Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/reiser4progs-2.0.4/demos/busy.c
Examining data/reiser4progs-2.0.4/demos/cp.c
Examining data/reiser4progs-2.0.4/demos/create.c
Examining data/reiser4progs-2.0.4/demos/ln.c
Examining data/reiser4progs-2.0.4/demos/ls.c
Examining data/reiser4progs-2.0.4/demos/misc.c
Examining data/reiser4progs-2.0.4/demos/rm.c
Examining data/reiser4progs-2.0.4/demos/stat.c
Examining data/reiser4progs-2.0.4/demos/trunc.c
Examining data/reiser4progs-2.0.4/demos/busy.h
Examining data/reiser4progs-2.0.4/include/aux/aux.h
Examining data/reiser4progs-2.0.4/include/aux/crc32c.h
Examining data/reiser4progs-2.0.4/include/aux/gauge.h
Examining data/reiser4progs-2.0.4/include/misc/exception.h
Examining data/reiser4progs-2.0.4/include/misc/gauge.h
Examining data/reiser4progs-2.0.4/include/misc/misc.h
Examining data/reiser4progs-2.0.4/include/misc/mpressure.h
Examining data/reiser4progs-2.0.4/include/misc/profile.h
Examining data/reiser4progs-2.0.4/include/misc/version.h
Examining data/reiser4progs-2.0.4/include/misc/ui.