/rax2.c:288:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int n = ((strlen (str)) >> 1) + 1;
data/radare2-4.3.1+dfsg/libr/main/rax2.c:338:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		for (i = 0; i < strlen (str); i++) {
data/radare2-4.3.1+dfsg/libr/main/rax2.c:400:37:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (r_list_length (split) >= 2 && strlen (r_list_head (split)->n->data) > 2) {
data/radare2-4.3.1+dfsg/libr/main/rax2.c:413:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		const int len = strlen (str);
data/radare2-4.3.1+dfsg/libr/main/rax2.c:424:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		const int len = strlen (str);
data/radare2-4.3.1+dfsg/libr/main/rax2.c:587:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		str[strlen (str) - 1] = 'b';
data/radare2-4.3.1+dfsg/libr/main/rax2.c:593:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		str[strlen (str) - 2] = 't';
data/radare2-4.3.1+dfsg/libr/main/rax2.c:594:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		str[strlen (str) - 1] = '\0';
data/radare2-4.3.1+dfsg/libr/parse/code.c:14:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		char *p = malloc (strlen (msg) + strlen (*s) + 1);
data/radare2-4.3.1+dfsg/libr/parse/code.c:14:36:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		char *p = malloc (strlen (msg) + strlen (*s) + 1);
data/radare2-4.3.1+dfsg/libr/parse/code.c:19:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			strcpy (p + strlen (p), msg);
data/radare2-4.3.1+dfsg/libr/parse/code.c:81:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int n = strlen(*p);
data/radare2-4.3.1+dfsg/libr/parse/filter.c:37:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	strcpy (dst + strlen (src), endNum);
data/radare2-4.3.1+dfsg/libr/parse/filter.c:48:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		char *s = p + strlen (k);
data/radare2-4.3.1+dfsg/libr/parse/filter.c:49:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		char *d = p + strlen (v);
data/radare2-4.3.1+dfsg/libr/parse/filter.c:50:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		memmove (d, s, strlen (s) + 1);
data/radare2-4.3.1+dfsg/libr/parse/filter.c:51:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		memmove (p, v, strlen (v));
data/radare2-4.3.1+dfsg/libr/parse/filter.c:52:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		s = p + strlen (v);
data/radare2-4.3.1+dfsg/libr/parse/filter.c:255:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					if (maxflagname > 0 && strlen (flagname) > maxflagname) {
data/radare2-4.3.1+dfsg/libr/parse/filter.c:275:50:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
								newstr = r_str_newf ("..%s", flagname + (strlen (flagname) - maxflagname));
data/radare2-4.3.1+dfsg/libr/parse/filter.c:293:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
						int flag_len = strlen (flag->name);
data/radare2-4.3.1+dfsg/libr/parse/filter.c:294:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
						char *ptr_end = str + strlen (data) + flag_len - 1;
data/radare2-4.3.1+dfsg/libr/parse/filter.c:336:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
								int dlen = strlen (dptr_left);
data/radare2-4.3.1+dfsg/libr/parse/filter.c:382:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (num, ptr, sizeof (num)-2);
data/radare2-4.3.1+dfsg/libr/parse/filter.c:455:5:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
				strcat (num, "b");
data/radare2-4.3.1+dfsg/libr/parse/filter.c:515:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (str, data, len);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_6502_pseudo.c:89:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
						k += strlen(w) - 1;
data/radare2-4.3.1+dfsg/libr/parse/p/parse_6502_pseudo.c:97:5:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
				strcat (newstr + k, "+");
data/radare2-4.3.1+dfsg/libr/parse/p/parse_6502_pseudo.c:127:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int i, len = strlen (data);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_6502_pseudo.c:154:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (w0, buf, sizeof(w0) - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_6502_pseudo.c:155:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (w1, ptr, sizeof(w1) - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_6502_pseudo.c:163:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
				strncpy (w1, optr, sizeof(w1) - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_6502_pseudo.c:164:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
				strncpy (w2, ptr, sizeof(w2) - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_6502_pseudo.c:167:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (w0, buf, sizeof(w0) - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_arm_pseudo.c:170:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
							k += strlen (w) - 1;
data/radare2-4.3.1+dfsg/libr/parse/p/parse_arm_pseudo.c:198:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int i, len = strlen (data);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_arm_pseudo.c:220:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (w0, buf, sizeof (w0) - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_arm_pseudo.c:221:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (w1, ptr, sizeof (w1) - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_arm_pseudo.c:244:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
				strncpy (w1, optr, sizeof (w1) - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_arm_pseudo.c:245:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
				strncpy (w2, ptr, sizeof (w2) - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_arm_pseudo.c:253:6:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
					strncpy (w2, optr, sizeof (w2) - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_arm_pseudo.c:254:6:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
					strncpy (w3, ptr, sizeof (w3) - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_arm_pseudo.c:426:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (len > strlen (tstr)) {
data/radare2-4.3.1+dfsg/libr/parse/p/parse_att2intel.c:46:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
							k += strlen(w)-1;
data/radare2-4.3.1+dfsg/libr/parse/p/parse_att2intel.c:90:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (*buf == '.' || buf[strlen(buf)-1] == ':') {
data/radare2-4.3.1+dfsg/libr/parse/p/parse_att2intel.c:110:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			memmove (num+1, ptr, strlen (ptr)+1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_att2intel.c:137:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (w0, buf, sizeof(w0) - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_att2intel.c:138:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (w1, ptr, sizeof(w1) - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_att2intel.c:147:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
				strncpy (w1, optr, sizeof(w1)-1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_att2intel.c:148:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
				strncpy (w2, ptr, sizeof(w2)-1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_att2intel.c:155:6:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
					strncpy (w2, optr, sizeof(w2)-1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_att2intel.c:156:6:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
					strncpy (w3, ptr, sizeof(w3)-1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_avr_pseudo.c:111:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
							k += strlen(w) - 1;
data/radare2-4.3.1+dfsg/libr/parse/p/parse_avr_pseudo.c:137:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int i, len = strlen (data);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_avr_pseudo.c:167:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (w0, buf, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_avr_pseudo.c:168:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (w1, ptr, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_avr_pseudo.c:177:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
				strncpy (w1, optr, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_avr_pseudo.c:178:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
				strncpy (w2, ptr, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_avr_pseudo.c:186:6:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
					strncpy (w2, optr, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_avr_pseudo.c:187:6:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
					strncpy (w3, ptr, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_avr_pseudo.c:196:7:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
						strncpy (w3, optr, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_avr_pseudo.c:197:7:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
						strncpy (w4, ptr, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_avr_pseudo.c:202:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (w0, buf, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_chip8_pseudo.c:21:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		arg_len = strlen (arg);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_chip8_pseudo.c:70:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int len = strlen (in), count = 0, i = 0, tokenlen = 0, seplen = 0;
data/radare2-4.3.1+dfsg/libr/parse/p/parse_dalvik_pseudo.c:205:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
							k += strlen(w)-1;
data/radare2-4.3.1+dfsg/libr/parse/p/parse_dalvik_pseudo.c:230:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int i, len = strlen (data);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_dalvik_pseudo.c:268:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (w0, buf, sizeof (w0) - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_dalvik_pseudo.c:270:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (w1, ptr, sizeof (w1) - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_dalvik_pseudo.c:284:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
				strncpy (w1, optr, sizeof (w1) - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_dalvik_pseudo.c:286:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
				strncpy (w2, ptr, sizeof (w2) - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_dalvik_pseudo.c:295:6:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
					strncpy (w2, optr, sizeof (w2) - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_dalvik_pseudo.c:297:6:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
					strncpy (w3, ptr, sizeof (w3) - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_dalvik_pseudo.c:307:7:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
						strncpy (w3, optr, sizeof (w3) - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_dalvik_pseudo.c:309:7:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
						strncpy (w4, ptr, sizeof (w4) - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_m68k_pseudo.c:77:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
							k += strlen(w)-1;
data/radare2-4.3.1+dfsg/libr/parse/p/parse_m68k_pseudo.c:103:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int i, len = strlen (data);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_m68k_pseudo.c:143:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (w0, buf, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_m68k_pseudo.c:144:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (w1, ptr, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_m68k_pseudo.c:153:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
				strncpy (w1, optr, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_m68k_pseudo.c:154:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
				strncpy (w2, ptr, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_m68k_pseudo.c:162:6:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
					strncpy (w2, optr, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_m68k_pseudo.c:163:6:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
					strncpy (w3, ptr, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_m68k_pseudo.c:172:7:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
						strncpy (w3, optr, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_m68k_pseudo.c:173:7:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
						strncpy (w4, ptr, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_mips_pseudo.c:105:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
							k += strlen (w) - 1;
data/radare2-4.3.1+dfsg/libr/parse/p/parse_mips_pseudo.c:131:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int i, len = strlen (data);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_mips_pseudo.c:169:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (w0, buf, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_mips_pseudo.c:170:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (w1, ptr, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_mips_pseudo.c:179:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
				strncpy (w1, optr, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_mips_pseudo.c:180:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
				strncpy (w2, ptr, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_mips_pseudo.c:188:6:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
					strncpy (w2, optr, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_mips_pseudo.c:189:6:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
					strncpy (w3, ptr, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_mips_pseudo.c:198:7:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
						strncpy (w3, optr, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_mips_pseudo.c:199:7:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
						strncpy (w4, ptr, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_mips_pseudo.c:204:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (w0, buf, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_mips_pseudo.c:331:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (len > strlen (tstr)) {
data/radare2-4.3.1+dfsg/libr/parse/p/parse_ppc_pseudo.c:1589:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
							k += strlen (w) - 1;
data/radare2-4.3.1+dfsg/libr/parse/p/parse_ppc_pseudo.c:1615:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int i, len = strlen (data);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_ppc_pseudo.c:1653:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (w0, buf, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_ppc_pseudo.c:1654:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (w1, ptr, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_ppc_pseudo.c:1663:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
				strncpy (w1, optr, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_ppc_pseudo.c:1664:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
				strncpy (w2, ptr, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_ppc_pseudo.c:1672:6:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
					strncpy (w2, optr, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_ppc_pseudo.c:1673:6:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
					strncpy (w3, ptr, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_ppc_pseudo.c:1682:7:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
						strncpy (w3, optr, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_ppc_pseudo.c:1683:7:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
						strncpy (w4, ptr, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_ppc_pseudo.c:1692:8:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
							strncpy (w4, optr, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_ppc_pseudo.c:1693:8:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
							strncpy (w5, ptr, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_ppc_pseudo.c:1699:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (w0, buf, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_sh_pseudo.c:135:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
							k += strlen(w) - 1;
data/radare2-4.3.1+dfsg/libr/parse/p/parse_sh_pseudo.c:161:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int i, len = strlen (data);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_sh_pseudo.c:191:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (w0, buf, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_sh_pseudo.c:192:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (w1, ptr, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_sh_pseudo.c:209:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
				strncpy (w1, optr, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_sh_pseudo.c:210:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
				strncpy (w2, ptr, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_sh_pseudo.c:226:6:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
					strncpy (w2, optr, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_sh_pseudo.c:227:6:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
					strncpy (w3, ptr, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_sh_pseudo.c:244:7:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
						strncpy (w3, optr, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_sh_pseudo.c:245:7:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
						strncpy (w4, ptr, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_sh_pseudo.c:250:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (w0, buf, WSZ - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_wasm_pseudo.c:17:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		size_t namelen = strlen (s);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_x86_pseudo.c:143:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
							k += strlen (w) - 1;
data/radare2-4.3.1+dfsg/libr/parse/p/parse_x86_pseudo.c:170:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	size_t len = strlen (data);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_x86_pseudo.c:241:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				if (strlen (wa[3]) > 2) {
data/radare2-4.3.1+dfsg/libr/parse/p/parse_x86_pseudo.c:497:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (bp, anal->reg->name[R_REG_NAME_BP], sizeof (bp) - 1);
data/radare2-4.3.1+dfsg/libr/parse/p/parse_x86_pseudo.c:507:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (len > strlen (tstr)) {
data/radare2-4.3.1+dfsg/libr/parse/p/parse_z80_pseudo.c:53:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
							k += strlen(w)-1;
data/radare2-4.3.1+dfsg/libr/parse/parse.c:76:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		o = data + strlen (data);
data/radare2-4.3.1+dfsg/libr/parse/parse.c:88:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				o += strlen (data);
data/radare2-4.3.1+dfsg/libr/parse/parse.c:117:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		memmove (n, p, strlen (p) + 1);
data/radare2-4.3.1+dfsg/libr/reg/value.c:236:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		out = malloc (strlen (item->flags) + 1);
data/radare2-4.3.1+dfsg/libr/reg/value.c:240:5:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				strlen (item->flags) * 8, item->flags);
data/radare2-4.3.1+dfsg/libr/search/keyword.c:63:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		bmbuf = malloc (strlen (bmstr)+1);
data/radare2-4.3.1+dfsg/libr/search/keyword.c:72:43:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	kw = r_search_keyword_new ((ut8 *)kwbuf, strlen (kwbuf), bmbuf, bmlen, data);
data/radare2-4.3.1+dfsg/libr/search/keyword.c:90:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		bmbuf = malloc (strlen (bmstr)+1);
data/radare2-4.3.1+dfsg/libr/search/keyword.c:100:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	len = strlen(kwbuf);
data/radare2-4.3.1+dfsg/libr/search/keyword.c:140:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	kwbuf = malloc (strlen (kwstr)+1);
data/radare2-4.3.1+dfsg/libr/search/keyword.c:153:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		bmbuf = malloc (strlen (bmstr)+1);
data/radare2-4.3.1+dfsg/libr/search/keyword.c:176:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int len = strlen (kwstr);
data/radare2-4.3.1+dfsg/libr/search/strings.c:20:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	ut32 lename = strlen (name);
data/radare2-4.3.1+dfsg/libr/search/strings.c:22:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		ut32 sz = R_MIN (strlen (encodings[i]), lename);
data/radare2-4.3.1+dfsg/libr/search/strings.c:87:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					int len = strlen(str);
data/radare2-4.3.1+dfsg/libr/socket/http.c:95:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				*rlen = strlen (res);
data/radare2-4.3.1+dfsg/libr/socket/http.c:206:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			"\r\n", path, host, (int)strlen (data));
data/radare2-4.3.1+dfsg/libr/socket/http.c:208:35:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	r_socket_write (s, (void *)data, strlen (data));
data/radare2-4.3.1+dfsg/libr/socket/http_server.c:51:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			if (strlen (buf)<3) {
data/radare2-4.3.1+dfsg/libr/socket/http_server.c:78:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				size_t authlen = strlen (authtoken);
data/radare2-4.3.1+dfsg/libr/socket/http_server.c:126:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = out ? strlen (out) : 0;
data/radare2-4.3.1+dfsg/libr/socket/proc.c:121:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		r_socket_write (&s, buf, strlen(buf));
data/radare2-4.3.1+dfsg/libr/socket/r2pipe.c:41:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	len = strlen (str) + 2; /* include \n\x00 */
data/radare2-4.3.1+dfsg/libr/socket/r2pipe.c:47:2:  [1] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant character.
	strcpy (cmd + len - 2, "\n");
data/radare2-4.3.1+dfsg/libr/socket/r2pipe.c:87:8:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
		rv = read (r2pipe->output[0], buf + i, 1);
data/radare2-4.3.1+dfsg/libr/socket/r2pipe.c:275:7:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
		if (read (r2pipe->output[0], &ch, 1) != 1) {
data/radare2-4.3.1+dfsg/libr/socket/rap_server.c:23:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (strlen (pathname) < 11) {
data/radare2-4.3.1+dfsg/libr/socket/rap_server.c:76:6:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
		s->read (s->user, &s->buf[5], i);
data/radare2-4.3.1+dfsg/libr/socket/rap_server.c:111:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		i = (ptr)? strlen (ptr) + 1: 0;
data/radare2-4.3.1+dfsg/libr/socket/run.c:133:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			len = strlen (ret);
data/radare2-4.3.1+dfsg/libr/socket/run.c:148:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			len = strlen (ret);
data/radare2-4.3.1+dfsg/libr/socket/run.c:168:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				len = strlen (pat);
data/radare2-4.3.1+dfsg/libr/socket/run.c:185:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int msg_len = strlen (msg);
data/radare2-4.3.1+dfsg/libr/socket/run.c:373:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				size_t cmdl = strlen (cmd)-2;
data/radare2-4.3.1+dfsg/libr/socket/run.c:561:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				len = strlen (p);
data/radare2-4.3.1+dfsg/libr/socket/run.c:657:6:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	if (read (in_fd, *buff, size) != size) {
data/radare2-4.3.1+dfsg/libr/socket/run.c:956:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			size_t inpl = strlen (inp);
data/radare2-4.3.1+dfsg/libr/socket/run.c:1116:5:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				strlen (pidstr), 0);
data/radare2-4.3.1+dfsg/libr/socket/socket.c:127:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy (addr.sun_path, file, sizeof (addr.sun_path)-1);
data/radare2-4.3.1+dfsg/libr/socket/socket.c:147:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy (unix_name.sun_path, file, sizeof (unix_name.sun_path)-1);
data/radare2-4.3.1+dfsg/libr/socket/socket.c:757:33:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	return r_socket_write (s, buf, strlen (buf));
data/radare2-4.3.1+dfsg/libr/socket/socket.c:766:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		r_socket_write (s, buf, strlen (buf));
data/radare2-4.3.1+dfsg/libr/socket/socket.c:793:9:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	return read (s->fd, buf, len);
data/radare2-4.3.1+dfsg/libr/syscall/syscall.c:208:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (si->sargs, r_str_word_get0 (o, 3), si->args);
data/radare2-4.3.1+dfsg/libr/util/asn1.c:180:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		p += strlen(pad);
data/radare2-4.3.1+dfsg/libr/util/asn1.c:250:59:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	RASN1String* asn1str = r_asn1_create_string (text, true, strlen (text) + 1);
data/radare2-4.3.1+dfsg/libr/util/astr.c:22:46:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	return r_asn1_create_string (string, false, strlen (string) + 1);
data/radare2-4.3.1+dfsg/libr/util/astr.c:277:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				slen = strlen (str);
data/radare2-4.3.1+dfsg/libr/util/astr.c:281:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				slen = strlen (str);
data/radare2-4.3.1+dfsg/libr/util/base85.c:35:22:  [1] (buffer) getc:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	while (isspace (c = getc (f))) {
data/radare2-4.3.1+dfsg/libr/util/base85.c:86:7:  [1] (buffer) getc:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
		c = getc(fp);
data/radare2-4.3.1+dfsg/libr/util/base91.c:32:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = strlen (bin);
data/radare2-4.3.1+dfsg/libr/util/base91.c:72:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = strlen ((const char *)bin);
data/radare2-4.3.1+dfsg/libr/util/big.c:34:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	for (i=len=strlen (str)-1; *str; i--, str++)
data/radare2-4.3.1+dfsg/libr/util/buf.c:40:21:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	return b->methods->read? b->methods->read (b, buf, len): -1;
data/radare2-4.3.1+dfsg/libr/util/buf.c:40:39:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	return b->methods->read? b->methods->read (b, buf, len): -1;
data/radare2-4.3.1+dfsg/libr/util/buf.c:169:55:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	return r_buf_new_with_bytes ((const ut8 *)msg, (ut64)strlen (msg));
data/radare2-4.3.1+dfsg/libr/util/buf.c:613:50:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	return r_buf_append_bytes (b, (const ut8 *)str, strlen (str));
data/radare2-4.3.1+dfsg/libr/util/calc.c:205:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		num->nc.calc_len = strlen (p);
data/radare2-4.3.1+dfsg/libr/util/calc.c:374:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	nc->calc_len = strlen (s);
data/radare2-4.3.1+dfsg/libr/util/constr.c:20:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	for (p = c->b; p<e; p += strlen (p)+1) {
data/radare2-4.3.1+dfsg/libr/util/constr.c:29:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int i = c->i, l = strlen (str)+1;
data/radare2-4.3.1+dfsg/libr/util/ctype.c:292:42:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			if (strncmp (sdbkv_key (kv), "link.", strlen ("link."))) {
data/radare2-4.3.1+dfsg/libr/util/ctype.c:295:60:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			const char *linkptr = sdb_fmt ("0x%s", sdbkv_key (kv) + strlen ("link."));
data/radare2-4.3.1+dfsg/libr/util/ctype.c:570:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	size_t slen = strlen (str);
data/radare2-4.3.1+dfsg/libr/util/debruijn.c:17:31:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (!charset || !sequence || strlen (sequence) == maxlen) {
data/radare2-4.3.1+dfsg/libr/util/debruijn.c:23:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				sequence[strlen(sequence)] = charset[prenecklace_a[j]];
data/radare2-4.3.1+dfsg/libr/util/debruijn.c:24:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				if (strlen (sequence) == maxlen) {
data/radare2-4.3.1+dfsg/libr/util/debruijn.c:50:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int size = strlen (charset);
data/radare2-4.3.1+dfsg/libr/util/debruijn.c:83:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = strlen (pat);
data/radare2-4.3.1+dfsg/libr/util/debruijn.c:95:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy (pat2, pat + start, size - start);
data/radare2-4.3.1+dfsg/libr/util/debruijn.c:98:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	len = strlen (pat2);
data/radare2-4.3.1+dfsg/libr/util/file.c:186:9:  [1] (buffer) fgetc:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	while (fgetc (fd) != EOF) {
data/radare2-4.3.1+dfsg/libr/util/file.c:319:9:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
		ret = read (0, buf + i, BS);
data/radare2-4.3.1+dfsg/libr/util/file.c:714:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			len = strlen ((const char *)buf);
data/radare2-4.3.1+dfsg/libr/util/file.c:758:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (pathbuf, path, sizeof (pathbuf) - 1);
data/radare2-4.3.1+dfsg/libr/util/file.c:934:3:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
		read (m->fd, m->buf, m->len);
data/radare2-4.3.1+dfsg/libr/util/file.c:1036:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	namesz = strlen (prefix) + strlen (path) + 32;
data/radare2-4.3.1+dfsg/libr/util/file.c:1036:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	namesz = strlen (prefix) + strlen (path) + 32;
data/radare2-4.3.1+dfsg/libr/util/file.c:1089:16:  [1] (access) umask:
  Ensure that umask is given most restrictive possible setting (e.g., 066 or
  077) (CWE-732).
	mode_t mask = umask (S_IWGRP | S_IWOTH);
data/radare2-4.3.1+dfsg/libr/util/file.c:1091:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		h = mkstemps (name, strlen (suffix));
data/radare2-4.3.1+dfsg/libr/util/file.c:1095:2:  [1] (access) umask:
  Ensure that umask is given most restrictive possible setting (e.g., 066 or
  077) (CWE-732).
	umask (mask);
data/radare2-4.3.1+dfsg/libr/util/file.c:1132:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int path_len = strlen (path);
data/radare2-4.3.1+dfsg/libr/util/file.c:1198:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		char *filename = malloc (strlen (path) + strlen (file) + 2);
data/radare2-4.3.1+dfsg/libr/util/file.c:1198:44:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		char *filename = malloc (strlen (path) + strlen (file) + 2);
data/radare2-4.3.1+dfsg/libr/util/format.c:56:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int size = 0, len = strlen (s);
data/radare2-4.3.1+dfsg/libr/util/format.c:1229:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int buflen = strlen ((const char *)buf + seeki);
data/radare2-4.3.1+dfsg/libr/util/format.c:1230:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int vallen = strlen (setval);
data/radare2-4.3.1+dfsg/libr/util/format.c:1303:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int vallen = strlen(setval);
data/radare2-4.3.1+dfsg/libr/util/format.c:1577:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	fmt_len = strlen (fmt);
data/radare2-4.3.1+dfsg/libr/util/format.c:1677:40:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				if (format && !strncmp (format, f, strlen (format) - 1)) { // Avoid recursion here
data/radare2-4.3.1+dfsg/libr/util/format.c:1905:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	argend = fmt + strlen (fmt);
data/radare2-4.3.1+dfsg/libr/util/format.c:1970:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			len = strlen (nm ? nm + 1 : tmp);
data/radare2-4.3.1+dfsg/libr/util/format.c:2121:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
						: strlen (field) + 1)))) {
data/radare2-4.3.1+dfsg/libr/util/format.c:2424:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
						i += strlen ((char*)buf + i) + 1;
data/radare2-4.3.1+dfsg/libr/util/hex.c:79:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	char * const ret = malloc (strlen (code) * 3);
data/radare2-4.3.1+dfsg/libr/util/hex.c:209:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	char * const ret = malloc (strlen (code) * 3);
data/radare2-4.3.1+dfsg/libr/util/hex.c:286:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int i, len = strlen ((const char *)b64d);
data/radare2-4.3.1+dfsg/libr/util/hex.c:313:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	char * const ret = calloc (1, strlen (code) * 3);
data/radare2-4.3.1+dfsg/libr/util/hex.c:455:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int len, ilen = strlen (in)+1;
data/radare2-4.3.1+dfsg/libr/util/json_indent.c:55:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int osz = (1 + strlen (s)) * 20;
data/radare2-4.3.1+dfsg/libr/util/json_indent.c:157:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	const int indentSize = strlen (tab);
data/radare2-4.3.1+dfsg/libr/util/json_indent.c:163:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int osz = (1 + strlen (s)) * 20;
data/radare2-4.3.1+dfsg/libr/util/json_indent.c:255:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	const int indentSize = strlen (tab);
data/radare2-4.3.1+dfsg/libr/util/json_indent.c:263:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int osz = (1 + strlen (s)) * 20;
data/radare2-4.3.1+dfsg/libr/util/lib.c:436:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy (handler->desc, desc, sizeof (handler->desc)-1);
data/radare2-4.3.1+dfsg/libr/util/log.c:37:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy (cfg_logfile, filename, value_len);
data/radare2-4.3.1+dfsg/libr/util/name.c:44:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		maxlen = strlen (name);
data/radare2-4.3.1+dfsg/libr/util/name.c:74:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	len = strlen (name);
data/radare2-4.3.1+dfsg/libr/util/print.c:177:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	const int string_len = strlen (string);
data/radare2-4.3.1+dfsg/libr/util/print.c:459:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			white = r_str_pad (' ', 9 - strlen (space));
data/radare2-4.3.1+dfsg/libr/util/print.c:479:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			int w = R_MAX (10 - strlen (space), 0);
data/radare2-4.3.1+dfsg/libr/util/print.c:519:36:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	char *d, *dst = (char *) calloc ((strlen (str) + 2), 32);
data/radare2-4.3.1+dfsg/libr/util/print.c:550:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		memcpy (x, y, strlen (y));\
data/radare2-4.3.1+dfsg/libr/util/print.c:551:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		(x) += strlen (y);\
data/radare2-4.3.1+dfsg/libr/util/print.c:938:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					delta = strlen (soff) - 10;
data/radare2-4.3.1+dfsg/libr/util/print.c:941:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					delta = strlen (soff) - 9;
data/radare2-4.3.1+dfsg/libr/util/print.c:1981:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	ut32 c_reset = strlen (reset);
data/radare2-4.3.1+dfsg/libr/util/print.c:1983:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	ut32 opcode_sz = p && *p? strlen (p) * 10 + 1: 0;
data/radare2-4.3.1+dfsg/libr/util/print.c:2010:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			int nlen = strlen (num2);
data/radare2-4.3.1+dfsg/libr/util/print.c:2066:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				j += strlen (reset);
data/radare2-4.3.1+dfsg/libr/util/print.c:2070:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					ut32 color_len = strlen (color);
data/radare2-4.3.1+dfsg/libr/util/print.c:2076:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					j += strlen (color);
data/radare2-4.3.1+dfsg/libr/util/print.c:2101:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				j += strlen (num);
data/radare2-4.3.1+dfsg/libr/util/print.c:2108:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				ut32 reg_len = strlen (reg);
data/radare2-4.3.1+dfsg/libr/util/print.c:2115:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				j += strlen (reg);
data/radare2-4.3.1+dfsg/libr/util/print.c:2123:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
						if (strlen (map->name) + j + 1 >= COLORIZE_BUFSIZE) {
data/radare2-4.3.1+dfsg/libr/util/print.c:2128:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
						j += strlen (o + j);
data/radare2-4.3.1+dfsg/libr/util/print.c:2129:7:  [1] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant character.
						strcpy (o + j, ".");
data/radare2-4.3.1+dfsg/libr/util/print.c:2251:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	const int len = strlen (bin_str);
data/radare2-4.3.1+dfsg/libr/util/punycode.c:76:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int len = strlen ((const char *) input);
data/radare2-4.3.1+dfsg/libr/util/punycode.c:77:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	ut32 *result = calloc (strlen ((const char *) input) + 1, 4);
data/radare2-4.3.1+dfsg/libr/util/punycode.c:353:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		*dstlen = strlen ((const char *) finaldst);
data/radare2-4.3.1+dfsg/libr/util/qrcode.c:1046:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				memcpy (p, pixel, strlen (pixel));
data/radare2-4.3.1+dfsg/libr/util/qrcode.c:1047:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				p += strlen (pixel);
data/radare2-4.3.1+dfsg/libr/util/qrcode.c:1056:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				memcpy (p, pixel, strlen (pixel));
data/radare2-4.3.1+dfsg/libr/util/qrcode.c:1057:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				p += strlen (pixel);
data/radare2-4.3.1+dfsg/libr/util/randomart.c:53:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	size_t	 len = strlen(augmentation_string) - 1;
data/radare2-4.3.1+dfsg/libr/util/range.c:92:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int i, len = strlen (string) + 1;
data/radare2-4.3.1+dfsg/libr/util/regex/engine.c:149:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		stop = start + strlen(start);
data/radare2-4.3.1+dfsg/libr/util/regex/regcomp.c:257:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = strlen ((char *)pattern);
data/radare2-4.3.1+dfsg/libr/util/regex/regcomp.c:928:40:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	for (u = cp->multis; *u != '\0'; u += strlen (u) + 1) {
data/radare2-4.3.1+dfsg/libr/util/regex/regcomp.c:1380:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	cs->smultis += strlen(cp) + 1;
data/radare2-4.3.1+dfsg/libr/util/regex/regerror.c:108:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	len = strlen(s) + 1;
data/radare2-4.3.1+dfsg/libr/util/regex/utils.h:44:26:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
#define STRLCPY(x,y,z) { strncpy ((x),(y),(z)); (x)[(z)? (z) - 1: 0] = 0; }
data/radare2-4.3.1+dfsg/libr/util/sandbox.c:21:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if (!strncmp (path, homeWww, strlen (homeWww))) {
data/radare2-4.3.1+dfsg/libr/util/sandbox.c:43:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	root_len = strlen (R2_LIBDIR"/radare2");
data/radare2-4.3.1+dfsg/libr/util/sandbox.c:47:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	root_len = strlen (R2_DATDIR"/radare2");
data/radare2-4.3.1+dfsg/libr/util/sandbox.c:55:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	root_len = strlen (R2_WWWROOT);
data/radare2-4.3.1+dfsg/libr/util/sandbox.c:58:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		path += strlen (R2_WWWROOT);
data/radare2-4.3.1+dfsg/libr/util/sandbox.c:278:22:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	return enabled? -1: read (fd, buf, len);
data/radare2-4.3.1+dfsg/libr/util/seven.c:19:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	len = strlen (src);
data/radare2-4.3.1+dfsg/libr/util/seven.c:29:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                j = strlen(dest);
data/radare2-4.3.1+dfsg/libr/util/seven.c:44:36:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        int i, j, shift = 0, len = strlen (src);
data/radare2-4.3.1+dfsg/libr/util/seven.c:54:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                j = strlen(dest);
data/radare2-4.3.1+dfsg/libr/util/str.c:126:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int i, len = strlen (str);
data/radare2-4.3.1+dfsg/libr/util/str.c:176:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	const int len = strlen (b);
data/radare2-4.3.1+dfsg/libr/util/str.c:228:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	len = strlen (str);
data/radare2-4.3.1+dfsg/libr/util/str.c:305:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	length = strlen (home) + 1;
data/radare2-4.3.1+dfsg/libr/util/str.c:307:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		length += strlen (R_SYS_DIR) + strlen (str);
data/radare2-4.3.1+dfsg/libr/util/str.c:307:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		length += strlen (R_SYS_DIR) + strlen (str);
data/radare2-4.3.1+dfsg/libr/util/str.c:313:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int home_len = strlen (home);
data/radare2-4.3.1+dfsg/libr/util/str.c:334:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	for (len = strlen (s); len > 0; len--) {
data/radare2-4.3.1+dfsg/libr/util/str.c:383:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			int len = strlen (str + i);
data/radare2-4.3.1+dfsg/libr/util/str.c:400:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				memmove (p, p + 1, strlen (p + 1) + 1);
data/radare2-4.3.1+dfsg/libr/util/str.c:409:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				memmove (p, p + 1, strlen (p + 1) + 1);
data/radare2-4.3.1+dfsg/libr/util/str.c:433:35:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			memmove (str + i, str + i + 1, strlen (str + i));
data/radare2-4.3.1+dfsg/libr/util/str.c:437:35:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			memmove (str + i, str + i + 1, strlen (str + i));
data/radare2-4.3.1+dfsg/libr/util/str.c:447:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			memmove (q, p, strlen (p) + 1);
data/radare2-4.3.1+dfsg/libr/util/str.c:481:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				memmove (p, p+1, strlen (p + 1) + 1);
data/radare2-4.3.1+dfsg/libr/util/str.c:511:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int nslen = strlen (newstr);
data/radare2-4.3.1+dfsg/libr/util/str.c:524:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	blen = stralen - ((alen + strlen (p)) + 1);
data/radare2-4.3.1+dfsg/libr/util/str.c:528:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	nlen = alen + blen + strlen (newstr);
data/radare2-4.3.1+dfsg/libr/util/str.c:536:30:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	memcpy (out + alen, newstr, strlen (newstr) + 1);
data/radare2-4.3.1+dfsg/libr/util/str.c:538:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		memcpy (out + alen + strlen (newstr) + 1, p + strlen (p) + 1, blen + 1);
data/radare2-4.3.1+dfsg/libr/util/str.c:538:49:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		memcpy (out + alen + strlen (newstr) + 1, p + strlen (p) + 1, blen + 1);
data/radare2-4.3.1+dfsg/libr/util/str.c:557:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		ptr += strlen (ptr) + 1;
data/radare2-4.3.1+dfsg/libr/util/str.c:609:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int len = strlen (str);
data/radare2-4.3.1+dfsg/libr/util/str.c:669:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		r = base + strlen (base) - (q - s) - strlen (p);
data/radare2-4.3.1+dfsg/libr/util/str.c:669:40:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		r = base + strlen (base) - (q - s) - strlen (p);
data/radare2-4.3.1+dfsg/libr/util/str.c:679:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		p = base + strlen (base);
data/radare2-4.3.1+dfsg/libr/util/str.c:694:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = strlen (find);
data/radare2-4.3.1+dfsg/libr/util/str.c:734:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (strlen (str) < len) {
data/radare2-4.3.1+dfsg/libr/util/str.c:863:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy (out, ptr, len);
data/radare2-4.3.1+dfsg/libr/util/str.c:881:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	plen = strlen (ptr);
data/radare2-4.3.1+dfsg/libr/util/str.c:882:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	slen = strlen (string);
data/radare2-4.3.1+dfsg/libr/util/str.c:918:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int plen = strlen (ptr);
data/radare2-4.3.1+dfsg/libr/util/str.c:919:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int slen = strlen (string);
data/radare2-4.3.1+dfsg/libr/util/str.c:965:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int klen = strlen (key);
data/radare2-4.3.1+dfsg/libr/util/str.c:966:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int vlen = strlen (val);
data/radare2-4.3.1+dfsg/libr/util/str.c:974:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	slen = strlen (str);
data/radare2-4.3.1+dfsg/libr/util/str.c:1012:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	klen = strlen (key);
data/radare2-4.3.1+dfsg/libr/util/str.c:1013:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	vlen = strlen (val);
data/radare2-4.3.1+dfsg/libr/util/str.c:1015:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	slen = strlen (str);
data/radare2-4.3.1+dfsg/libr/util/str.c:1088:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	klen = strlen (key);
data/radare2-4.3.1+dfsg/libr/util/str.c:1089:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	vlen = strlen (val);
data/radare2-4.3.1+dfsg/libr/util/str.c:1093:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	slen = strlen (str) + 1;
data/radare2-4.3.1+dfsg/libr/util/str.c:1124:31:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		memcpy (str_p + vlen, scnd, strlen (scnd) + 1);
data/radare2-4.3.1+dfsg/libr/util/str.c:1141:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (str, heaped, sz);
data/radare2-4.3.1+dfsg/libr/util/str.c:1218:48:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		memmove (buf + i + 1, buf + i + esc_seq_len, strlen (buf + i + esc_seq_len) + 1);
data/radare2-4.3.1+dfsg/libr/util/str.c:1251:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	size_t len = strlen (s);
data/radare2-4.3.1+dfsg/libr/util/str.c:1338:30:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	char *new_buf = malloc (1 + strlen (buf) * (show_asciidot ? 2 : 4));
data/radare2-4.3.1+dfsg/libr/util/str.c:1419:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = strlen (buf);
data/radare2-4.3.1+dfsg/libr/util/str.c:1512:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	len = buf_size < 0 ? strlen (buf) : buf_size;
data/radare2-4.3.1+dfsg/libr/util/str.c:1719:46:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int ulen = r_utf8_decode ((const ut8*)str, strlen (str), NULL);
data/radare2-4.3.1+dfsg/libr/util/str.c:1734:46:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int ulen = r_utf8_decode ((const ut8*)str, strlen (str), NULL);
data/radare2-4.3.1+dfsg/libr/util/str.c:1750:46:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int ulen = r_utf8_decode ((const ut8*)str, strlen (str), NULL);
data/radare2-4.3.1+dfsg/libr/util/str.c:1810:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = strlen (str);
data/radare2-4.3.1+dfsg/libr/util/str.c:1869:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	r_len = str_len + nr_of_lines * strlen (Color_RESET) + 1;
data/radare2-4.3.1+dfsg/libr/util/str.c:1885:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				if (strlen (reset) < (r_end - r)) {
data/radare2-4.3.1+dfsg/libr/util/str.c:1886:31:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					const int reset_length = strlen (reset);
data/radare2-4.3.1+dfsg/libr/util/str.c:1984:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int length = strlen (str);
data/radare2-4.3.1+dfsg/libr/util/str.c:2019:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int len = strlen (str);
data/radare2-4.3.1+dfsg/libr/util/str.c:2039:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = strlen (str);
data/radare2-4.3.1+dfsg/libr/util/str.c:2107:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	str = malloc ((2 * strlen (arg) + 1) * sizeof (char)); // Worse case when every character need to be escaped
data/radare2-4.3.1+dfsg/libr/util/str.c:2127:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	return realloc (str, (strlen(str)+1) * sizeof (char));
data/radare2-4.3.1+dfsg/libr/util/str.c:2159:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	str = malloc ((2 * strlen (path) + 1) * sizeof (char));
data/radare2-4.3.1+dfsg/libr/util/str.c:2178:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	return realloc (str, (strlen (str) + 1) * sizeof (char));
data/radare2-4.3.1+dfsg/libr/util/str.c:2190:41:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			memmove (path + i + 1, path + i + 2, strlen (path + i + 2) + 1);
data/radare2-4.3.1+dfsg/libr/util/str.c:2213:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	args = malloc (128 + strlen (cmdline) * sizeof (char)); // Unescaped args will be shorter, so strlen (cmdline) will be enough
data/radare2-4.3.1+dfsg/libr/util/str.c:2340:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (strlen (but) >= bsz) {
data/radare2-4.3.1+dfsg/libr/util/str.c:2366:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (strlen (but) >= bsz) {
data/radare2-4.3.1+dfsg/libr/util/str.c:2448:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	size_t hay_len = strlen (a);
data/radare2-4.3.1+dfsg/libr/util/str.c:2449:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	size_t needle_len = strlen (b);
data/radare2-4.3.1+dfsg/libr/util/str.c:2464:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	return write (fd, b, strlen (b));
data/radare2-4.3.1+dfsg/libr/util/str.c:2561:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	od = d = malloc (1 + (strlen (s) * 4));
data/radare2-4.3.1+dfsg/libr/util/str.c:2578:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	char *trimDown = realloc (od, strlen (od) + 1); // FIT
data/radare2-4.3.1+dfsg/libr/util/str.c:2697:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = strlen (s);
data/radare2-4.3.1+dfsg/libr/util/str.c:2727:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	tmp = realloc (od, strlen (od) + 1); // FIT
data/radare2-4.3.1+dfsg/libr/util/str.c:2741:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	const char *argend = arg+strlen (fmt);
data/radare2-4.3.1+dfsg/libr/util/str.c:2782:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			int len = strlen (r_str_word_get0 (args + 1, i));
data/radare2-4.3.1+dfsg/libr/util/str.c:2878:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	len = strlen (s);
data/radare2-4.3.1+dfsg/libr/util/str.c:2879:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	pfx_len = strlen (pfx);
data/radare2-4.3.1+dfsg/libr/util/str.c:2920:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		ut32 sz = strlen (string);
data/radare2-4.3.1+dfsg/libr/util/str.c:3034:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = strlen (str1);
data/radare2-4.3.1+dfsg/libr/util/str.c:3099:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		c1 = strstr (c0 + strlen (prefix), suffix);
data/radare2-4.3.1+dfsg/libr/util/str.c:3101:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			return r_str_ndup (c0 + strlen (prefix), (c1 - c0 - strlen (prefix)));
data/radare2-4.3.1+dfsg/libr/util/str.c:3101:56:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			return r_str_ndup (c0 + strlen (prefix), (c1 - c0 - strlen (prefix)));
data/radare2-4.3.1+dfsg/libr/util/str.c:3112:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	return !strncmp (str, needle, strlen (needle));
data/radare2-4.3.1+dfsg/libr/util/str.c:3120:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int slen = strlen (str);
data/radare2-4.3.1+dfsg/libr/util/str.c:3121:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int nlen = strlen (needle);
data/radare2-4.3.1+dfsg/libr/util/str.c:3323:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	ut32 l_str = strlen (str);
data/radare2-4.3.1+dfsg/libr/util/str.c:3324:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	ut32 l_reset = strlen (color_reset);
data/radare2-4.3.1+dfsg/libr/util/str.c:3325:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	ut32 l_color = color? strlen (color): 0;
data/radare2-4.3.1+dfsg/libr/util/str.c:3332:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	ut32 l_word = strlen (word);
data/radare2-4.3.1+dfsg/libr/util/str.c:3345:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (o + j, str + i, to_copy);
data/radare2-4.3.1+dfsg/libr/util/str.c:3349:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				if (j + strlen (color) >= sizeof (o)) {
data/radare2-4.3.1+dfsg/libr/util/str.c:3362:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				if (j + strlen (color_reset) >= sizeof (o)) {
data/radare2-4.3.1+dfsg/libr/util/str.c:3372:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			if (j + strlen (str + i) >= sizeof (o)) {
data/radare2-4.3.1+dfsg/libr/util/str.c:3442:32:  [1] (buffer) wcslen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	return r_str_wc_to_mb_l (buf, wcslen (buf));
data/radare2-4.3.1+dfsg/libr/util/str.c:3449:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	return r_str_mb_to_wc_l (buf, strlen (buf));
data/radare2-4.3.1+dfsg/libr/util/str.c:3482:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	klen = strlen (key);
data/radare2-4.3.1+dfsg/libr/util/str.c:3483:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	slen = strlen (str);
data/radare2-4.3.1+dfsg/libr/util/str.c:3589:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		maxcol = R_MAX (strlen (line), maxcol);
data/radare2-4.3.1+dfsg/libr/util/str.c:3599:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int cols = strlen (srcline);
data/radare2-4.3.1+dfsg/libr/util/str_trim.c:107:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		memmove (str, p, strlen (p) + 1);
data/radare2-4.3.1+dfsg/libr/util/str_trim.c:115:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	size_t length = strlen (str);
data/radare2-4.3.1+dfsg/libr/util/str_trim.c:147:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		str_len = strlen (str);
data/radare2-4.3.1+dfsg/libr/util/strbuf.c:129:45:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	return r_strbuf_setbin (sb, (const ut8*)s, strlen (s));
data/radare2-4.3.1+dfsg/libr/util/strbuf.c:175:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int l = strlen (s);
data/radare2-4.3.1+dfsg/libr/util/strbuf.c:197:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int l = strlen (s);
data/radare2-4.3.1+dfsg/libr/util/strpool.c:70:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int l = strlen (s) + 1;
data/radare2-4.3.1+dfsg/libr/util/strpool.c:130:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		char *q = ptr + strlen (ptr) + 1;
data/radare2-4.3.1+dfsg/libr/util/sys.c:356:9:  [1] (obsolete) usleep:
  This C routine is considered obsolete (as opposed to the shell command by
  the same name). The interaction of this function with SIGALRM and other
  timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
  unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
	return usleep (usecs);
data/radare2-4.3.1+dfsg/libr/util/sys.c:684:19:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
				if (!(bytes = read (sh_out[0], buffer, sizeof (buffer)-1))) {
data/radare2-4.3.1+dfsg/libr/util/sys.c:693:10:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
				if (!read (sh_err[0], buffer, sizeof (buffer)-1)) {
data/radare2-4.3.1+dfsg/libr/util/sys.c:699:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				int inputptr_len = strlen (inputptr);
data/radare2-4.3.1+dfsg/libr/util/sys.c:929:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		char p = ptr[strlen (arch)];
data/radare2-4.3.1+dfsg/libr/util/sys.c:1119:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (tmp, name, length);
data/radare2-4.3.1+dfsg/libr/util/syscmd.c:182:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			homepath = r_str_home ((strlen (path) > 5)? path + 6: NULL);
data/radare2-4.3.1+dfsg/libr/util/syscmd.c:216:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (path[strlen (path) - 1] == '/') {
data/radare2-4.3.1+dfsg/libr/util/syscmd.c:488:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (strlen (input) < 3) {
data/radare2-4.3.1+dfsg/libr/util/table.c:540:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			match = strlen (nn) == atoi (un);
data/radare2-4.3.1+dfsg/libr/util/table.c:543:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			match = strlen (nn) > atoi (un);
data/radare2-4.3.1+dfsg/libr/util/table.c:546:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			match = strlen (nn) < atoi (un);
data/radare2-4.3.1+dfsg/libr/util/table.c:591:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int res = strlen (wa) - strlen (wb);
data/radare2-4.3.1+dfsg/libr/util/table.c:591:26:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int res = strlen (wa) - strlen (wb);
data/radare2-4.3.1+dfsg/libr/util/thread_sem.c:29:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (strlen (name) > R_SEM_NAME_LEN_MAX-1) {
data/radare2-4.3.1+dfsg/libr/util/ubase64.c:48:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = strlen (bin);
data/radare2-4.3.1+dfsg/libr/util/ubase64.c:68:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = strlen (in) + 1;
data/radare2-4.3.1+dfsg/libr/util/ubase64.c:81:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = strlen ((const char *)bin);
data/radare2-4.3.1+dfsg/libr/util/ubase64.c:98:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = strlen (str);
data/radare2-4.3.1+dfsg/libr/util/unum.c:191:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	len = strlen (str);
data/radare2-4.3.1+dfsg/libr/util/unum.c:208:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		for (j = 0, i = strlen (str) - 1; i > 0; i--, j++) {
data/radare2-4.3.1+dfsg/libr/util/unum.c:269:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			if (strlen (str) <= 65) { // 64 bit + the 'b' suffix
data/radare2-4.3.1+dfsg/libr/util/unum.c:270:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				for (j = 0, i = strlen (str) - 2; i >= 0; i--, j++) {
data/radare2-4.3.1+dfsg/libr/util/unum.c:291:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			for (i = strlen (str) - 2; i >= 0; i--) {
data/radare2-4.3.1+dfsg/libr/util/unum.c:440:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	len = strlen (str) + 1;
data/radare2-4.3.1+dfsg/libr/util/unum.c:488:55:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	return (IS_DIGIT (*str) && (strchr (str, '.') || str[strlen (str) - 1] == 'f'));
data/radare2-4.3.1+dfsg/libr/util/unum.c:739:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	i = strlen (hex) * 4;
data/radare2-4.3.1+dfsg/libr/util/unum.c:740:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	p = malloc (strlen (hex) + 10);
data/radare2-4.3.1+dfsg/libr/util/unum.c:763:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int i = strlen (hex) * 4;
data/radare2-4.3.1+dfsg/libr/util/unum.c:764:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	char *p = malloc (strlen (hex) + 10);
data/radare2-4.3.1+dfsg/libr/util/unum.c:851:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	const int len = strlen (str);
data/radare2-4.3.1+dfsg/libr/util/unum.c:866:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		str += strlen (str) + 1;
data/radare2-4.3.1+dfsg/libr/util/utf8.c:739:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = strlen ((const char *)str);
data/radare2-4.3.1+dfsg/libr/util/w32-sys.c:70:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		WriteFile (in, input, strlen (input) + 1, &nBytesWritten, NULL);
data/radare2-4.3.1+dfsg/shlr/bochs/src/libbochs.c:99:7:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
		n = read (b->hReadPipeIn, lpTmpBuffer, SIZE_BUF - 1);
data/radare2-4.3.1+dfsg/shlr/bochs/src/libbochs.c:121:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	size_t cmdlen = strlen (cmdbuff);
data/radare2-4.3.1+dfsg/shlr/bochs/src/libbochs.c:149:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	lenRec = strlen (data);
data/radare2-4.3.1+dfsg/shlr/bochs/src/libbochs.c:289:7:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
		if (read (aStdoutPipe[PIPE_READ], lpTmpBuffer, 1) != 1) {
data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c:20:52:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			g->stub_features.pkt_sz = R_MIN (strtoul (tok + strlen ("PacketSize="), NULL, 16), 2048);
data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c:30:45:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				g->stub_features.qXfer_btrace_read = (p[strlen ("btrace:read")] == '+');
data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c:32:50:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				g->stub_features.qXfer_btrace_conf_read = (p[strlen ("btrace-conf:read")] == '+');
data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c:34:42:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				g->stub_features.qXfer_spu_read = (p[strlen ("spu:read")] == '+');
data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c:36:43:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				g->stub_features.qXfer_spu_write = (p[strlen ("spu:write")] == '+');
data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c:38:48:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				g->stub_features.qXfer_libraries_read = (p[strlen ("libraries:read")] == '+');
data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c:40:53:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				g->stub_features.qXfer_libraries_svr4_read = (p[strlen ("libraries-svr4:read")] == '+');
data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c:42:49:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				g->stub_features.qXfer_memory_map_read = (p[strlen ("memory-map:read")] == '+');
data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c:44:43:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				g->stub_features.qXfer_auxv_read = (p[strlen ("auxv:read")] == '+');
data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c:46:48:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				g->stub_features.qXfer_exec_file_read = (p[strlen ("exec-file:read")] == '+');
data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c:48:47:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				g->stub_features.qXfer_features_read = (p[strlen ("features:read")] == '+');
data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c:50:44:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				g->stub_features.qXfer_sdata_read = (p[strlen ("sdata:read")] == '+');
data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c:52:46:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				g->stub_features.qXfer_siginfo_read = (p[strlen ("siginfo:read")] == '+');
data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c:54:47:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				g->stub_features.qXfer_siginfo_write = (p[strlen ("siginfo:write")] == '+');
data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c:56:46:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				g->stub_features.qXfer_threads_read = (p[strlen ("threads:read")] == '+');
data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c:58:54:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				g->stub_features.qXfer_traceframe_info_read = (p[strlen ("traceframe-info:read")] == '+');
data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c:60:42:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				g->stub_features.qXfer_uib_read = (p[strlen ("uib:read")] == '+');
data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c:62:44:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				g->stub_features.qXfer_fdpic_read = (p[strlen ("fdpic:read")] == '+');
data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c:64:45:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				g->stub_features.qXfer_osdata_read = (p[strlen ("osdata:read")] == '+');
data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c:68:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				if (!tok[strlen ("Qbtrace")]) {
data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c:80:50:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					g->stub_features.Qbtrace_conf_bts_size = (p[strlen ("-conf:bts:size")] == '+');
data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c:82:49:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					g->stub_features.Qbtrace_conf_pt_size = (p[strlen ("-conf:pt:size")] == '+');
data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c:85:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				g->stub_features.QNonStop = (tok[strlen ("QNonStop")] == '+');
data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c:87:44:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				g->stub_features.QCatchSyscalls = (tok[strlen ("QCatchSyscalls")] == '+');
data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c:89:42:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				g->stub_features.QPassSignals = (tok[strlen ("QPassSignals")] == '+');
data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c:91:45:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				g->stub_features.QStartNoAckMode = (tok[strlen ("QStartNoAckMode")] == '+');
data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c:93:36:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				g->stub_features.QAgent = (tok[strlen ("QAgent")] == '+');
data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c:95:36:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				g->stub_features.QAllow = (tok[strlen ("QAllow")] == '+');
data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c:97:51:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				g->stub_features.QDisableRandomization = (tok[strlen ("QDisableRandomization")] == '+');
data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c:99:43:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				g->stub_features.QTBuffer_size = (tok[strlen ("QTBuffer:size")] == '+');
data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c:101:43:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				g->stub_features.QThreadEvents = (tok[strlen ("QThreadEvents")] == '+');
data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c:105:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					= (tok[strlen ("QThreadSuffixSupported")] == '+');
data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c:109:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					= (tok[strlen ("QListThreadsInStopReply")] == '+');
data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c:112:41:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			g->stub_features.multiprocess = (tok[strlen ("multiprocess")] == '+');
data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c:115:39:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			g->stub_features.lldb.qEcho = (tok[strlen ("qEcho")] == '+');
data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c:117:40:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			g->stub_features.ReverseStep = (tok[strlen ("ReverseStep")] == '+');
data/radare2-4.3.1+dfsg/shlr/gdb/src/common.c:119:44:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			g->stub_features.ReverseContinue = (tok[strlen ("ReverseContinue")] == '+');
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:354:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (!(ptr = strtok (g->data + strlen ("vCont;"), ";"))) {
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:462:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	buffer_size = strlen (CMD_ATTACH) + (sizeof (int) * 2) + 1;
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:534:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	buffer_size = strlen (CMD_DETACH_MP) + (sizeof (pid) * 2) + 1;
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:619:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	buffer_size = strlen (CMD_KILL_MP) + (sizeof (pid) * 2) + 1;
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:959:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (command, CMD_C_CONT, sizeof (command) - 1);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:1116:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	len = strlen (registers);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:1150:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				const int val_len = strlen (name_end); // size of the rest
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:1457:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	buf_len = (strlen (filename) * 2) + strlen ("vFile:open:") + 30;
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:1457:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	buf_len = (strlen (filename) * 2) + strlen ("vFile:open:") + 30;
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:1466:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	pack_hex (filename, strlen (filename), buf + strlen (buf));
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:1466:47:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	pack_hex (filename, strlen (filename), buf + strlen (buf));
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:1467:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	snprintf (buf + strlen (buf), buf_len - strlen (buf) - 1, ",%x,%x", flags, mode);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:1467:42:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	snprintf (buf + strlen (buf), buf_len - strlen (buf) - 1, ",%x,%x", flags, mode);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:1582:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	len = strlen (cmd) * 2 + 8;
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:1593:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	pack_hex (cmd, strlen (cmd), buf + 6);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:1679:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		off += strlen (g->data + 1);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:1957:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		ptr = g->data + strlen ("TextSeg=");
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:1970:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			ptr += strlen ("DataSeg=");
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:1984:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	ptr = g->data + strlen ("Text=");
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:1996:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	ptr += strlen (";Data=");
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/core.c:2010:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		ptr += strlen ("Bss=");
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/responses.c:42:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int len = strlen (g->data);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/responses.c:326:46:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				if (!(g->stop_reason.exec.path = calloc (strlen (ptr1) / 2, 1))) {
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/responses.c:329:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				unpack_hex (ptr2, strlen (ptr2), g->stop_reason.exec.path);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/responses.c:427:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		unpack_hex (ptr2, strlen (ptr2), buf + g->registers[regnum].offset);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/xml.c:596:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (tmpflag->type, tmp1, type_sz - 1);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/xml.c:636:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
			strncpy (tmpflag->fields[num_fields].name, tmp1, name_sz - 1);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/xml.c:833:5:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
				strncpy (pc_alias + 4, regname, regname_len);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/xml.c:834:5:  [1] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant character.
				strcpy (pc_alias + 4 + regname_len, "\n");
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/xml.c:867:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (tmpreg->name, regname, sizeof (tmpreg->name) - 1);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbclient/xml.c:870:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (tmpreg->type, regtype, sizeof (tmpreg->type) - 1);
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbserver/core.c:62:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	ptr = g->data + strlen ("qXfer:exec-file:read:");
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbserver/core.c:101:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (memlen2 != strlen (memstr)) {
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbserver/core.c:465:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	len = strlen (g->registers[regnum].name) + strlen (ptr) + 10;
data/radare2-4.3.1+dfsg/shlr/gdb/src/gdbserver/core.c:465:45:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	len = strlen (g->registers[regnum].name) + strlen (ptr) + 10;
data/radare2-4.3.1+dfsg/shlr/gdb/src/packet.c:213:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	msg_len = strlen (msg);
data/radare2-4.3.1+dfsg/shlr/gdb/src/utils.c:142:4:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120). Risk is low because the source is a
  constant string.
			strncpy (dest, "-1", len);
data/radare2-4.3.1+dfsg/shlr/grub/fs/hfs.c:113:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  grub_uint8_t strlen;
data/radare2-4.3.1+dfsg/shlr/grub/fs/hfs.c:627:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  int minlen = (k1->strlen < k2->strlen) ? k1->strlen : k2->strlen;
data/radare2-4.3.1+dfsg/shlr/grub/fs/hfs.c:627:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  int minlen = (k1->strlen < k2->strlen) ? k1->strlen : k2->strlen;
data/radare2-4.3.1+dfsg/shlr/grub/fs/hfs.c:627:48:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  int minlen = (k1->strlen < k2->strlen) ? k1->strlen : k2->strlen;
data/radare2-4.3.1+dfsg/shlr/grub/fs/hfs.c:627:61:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  int minlen = (k1->strlen < k2->strlen) ? k1->strlen : k2->strlen;
data/radare2-4.3.1+dfsg/shlr/grub/fs/hfs.c:641:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  return (k1->strlen - k2->strlen);
data/radare2-4.3.1+dfsg/shlr/grub/fs/hfs.c:874:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  if (hnd->type == 0xFF && ckey->strlen > 0)
data/radare2-4.3.1+dfsg/shlr/grub/fs/hfs.c:1040:52:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  grub_strncpy (fname, (char *) (ckey->str), ckey->strlen);
data/radare2-4.3.1+dfsg/shlr/grub/fs/reiserfs.c:1241:56:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
                            file->offset % block_size, read,
data/radare2-4.3.1+dfsg/shlr/grub/fs/reiserfs.c:1245:28:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
            read_length += read;
data/radare2-4.3.1+dfsg/shlr/grub/include/grub/disk.h:75:16:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  grub_err_t (*read) (struct grub_disk *disk, grub_disk_addr_t sector,
data/radare2-4.3.1+dfsg/shlr/grub/include/grub/fs.h:59:18:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  grub_ssize_t (*read) (struct grub_file *file, char *buf, grub_size_t len);
data/radare2-4.3.1+dfsg/shlr/grub/kern/disk.c:470:23:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	      || (disk->dev->read) (disk, start_sector,
data/radare2-4.3.1+dfsg/shlr/grub/kern/disk.c:489:24:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	      if ((disk->dev->read) (disk, sector, num, tmp_buf))
data/radare2-4.3.1+dfsg/shlr/grub/kern/disk.c:592:24:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	      if ((disk->dev->read) (disk, sector, 1, tmp_buf) != GRUB_ERR_NONE)
data/radare2-4.3.1+dfsg/shlr/grub/kern/disk.c:611:21:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	      ((disk->dev->read) (disk, sector, n, buf) != GRUB_ERR_NONE))
data/radare2-4.3.1+dfsg/shlr/grub/kern/file.c:144:20:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  res = (file->fs->read) (file, buf, len);
data/radare2-4.3.1+dfsg/shlr/grub/main.c:101:13:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
		err = e2->read (file, buf, file->size);
data/radare2-4.3.1+dfsg/shlr/grub/main.c:123:17:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	gfs->file->fs->read (gfs->file, buf, gfs->file->size);
data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/internal/public_namespace.h:21:32:  [1] (free) memalign:
  On some systems (though not Linux-based systems) an attempt to free()
  results from memalign() may fail. This may, on a few systems, be
  exploitable. Also note that memalign() may not check that the boundary
  parameter is correct (CWE-676). Use posix_memalign instead (defined in
  POSIX's 1003.1d). Don't switch to valloc(); it is marked as obsolete in BSD
  4.3, as legacy in SUSv2, and is no longer defined in SUSv3. In some cases,
  malloc()'s alignment may be sufficient.
#define	je_memalign JEMALLOC_N(memalign)
data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/jemalloc.h:79:23:  [1] (free) memalign:
  On some systems (though not Linux-based systems) an attempt to free()
  results from memalign() may fail. This may, on a few systems, be
  exploitable. Also note that memalign() may not check that the boundary
  parameter is correct (CWE-676). Use posix_memalign instead (defined in
  POSIX's 1003.1d). Don't switch to valloc(); it is marked as obsolete in BSD
  4.3, as legacy in SUSv2, and is no longer defined in SUSv3. In some cases,
  malloc()'s alignment may be sufficient.
#  define je_memalign memalign
data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/jemalloc.h:344:11:  [1] (free) memalign:
  On some systems (though not Linux-based systems) an attempt to free()
  results from memalign() may fail. This may, on a few systems, be
  exploitable. Also note that memalign() may not check that the boundary
  parameter is correct (CWE-676). Use posix_memalign instead (defined in
  POSIX's 1003.1d). Don't switch to valloc(); it is marked as obsolete in BSD
  4.3, as legacy in SUSv2, and is no longer defined in SUSv3. In some cases,
  malloc()'s alignment may be sufficient.
#  define memalign je_memalign
data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/jemalloc_mangle.h:32:11:  [1] (free) memalign:
  On some systems (though not Linux-based systems) an attempt to free()
  results from memalign() may fail. This may, on a few systems, be
  exploitable. Also note that memalign() may not check that the boundary
  parameter is correct (CWE-676). Use posix_memalign instead (defined in
  POSIX's 1003.1d). Don't switch to valloc(); it is marked as obsolete in BSD
  4.3, as legacy in SUSv2, and is no longer defined in SUSv3. In some cases,
  malloc()'s alignment may be sufficient.
#  define memalign je_memalign
data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/jemalloc_mangle_jet.h:32:11:  [1] (free) memalign:
  On some systems (though not Linux-based systems) an attempt to free()
  results from memalign() may fail. This may, on a few systems, be
  exploitable. Also note that memalign() may not check that the boundary
  parameter is correct (CWE-676). Use posix_memalign instead (defined in
  POSIX's 1003.1d). Don't switch to valloc(); it is marked as obsolete in BSD
  4.3, as legacy in SUSv2, and is no longer defined in SUSv3. In some cases,
  malloc()'s alignment may be sufficient.
#  define memalign jet_memalign
data/radare2-4.3.1+dfsg/shlr/heap/include/r_jemalloc/jemalloc_rename.h:27:23:  [1] (free) memalign:
  On some systems (though not Linux-based systems) an attempt to free()
  results from memalign() may fail. This may, on a few systems, be
  exploitable. Also note that memalign() may not check that the boundary
  parameter is correct (CWE-676). Use posix_memalign instead (defined in
  POSIX's 1003.1d). Don't switch to valloc(); it is marked as obsolete in BSD
  4.3, as legacy in SUSv2, and is no longer defined in SUSv3. In some cases,
  malloc()'s alignment may be sufficient.
#  define je_memalign memalign
data/radare2-4.3.1+dfsg/shlr/java/class.c:555:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		params_len += strlen (str);
data/radare2-4.3.1+dfsg/shlr/java/class.c:576:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	prototype_len += (flags ? strlen (flags) + 1 : 0); // space vs no space
data/radare2-4.3.1+dfsg/shlr/java/class.c:577:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	prototype_len += strlen (name) + 1; // name + space
data/radare2-4.3.1+dfsg/shlr/java/class.c:578:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	prototype_len += strlen (r_val_str) + 1; // r_value + space
data/radare2-4.3.1+dfsg/shlr/java/class.c:579:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	prototype_len += strlen (p_val_str) + 3; // space + l_paren + params + r_paren
data/radare2-4.3.1+dfsg/shlr/java/class.c:594:46:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	ut32 desc_len = descriptor && *descriptor ? strlen (descriptor) : 0,
data/radare2-4.3.1+dfsg/shlr/java/class.c:595:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	name_len = name && *name ? strlen (name) : 0,
data/radare2-4.3.1+dfsg/shlr/java/class.c:596:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	flags_len = flags && *flags ? strlen (flags) : 0,
data/radare2-4.3.1+dfsg/shlr/java/class.c:954:51:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	ut32 str_len = array_cnt ? (array_cnt + 1) * 2 + strlen (arg_str) : strlen (arg_str);
data/radare2-4.3.1+dfsg/shlr/java/class.c:954:70:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	ut32 str_len = array_cnt ? (array_cnt + 1) * 2 + strlen (arg_str) : strlen (arg_str);
data/radare2-4.3.1+dfsg/shlr/java/class.c:1135:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	ut16 size = strlen (access_flags_str) + 1;
data/radare2-4.3.1+dfsg/shlr/java/class.c:1190:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			max_str_len += (strlen (access_flags[i].str) + 1);
data/radare2-4.3.1+dfsg/shlr/java/class.c:1191:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			if (max_str_len < strlen (access_flags[i].str)) {
data/radare2-4.3.1+dfsg/shlr/java/class.c:1203:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				ut8 len = strlen (access_flags[i].str);
data/radare2-4.3.1+dfsg/shlr/java/class.c:1232:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	ut32 class_name_len = cname ? strlen (cname) : strlen ("_unknown_");
data/radare2-4.3.1+dfsg/shlr/java/class.c:1232:49:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	ut32 class_name_len = cname ? strlen (cname) : strlen ("_unknown_");
data/radare2-4.3.1+dfsg/shlr/java/class.c:6214:31:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	char *value = malloc (size + strlen (utf8_str));
data/radare2-4.3.1+dfsg/shlr/java/class.c:6224:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			value = malloc (size + strlen (utf8_str));
data/radare2-4.3.1+dfsg/shlr/java/class.c:7567:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		ut32 tmp_str_len = tmp_str ? strlen (tmp_str) + 4 : 0;
data/radare2-4.3.1+dfsg/shlr/java/class.c:7644:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		ut32 len = strlen (fm_type->name) + 30;
data/radare2-4.3.1+dfsg/shlr/java/class.c:7802:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	key_buf_size = strlen (class_name) + 4 + 8 + 1;
data/radare2-4.3.1+dfsg/shlr/java/class.c:7860:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	key_size += strlen (class_name);
data/radare2-4.3.1+dfsg/shlr/java/class.c:7861:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	value_buffer_size += strlen (class_name);
data/radare2-4.3.1+dfsg/shlr/java/class.c:7944:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	key_size += strlen (class_name);
data/radare2-4.3.1+dfsg/shlr/java/class.c:7945:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	value_buffer_size += strlen (class_name);
data/radare2-4.3.1+dfsg/shlr/java/class.c:8337:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		memory_alloc = strlen (class_str) + strlen (name_str) + strlen (desc_str) + 3;
data/radare2-4.3.1+dfsg/shlr/java/class.c:8337:39:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		memory_alloc = strlen (class_str) + strlen (name_str) + strlen (desc_str) + 3;
data/radare2-4.3.1+dfsg/shlr/java/class.c:8337:59:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		memory_alloc = strlen (class_str) + strlen (name_str) + strlen (desc_str) + 3;
data/radare2-4.3.1+dfsg/shlr/java/class.c:8342:52:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				out = r_base64_encode_dyn ((const char *) str, strlen (str));
data/radare2-4.3.1+dfsg/shlr/java/class.c:8374:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		memory_alloc = strlen (class_str) + strlen (name_str) + strlen (desc_str) + 3;
data/radare2-4.3.1+dfsg/shlr/java/class.c:8374:39:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		memory_alloc = strlen (class_str) + strlen (name_str) + strlen (desc_str) + 3;
data/radare2-4.3.1+dfsg/shlr/java/class.c:8374:59:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		memory_alloc = strlen (class_str) + strlen (name_str) + strlen (desc_str) + 3;
data/radare2-4.3.1+dfsg/shlr/java/class.c:8379:52:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				out = r_base64_encode_dyn ((const char *) str, strlen (str));
data/radare2-4.3.1+dfsg/shlr/java/class.c:8400:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			length = strlen (empty);
data/radare2-4.3.1+dfsg/shlr/java/class.c:8407:52:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				out = r_base64_encode_dyn ((const char *) str, strlen (str));
data/radare2-4.3.1+dfsg/shlr/java/class.c:8427:51:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			out = r_base64_encode_dyn ((const char *) str, strlen (str));
data/radare2-4.3.1+dfsg/shlr/java/class.c:8435:51:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			out = r_base64_encode_dyn ((const char *) str, strlen (str));
data/radare2-4.3.1+dfsg/shlr/java/class.c:8443:51:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			out = r_base64_encode_dyn ((const char *) str, strlen (str));
data/radare2-4.3.1+dfsg/shlr/java/class.c:8451:51:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			out = r_base64_encode_dyn ((const char *) str, strlen (str));
data/radare2-4.3.1+dfsg/shlr/java/class.c:8464:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		memory_alloc = strlen (name_str) + strlen (desc_str) + 3;
data/radare2-4.3.1+dfsg/shlr/java/class.c:8464:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		memory_alloc = strlen (name_str) + strlen (desc_str) + 3;
data/radare2-4.3.1+dfsg/shlr/java/class.c:8469:52:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				out = r_base64_encode_dyn ((const char *) str, strlen (str));
data/radare2-4.3.1+dfsg/shlr/java/class.c:8621:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			length = strlen (empty);
data/radare2-4.3.1+dfsg/shlr/java/class.c:8727:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		ut32 len = strlen (fm_type->name) + 30;
data/radare2-4.3.1+dfsg/shlr/java/code.c:304:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy (name, string, sizeof (name) - 1);
data/radare2-4.3.1+dfsg/shlr/java/dsojson.c:52:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len += strlen (str) + 1;
data/radare2-4.3.1+dfsg/shlr/java/dsojson.c:252:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			int len = 2 + 3 + strlen (key);
data/radare2-4.3.1+dfsg/shlr/java/dsojson.c:253:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			if (value) len += strlen (value);
data/radare2-4.3.1+dfsg/shlr/java/dsojson.c:680:2:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
	strcat (cpy_buffer, "\"");
data/radare2-4.3.1+dfsg/shlr/java/dsojson.c:695:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	allocDsoStr (dsoStr, strlen (str));
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:105:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  i->filename = malloc(strlen(filename) + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:111:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  i->string = malloc(strlen(string) + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:134:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  i->filename = malloc(strlen(filename) + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:163:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  i->filename = malloc(strlen(filename) + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:326:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  return i->state.pos < (long)(strlen(i->buffer) + i->marks[0].pos);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:334:60:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  if (i->type == MPC_INPUT_STRING && i->state.pos == (long)strlen(i->string)) { return 1; }
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:347:30:  [1] (buffer) fgetc:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    case MPC_INPUT_FILE: c = fgetc(i->file); return c;
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:350:29:  [1] (buffer) getc:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      if (!i->buffer) { c = getc(i->file); return c; }
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:356:13:  [1] (buffer) getc:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
        c = getc(i->file);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:372:11:  [1] (buffer) fgetc:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      c = fgetc(i->file);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:381:13:  [1] (buffer) getc:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
        c = getc(i->file);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:390:13:  [1] (buffer) getc:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
        c = getc(i->file);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:425:36:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    i->buffer = realloc(i->buffer, strlen(i->buffer) + 2);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:426:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    i->buffer[strlen(i->buffer) + 1] = '\0';
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:427:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    i->buffer[strlen(i->buffer) + 0] = c;
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:498:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  *o = mpc_malloc(i, strlen(c) + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:606:26:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  return realloc(buffer, strlen(buffer) + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:613:31:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  x->filename = mpc_malloc(i, strlen(i->filename) + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:618:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  x->expected[0] = mpc_malloc(i, strlen(expected) + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:629:31:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  x->filename = mpc_malloc(i, strlen(i->filename) + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:634:30:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  x->failure = mpc_malloc(i, strlen(failure) + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:643:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  x->filename = malloc(strlen(filename) + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:648:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  x->failure = malloc(strlen(failure) + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:688:50:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  x->expected[x->expected_num-1] = mpc_malloc(i, strlen(expected) + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:709:31:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  e->filename = mpc_malloc(i, strlen(x[fst]->filename)+1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:722:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      e->failure = mpc_malloc(i, strlen(x[j]->failure)+1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:761:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    expect = mpc_malloc(i, strlen(prefix) + strlen(x->expected[0]) + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:761:45:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    expect = mpc_malloc(i, strlen(prefix) + strlen(x->expected[0]) + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:771:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    l += strlen(prefix);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:773:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      l += strlen(x->expected[j]) + strlen(", ");
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:773:37:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      l += strlen(x->expected[j]) + strlen(", ");
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:775:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    l += strlen(x->expected[x->expected_num-2]);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:776:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    l += strlen(" or ");
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:777:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    l += strlen(x->expected[x->expected_num-1]);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:808:35:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  prefix = mpc_malloc(i, digits + strlen(" of ") + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:912:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  for (j = 0; j < n; j++) { l += strlen(xs[j]); }
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:1362:30:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  p->name = realloc(p->name, strlen(name) + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:1379:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    p->name = malloc(strlen(a->name)+1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:1386:31:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      p->data.fail.m = malloc(strlen(a->data.fail.m)+1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:1393:33:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      p->data.string.x = malloc(strlen(a->data.string.x)+1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:1408:33:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      p->data.expect.m = malloc(strlen(a->data.expect.m)+1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:1487:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  p->data.fail.m = malloc(strlen(m) + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:1525:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  buffer = realloc(buffer, strlen(buffer) + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:1562:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  p->data.expect.m = malloc(strlen(expected) + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:1599:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  buffer = realloc(buffer, strlen(buffer) + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:1633:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  p->data.string.x = malloc(strlen(s) + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:1641:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  p->data.string.x = malloc(strlen(s) + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:1657:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  p->data.string.x = malloc(strlen(s) + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2073:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  for (i = comp; i < strlen(s); i++){
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2079:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        range = realloc(range, strlen(range) + strlen(tmp) + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2079:48:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        range = realloc(range, strlen(range) + strlen(tmp) + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2082:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        range = realloc(range, strlen(range) + 1 + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2083:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        range[strlen(range) + 1] = '\0';
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2084:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        range[strlen(range) + 0] = s[i+1];      
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2092:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
          range = realloc(range, strlen(range) + strlen("-") + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2092:50:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
          range = realloc(range, strlen(range) + strlen("-") + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2093:11:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
          strcat(range, "-");
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2098:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
          range = realloc(range, strlen(range) + 1 + 1 + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2099:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
          range[strlen(range) + 1] = '\0';
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2100:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
          range[strlen(range) + 0] = j;
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2107:30:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      range = realloc(range, strlen(range) + 1 + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2108:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      range[strlen(range) + 1] = '\0';
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2109:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      range[strlen(range) + 0] = s[i];
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2230:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    memmove(s, s+1, strlen(s));
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2237:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  size_t l = strlen(s);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2280:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        y = realloc(y, strlen(y) + strlen(output[i]) + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2280:36:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        y = realloc(y, strlen(y) + strlen(output[i]) + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2289:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      y = realloc(y, strlen(y) + 2);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2317:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        y = realloc(y, strlen(y) + 1 + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2328:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      y = realloc(y, strlen(y) + 1 + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2412:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  for (i = 0; i < n; i++) { l += strlen(xs[i]); }
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2659:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  a->tag = malloc(strlen(tag) + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2662:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  a->contents = malloc(strlen(contents) + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2728:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  a->tag = realloc(a->tag, strlen(t) + 1 + strlen(a->tag) + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2728:44:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  a->tag = realloc(a->tag, strlen(t) + 1 + strlen(a->tag) + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2729:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  memmove(a->tag + strlen(t) + 1, a->tag, strlen(a->tag)+1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2729:43:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  memmove(a->tag + strlen(t) + 1, a->tag, strlen(a->tag)+1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2730:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  memmove(a->tag, t, strlen(t));
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2731:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  memmove(a->tag + strlen(t), "|", 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2736:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  a->tag = realloc(a->tag, strlen(t) + 1);
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:2758:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  if (strlen(a->contents)) {
data/radare2-4.3.1+dfsg/shlr/mpc/mpc.c:3010:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  for (i = 0; i < strlen(s); i++) { if (!strchr("0123456789", s[i])) { return 0; } }
data/radare2-4.3.1+dfsg/shlr/qnx/src/core.c:152:26:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	memmove (g->host, host, strlen (host) + 1);
data/radare2-4.3.1+dfsg/shlr/qnx/src/core.c:289:3:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
		strncpy (p, file, sizeof (g->tran.pkt.load.cmdline) - 8);
data/radare2-4.3.1+dfsg/shlr/qnx/src/core.c:290:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		p += strlen (p);
data/radare2-4.3.1+dfsg/shlr/qnx/src/core.c:682:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	len = strlen (env) + 1;
data/radare2-4.3.1+dfsg/shlr/qnx/src/core.c:714:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	len = strlen (arg) + 1;
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:149:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	lval = strlen (val);
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:154:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	lstr = strlen (str); 
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:246:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	lval = strlen (val);
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:274:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		j = strlen (vals[i]);
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:326:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int val_len = strlen (val);
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:362:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	lval = strlen (val);
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:482:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		memmove (p, n + 1, strlen (n));
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:506:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		size_t vlen = strlen (val);
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:509:47:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			size_t len = next ? (size_t)(next - ptr) : strlen (ptr);
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:562:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int val_len = strlen (val);
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:635:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	for (end = str + strlen (str) - 1; end > str && *end != SDB_RS; end--) {
data/radare2-4.3.1+dfsg/shlr/sdb/src/array.c:664:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		j = strlen (strs[i]);
data/radare2-4.3.1+dfsg/shlr/sdb/src/base64.c:69:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = strlen ((const char *)bin);
data/radare2-4.3.1+dfsg/shlr/sdb/src/base64.c:92:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	ilen = strlen (in);
data/radare2-4.3.1+dfsg/shlr/sdb/src/cdb.c:69:7:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
		if (read (fd, x, st.st_size) != st.st_size) {
data/radare2-4.3.1+dfsg/shlr/sdb/src/cdb.c:104:16:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
		int r = (int)read (c->fd, buf, len);
data/radare2-4.3.1+dfsg/shlr/sdb/src/dict.c:224:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		p += strlen (p);
data/radare2-4.3.1+dfsg/shlr/sdb/src/dict.c:238:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		p += strlen (p);
data/radare2-4.3.1+dfsg/shlr/sdb/src/diff.c:44:7:  [1] (buffer) equal:
  Function does not check the second iterator for over-read conditions
  (CWE-126). This function is often discouraged by most C++ coding standards
  in favor of its safer alternatives provided since C++14. Consider using a
  form of this function that checks the second iterator before potentially
  overflowing it.
	bool equal;
data/radare2-4.3.1+dfsg/shlr/sdb/src/diff.c:170:13:  [1] (buffer) equal:
  Function does not check the second iterator for over-read conditions
  (CWE-126). This function is often discouraged by most C++ coding standards
  in favor of its safer alternatives provided since C++14. Consider using a
  form of this function that checks the second iterator before potentially
  overflowing it.
	return ctx.equal;
data/radare2-4.3.1+dfsg/shlr/sdb/src/disk.c:95:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	nlen = strlen (dir);
data/radare2-4.3.1+dfsg/shlr/sdb/src/disk.c:133:31:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	return cdb_make_add (c, key, strlen (key), val, strlen (val));
data/radare2-4.3.1+dfsg/shlr/sdb/src/disk.c:133:50:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	return cdb_make_add (c, key, strlen (key), val, strlen (val));
data/radare2-4.3.1+dfsg/shlr/sdb/src/fmt.c:11:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int size = 2+strlen(x?x:"")+(out?strlen(out)+4:0); \
data/radare2-4.3.1+dfsg/shlr/sdb/src/fmt.c:11:35:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int size = 2+strlen(x?x:"")+(out?strlen(out)+4:0); \
data/radare2-4.3.1+dfsg/shlr/sdb/src/fmt.c:14:4:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
			strcat (o, ",");\
data/radare2-4.3.1+dfsg/shlr/sdb/src/fmt.c:208:37:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		retp = ret = (char**) malloc (2 * strlen (list) +
data/radare2-4.3.1+dfsg/shlr/sdb/src/fmt.c:217:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				(int)strlen (str) + 1;
data/radare2-4.3.1+dfsg/shlr/sdb/src/ht_pp.c:11:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		.calcsizeK = (HT_(CalcSizeK))strlen,
data/radare2-4.3.1+dfsg/shlr/sdb/src/journal.c:56:7:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	rr = read (fd, str, sz);
data/radare2-4.3.1+dfsg/shlr/sdb/src/journal.c:85:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int len = strlen (str);
data/radare2-4.3.1+dfsg/shlr/sdb/src/json.c:121:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		const int v_len = strlen (v);
data/radare2-4.3.1+dfsg/shlr/sdb/src/json.c:122:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		const int p_len = strlen (p);
data/radare2-4.3.1+dfsg/shlr/sdb/src/json.c:148:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		size_t buf_len = jslen + strlen (p) + strlen (v) + 7;
data/radare2-4.3.1+dfsg/shlr/sdb/src/json.c:148:41:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		size_t buf_len = jslen + strlen (p) + strlen (v) + 7;
data/radare2-4.3.1+dfsg/shlr/sdb/src/json.c:175:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		end[1] = v + strlen (v);
data/radare2-4.3.1+dfsg/shlr/sdb/src/json.c:187:40:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int msz = len[0] + len[1] + len[2] + strlen (v) + 2;
data/radare2-4.3.1+dfsg/shlr/sdb/src/json.c:304:35:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				memcpy (s->buf + s->len, tmp, strlen (tmp));
data/radare2-4.3.1+dfsg/shlr/sdb/src/json.c:305:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				s->len += strlen (tmp);
data/radare2-4.3.1+dfsg/shlr/sdb/src/json.c:311:35:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				memcpy (s->buf + s->len, tmp, strlen (tmp));
data/radare2-4.3.1+dfsg/shlr/sdb/src/json.c:312:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				s->len += strlen (tmp);
data/radare2-4.3.1+dfsg/shlr/sdb/src/json.c:319:35:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				memcpy (s->buf + s->len, tmp, strlen (tmp));
data/radare2-4.3.1+dfsg/shlr/sdb/src/json.c:320:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				s->len += strlen (tmp);
data/radare2-4.3.1+dfsg/shlr/sdb/src/json.c:324:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				JSONSTR_ALLOCATE (strlen (arg_s) + 3);
data/radare2-4.3.1+dfsg/shlr/sdb/src/json/api.c:31:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	end[1] = v + strlen (v);
data/radare2-4.3.1+dfsg/shlr/sdb/src/json/api.c:35:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	end[2] = s + strlen (s);
data/radare2-4.3.1+dfsg/shlr/sdb/src/json/indent.c:24:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	size_t tab_len = strlen (tab);
data/radare2-4.3.1+dfsg/shlr/sdb/src/json/indent.c:112:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int len = strlen (s);
data/radare2-4.3.1+dfsg/shlr/sdb/src/json/path.c:16:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	s->t = p? (size_t)(p - s->p): strlen (s->p);
data/radare2-4.3.1+dfsg/shlr/sdb/src/json/path.c:70:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	len = strlen (s);
data/radare2-4.3.1+dfsg/shlr/sdb/src/json/path.c:91:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int i, ret, len = strlen (s);
data/radare2-4.3.1+dfsg/shlr/sdb/src/json/path.c:124:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	len = strlen (s);
data/radare2-4.3.1+dfsg/shlr/sdb/src/json/rangstr.c:32:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	rs.t = strlen (s);
data/radare2-4.3.1+dfsg/shlr/sdb/src/json/rangstr.c:99:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int lbz = strlen (b->p + b->f);
data/radare2-4.3.1+dfsg/shlr/sdb/src/lock.c:14:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	len = strlen (f);
data/radare2-4.3.1+dfsg/shlr/sdb/src/lock.c:37:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		if ((write (fd, pid, strlen (pid)) < 0)
data/radare2-4.3.1+dfsg/shlr/sdb/src/main.c:63:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		size_t buf_len = strlen (buf);
data/radare2-4.3.1+dfsg/shlr/sdb/src/main.c:89:10:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
			rr2 = read (0, buf + nextlen, blocksize);
data/radare2-4.3.1+dfsg/shlr/sdb/src/main.c:97:9:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
			rr = read (0, buf + len, blocksize);
data/radare2-4.3.1+dfsg/shlr/sdb/src/main.c:382:9:  [1] (buffer) equal:
  Function does not check the second iterator for over-read conditions
  (CWE-126). This function is often discouraged by most C++ coding standards
  in favor of its safer alternatives provided since C++14. Consider using a
  form of this function that checks the second iterator before potentially
  overflowing it.
	return equal;
data/radare2-4.3.1+dfsg/shlr/sdb/src/match.c:7:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	const int sfx_len = strlen (sfx);
data/radare2-4.3.1+dfsg/shlr/sdb/src/match.c:12:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	const int pfx_len = strlen (pfx);
data/radare2-4.3.1+dfsg/shlr/sdb/src/match.c:67:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		alen = strlen (a);
data/radare2-4.3.1+dfsg/shlr/sdb/src/match.c:91:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	glob_len = strlen (glob);
data/radare2-4.3.1+dfsg/shlr/sdb/src/ns.c:90:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int dir_len = strlen (s->dir);
data/radare2-4.3.1+dfsg/shlr/sdb/src/ns.c:91:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int name_len = strlen (name);
data/radare2-4.3.1+dfsg/shlr/sdb/src/query.c:27:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int len = strlen (str);
data/radare2-4.3.1+dfsg/shlr/sdb/src/query.c:102:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	klen = strlen (k);
data/radare2-4.3.1+dfsg/shlr/sdb/src/query.c:109:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	vlen = strlen (v);
data/radare2-4.3.1+dfsg/shlr/sdb/src/query.c:111:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		rlen = strlen (root);
data/radare2-4.3.1+dfsg/shlr/sdb/src/query.c:144:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	char *roote = root + strlen (root);
data/radare2-4.3.1+dfsg/shlr/sdb/src/query.c:153:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = strlen (n->name);
data/radare2-4.3.1+dfsg/shlr/sdb/src/query.c:264:30:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				memmove (quot, quot + 1, strlen (quot));
data/radare2-4.3.1+dfsg/shlr/sdb/src/query.c:310:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				int name_len = strlen (ns->name);
data/radare2-4.3.1+dfsg/shlr/sdb/src/query.c:699:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
						len = strlen(buf) + 1;
data/radare2-4.3.1+dfsg/shlr/sdb/src/query.c:706:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
							len = strlen(buf) + 1;
data/radare2-4.3.1+dfsg/shlr/sdb/src/query.c:714:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
					wl = strlen (sval);
data/radare2-4.3.1+dfsg/shlr/sdb/src/query.c:741:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
							len = strlen (buf) + 1;
data/radare2-4.3.1+dfsg/shlr/sdb/src/query.c:766:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				int i = strlen (cmd) - 1;
data/radare2-4.3.1+dfsg/shlr/sdb/src/query.c:907:8:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	ret = read (fd, text, sz);
data/radare2-4.3.1+dfsg/shlr/sdb/src/sdb.c:68:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			int plen = strlen (path);
data/radare2-4.3.1+dfsg/shlr/sdb/src/sdb.c:69:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			int nlen = strlen (name);
data/radare2-4.3.1+dfsg/shlr/sdb/src/sdb.c:245:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	size_t keylen = strlen (key);
data/radare2-4.3.1+dfsg/shlr/sdb/src/sdb.c:324:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	valen = strlen (value);
data/radare2-4.3.1+dfsg/shlr/sdb/src/sdb.c:327:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			memmove (p, p + valen, strlen (p + valen) + 1);
data/radare2-4.3.1+dfsg/shlr/sdb/src/sdb.c:350:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	vl = strlen (value);
data/radare2-4.3.1+dfsg/shlr/sdb/src/sdb.c:372:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int klen = strlen (key) + 1;
data/radare2-4.3.1+dfsg/shlr/sdb/src/sdb.c:456:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int len = strlen (str);
data/radare2-4.3.1+dfsg/shlr/sdb/src/sdb.c:464:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		return strlen (str) == strlen (expr) - 2 && \
data/radare2-4.3.1+dfsg/shlr/sdb/src/sdb.c:464:26:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		return strlen (str) == strlen (expr) - 2 && \
data/radare2-4.3.1+dfsg/shlr/sdb/src/sdb.c:465:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			!strncmp (str, expr + 1, strlen (expr) - 2);
data/radare2-4.3.1+dfsg/shlr/sdb/src/sdb.c:468:35:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		return !strncmp (str, expr + 1, strlen (expr) - 1);
data/radare2-4.3.1+dfsg/shlr/sdb/src/sdb.c:471:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int alen = strlen (str);
data/radare2-4.3.1+dfsg/shlr/sdb/src/sdb.c:472:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int blen = strlen (expr) - 1;
data/radare2-4.3.1+dfsg/shlr/sdb/src/sdb.c:476:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		const char *a = str + strlen (str) - blen;
data/radare2-4.3.1+dfsg/shlr/sdb/src/sdb.c:500:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	return sdbkv_new2 (k, strlen (k), v, strlen (v));
data/radare2-4.3.1+dfsg/shlr/sdb/src/sdb.c:500:39:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	return sdbkv_new2 (k, strlen (k), v, strlen (v));
data/radare2-4.3.1+dfsg/shlr/sdb/src/sdb.c:564:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	klen = strlen (key);
data/radare2-4.3.1+dfsg/shlr/sdb/src/sdb.c:565:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	vlen = strlen (val);
data/radare2-4.3.1+dfsg/shlr/sdb/src/sdb.c:878:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy (sdbkv_key (&s->tmpkv), k, SDB_KSZ - 1);
data/radare2-4.3.1+dfsg/shlr/sdb/src/sdb.c:996:50:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if (!cdb_findnext (&s->db, sdb_hash (key), key, strlen (key) + 1)) {
data/radare2-4.3.1+dfsg/shlr/sdb/src/sdbht.c:11:89:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	HtPP *ht = ht_pp_new ((HtPPDupValue)strdup, (HtPPKvFreeFunc)sdbkv_fini, (HtPPCalcSizeV)strlen);
data/radare2-4.3.1+dfsg/shlr/sdb/src/sdbht.c:32:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	kvp.base.key_len = strlen (kvp.base.key);
data/radare2-4.3.1+dfsg/shlr/sdb/src/sdbht.c:33:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	kvp.base.value_len = strlen (kvp.base.value);
data/radare2-4.3.1+dfsg/shlr/sdb/src/util.c:126:3:  [1] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant character.
		strcpy (s, "0");
data/radare2-4.3.1+dfsg/shlr/sdb/src/util.c:149:26:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		memmove (s, s + i + 1, strlen (s + i + 1) + 1);
data/radare2-4.3.1+dfsg/shlr/sdb/src/util.c:173:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			memmove (p, e, strlen (e) + 1);
data/radare2-4.3.1+dfsg/shlr/sdb/src/util.c:205:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			end = str + strlen (str);
data/radare2-4.3.1+dfsg/shlr/spp/main.c:14:10:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
		if (i) strcat (supported, ",");
data/radare2-4.3.1+dfsg/shlr/spp/p/pod.h:21:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int i, len = strlen (buf);
data/radare2-4.3.1+dfsg/shlr/spp/p/spp.h:192:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		char *p = realloc (b, strlen (b) + strlen (buf) + 3);
data/radare2-4.3.1+dfsg/shlr/spp/p/spp.h:192:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		char *p = realloc (b, strlen (b) + strlen (buf) + 3);
data/radare2-4.3.1+dfsg/shlr/spp/p/spp.h:195:4:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
			strcat (b, "/");
data/radare2-4.3.1+dfsg/shlr/spp/r_api.c:23:6:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	l = strlen (s);
data/radare2-4.3.1+dfsg/shlr/spp/r_api.c:42:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int l = strlen (s);
data/radare2-4.3.1+dfsg/shlr/spp/spp.c:14:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		int buflen = strlen (buf);
data/radare2-4.3.1+dfsg/shlr/spp/spp.c:69:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	int len = strlen (src);
data/radare2-4.3.1+dfsg/shlr/spp/spp.c:117:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			delta = strlen (buf) - 1;
data/radare2-4.3.1+dfsg/shlr/spp/spp.c:135:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	delta = strlen (proc->tag_post);
data/radare2-4.3.1+dfsg/shlr/spp/spp.c:143:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			ptr = ptr + strlen (proc->tag_pre);
data/radare2-4.3.1+dfsg/shlr/spp/spp.c:149:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		ptrr = strstr (ptr + strlen (proc->tag_pre), proc->tag_pre);
data/radare2-4.3.1+dfsg/shlr/spp/spp.c:165:35:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				char *s = spp_run_str (ptrr + strlen (proc->tag_pre), NULL);
data/radare2-4.3.1+dfsg/shlr/spp/spp.c:250:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				char *eol = buf + strlen (buf) - strlen (proc->multiline);
data/radare2-4.3.1+dfsg/shlr/spp/spp.c:250:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				char *eol = buf + strlen (buf) - strlen (proc->multiline);
data/radare2-4.3.1+dfsg/shlr/tcc/libtcc.c:85:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	len = strlen (buf);
data/radare2-4.3.1+dfsg/shlr/tcc/libtcc.c:204:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	len = strlen (buf);
data/radare2-4.3.1+dfsg/shlr/tcc/libtcc.c:435:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	len = strlen (str);
data/radare2-4.3.1+dfsg/shlr/tcc/libtcc.c:452:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	len1 = strlen (sym);
data/radare2-4.3.1+dfsg/shlr/tcc/libtcc.c:453:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	len2 = strlen (value);
data/radare2-4.3.1+dfsg/shlr/tcc/libtcc.c:474:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	ts = tok_alloc (sym, strlen (sym));
data/radare2-4.3.1+dfsg/shlr/tcc/tccgen.c:1891:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		len = strlen (funcname) + 1;
data/radare2-4.3.1+dfsg/shlr/tcc/tcclib.h:35:5:  [1] (buffer) fgetc:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
int fgetc(FILE *stream);
data/radare2-4.3.1+dfsg/shlr/tcc/tcclib.h:37:5:  [1] (buffer) getc:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
int getc(FILE *stream);
data/radare2-4.3.1+dfsg/shlr/tcc/tcclib.h:38:5:  [1] (buffer) getchar:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
int getchar(void);
data/radare2-4.3.1+dfsg/shlr/tcc/tccpp.c:385:10:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
			len = read (bf->fd, bf->buffer, len);
data/radare2-4.3.1+dfsg/shlr/tcc/tccpp.c:1357:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	e = malloc (sizeof(CachedInclude) + strlen (filename));
data/radare2-4.3.1+dfsg/shlr/tcc/tccpp.c:1496:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
				len = strlen (buf);
data/radare2-4.3.1+dfsg/shlr/tcc/tccpp.c:1592:31:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			char *e = file->filename + strlen (file->filename);
data/radare2-4.3.1+dfsg/shlr/windbg/iob_pipe.c:75:2:  [1] (buffer) strncpy:
  Easily used incorrectly; doesn't always \0-terminate or check for invalid
  pointers [MS-banned] (CWE-120).
	strncpy (sa.sun_path, path, sizeof(sa.sun_path));
data/radare2-4.3.1+dfsg/shlr/windbg/kd.h:115:13:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
			uint32_t read;
data/radare2-4.3.1+dfsg/shlr/windbg/transport.c:94:26:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
		int ret = sel_backend->read (fp, buf + done, buf_len - done, 100);
data/radare2-4.3.1+dfsg/shlr/windbg/transport.h:26:12:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    int (* read)(void *, uint8_t *buf, const uint64_t count, const int timeout);
data/radare2-4.3.1+dfsg/shlr/windbg/windbg.c:443:8:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
		if (!read) {
data/radare2-4.3.1+dfsg/shlr/windbg/windbg.c:446:13:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
		offset += read;
data/radare2-4.3.1+dfsg/shlr/windbg/windbg.c:447:14:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
		totread += read;
data/radare2-4.3.1+dfsg/shlr/windbg/windbg.c:1178:35:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	memcpy (buf, rr->data, rr->r_mem.read);
data/radare2-4.3.1+dfsg/shlr/windbg/windbg.c:1179:18:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	ret = rr->r_mem.read;
data/radare2-4.3.1+dfsg/shlr/windbg/windbg.c:1233:35:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	memcpy (buf, rr->data, rr->r_mem.read);
data/radare2-4.3.1+dfsg/shlr/windbg/windbg.c:1234:18:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	ret = rr->r_mem.read;
data/radare2-4.3.1+dfsg/shlr/windbg/windbg.c:1287:18:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	ret = rr->r_mem.read;
data/radare2-4.3.1+dfsg/shlr/windbg/windbg.c:1342:18:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
	ret = rr->r_mem.read;
data/radare2-4.3.1+dfsg/shlr/zip/include/gzguts.h:40:11:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
#  define read _read
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_close.c:273:12:  [1] (access) umask:
  Ensure that umask is given most restrictive possible setting (e.g., 066 or
  077) (CWE-732).
    mask = umask(0);
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_close.c:274:5:  [1] (access) umask:
  Ensure that umask is given most restrictive possible setting (e.g., 066 or
  077) (CWE-732).
    umask(mask);
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_close.c:598:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        if ((temp=(char *)malloc(strlen(za->tempdir)+13)) == NULL) {
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_close.c:605:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        if ((temp=(char *)malloc(strlen(za->zn)+8)) == NULL) {
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_close.c:618:2:  [1] (access) umask:
  Ensure that umask is given most restrictive possible setting (e.g., 066 or
  077) (CWE-732).
	umask (S_IWGRP | S_IWOTH);
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_dir_add.c:64:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    len = strlen(name);
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_error_strerror.c:78:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if ((s=(char *)malloc(strlen(ss)
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_error_strerror.c:79:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			      + (zs ? strlen(zs)+2 : 0) + 1)) == NULL)
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_file_rename.c:48:47:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    if (idx >= za->nentry || (name != NULL && strlen(name) > ZIP_UINT16_MAX)) {
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_file_rename.c:61:40:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    new_is_dir = (name != NULL && name[strlen(name)-1] == '/');
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_file_rename.c:62:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    old_is_dir = (old_name[strlen(old_name)-1] == '/');
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_set_name.c:61:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    if (name && strlen(name) > 0) {
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_set_name.c:63:68:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	if ((str=_zip_string_new((const zip_uint8_t *)name, (zip_uint16_t)strlen(name), flags, &za->error)) == NULL)
data/radare2-4.3.1+dfsg/shlr/zip/zip/zip_source_pkware.c:89:55:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    decrypt(ctx, NULL, (const zip_uint8_t *)password, strlen(password), 1);
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzguts.h:50:11:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
#  define read _read
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzlib.c:199:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        len = strlen((const char *)path);
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzlib.c:605:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    if ((state->msg = (char *)malloc(strlen(state->path) + strlen(msg) + 3)) ==
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzlib.c:605:60:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    if ((state->msg = (char *)malloc(strlen(state->path) + strlen(msg) + 3)) ==
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzlib.c:611:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    (void)snprintf(state->msg, strlen(state->path) + strlen(msg) + 3,
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzlib.c:611:54:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    (void)snprintf(state->msg, strlen(state->path) + strlen(msg) + 3,
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzread.c:35:15:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
        ret = read(state->fd, buf + *have, get);
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzwrite.c:371:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    len = strlen(str);
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzwrite.c:427:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    len = strlen(next);
data/radare2-4.3.1+dfsg/shlr/zip/zlib/gzwrite.c:525:11:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    len = strlen(next);
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/parse/parse.c:30:8:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			buf[strlen (buf)-1] = 0;
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/search/test-regexp.c:18:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	r_search_update_i (rs, 0LL, buffer, strlen ((const char*)buffer));
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/search/test-str.c:18:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	r_search_update_i (rs, 0LL, buffer, strlen ((const char*)buffer));
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/search/test.c:21:44:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	r_search_update_i (rs, 0LL, (ut8*)buffer, strlen(buffer));
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/search/test.c:29:44:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	r_search_update_i (rs, 0LL, (ut8*)buffer, strlen(buffer));
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/search/test.c:45:44:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	r_search_update_i (rs, 0LL, (ut8*)buffer, strlen(buffer));
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/socket/serverssl.c:25:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		r_socket_write (cli, buf, strlen (buf));
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/diff/test.c:27:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	r_diff_buffers(d, (ut8*)bufa, strlen(bufa), (ut8*)bufb, strlen((char*)bufb));
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/diff/test.c:27:58:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	r_diff_buffers(d, (ut8*)bufa, strlen(bufa), (ut8*)bufb, strlen((char*)bufb));
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/diff/test.c:41:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	r_diff_buffers(d, (ut8*)bufa, strlen(bufa), (ut8*)bufb, strlen(bufb));
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/diff/test.c:41:58:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	r_diff_buffers(d, (ut8*)bufa, strlen(bufa), (ut8*)bufb, strlen(bufb));
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/diff/test.c:55:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	r_diff_buffers(d, (ut8*)bufa, strlen(bufa), (ut8*)bufb, strlen(bufb));
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/diff/test.c:55:58:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	r_diff_buffers(d, (ut8*)bufa, strlen(bufa), (ut8*)bufb, strlen(bufb));
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/diff/test.c:67:44:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	r_diff_buffers_distance(NULL, (ut8*)bufa, strlen(bufa), (ut8*)bufb, strlen(bufb),
data/radare2-4.3.1+dfsg/test/unit/legacy_unit/util/diff/test.c:67:70:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	r_diff_buffers_distance(NULL, (ut8*)bufa, strlen(bufa), (ut8*)bufb, strlen(bufb),
data/radare2-4.3.1+dfsg/test/unit/minunit.h:30:4:  [1] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf. Risk is low because the source is a constant character.
			sprintf(out + strlen(out), " ");
data/radare2-4.3.1+dfsg/test/unit/minunit.h:30:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
			sprintf(out + strlen(out), " ");
data/radare2-4.3.1+dfsg/test/unit/minunit.h:32:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		sprintf (out + strlen(out), "%02x", buf[i]);
data/radare2-4.3.1+dfsg/test/unit/minunit.h:132:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		sprint_mem(_meqstr + strlen(_meqstr), (expected), (len)); \
data/radare2-4.3.1+dfsg/test/unit/minunit.h:133:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		sprintf(_meqstr + strlen(_meqstr), ", got "); \
data/radare2-4.3.1+dfsg/test/unit/minunit.h:134:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		sprint_mem(_meqstr + strlen(_meqstr), (actual), (len)); \
data/radare2-4.3.1+dfsg/test/unit/test_base64.c:14:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	mu_assert_eq (status, (int)strlen("hello"), "valid base64 decoding");
data/radare2-4.3.1+dfsg/test/unit/test_buf.c:20:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	const size_t sl = strlen (s);
data/radare2-4.3.1+dfsg/test/unit/test_buf.c:38:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	const size_t s2l = strlen (s2);
data/radare2-4.3.1+dfsg/test/unit/test_buf.c:54:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	r_buf_set_bytes (b, (ut8 *)"World", strlen ("World"));
data/radare2-4.3.1+dfsg/test/unit/test_buf.c:61:49:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	res = r_buf_prepend_bytes (b, (const ut8 *)s3, strlen (s3));
data/radare2-4.3.1+dfsg/test/unit/test_buf.c:323:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	const int length = strlen (content);
data/radare2-4.3.1+dfsg/test/unit/test_debruijn.c:6:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	mu_assert_eq ((int)strlen(pattern), 256, "pattern length");
data/radare2-4.3.1+dfsg/test/unit/test_diff.c:37:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		size_t la = strlen ((const char *)tests[i].a), lb = strlen ((const char *)tests[i].b);
data/radare2-4.3.1+dfsg/test/unit/test_diff.c:37:55:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		size_t la = strlen ((const char *)tests[i].a), lb = strlen ((const char *)tests[i].b);
data/radare2-4.3.1+dfsg/test/unit/test_diff.c:55:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		size_t la = strlen ((const char *)tests[i].a), lb = strlen ((const char *)tests[i].b);
data/radare2-4.3.1+dfsg/test/unit/test_diff.c:55:55:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
		size_t la = strlen ((const char *)tests[i].a), lb = strlen ((const char *)tests[i].b);
data/radare2-4.3.1+dfsg/test/unit/test_str.c:212:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
	out = test + strlen (test);

ANALYSIS SUMMARY:

Hits = 9259
Lines analyzed = 812141 in approximately 22.96 seconds (35370 lines/second)
Physical Source Lines of Code (SLOC) = 676429
Hits@level = [0] 2746 [1] 2368 [2] 4559 [3]  43 [4] 2257 [5]  32
Hits@level+ = [0+] 12005 [1+] 9259 [2+] 6891 [3+] 2332 [4+] 2289 [5+]  32
Hits/KSLOC@level+ = [0+] 17.7476 [1+] 13.6881 [2+] 10.1873 [3+] 3.44752 [4+] 3.38395 [5+] 0.0473073
Dot directories skipped = 3 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.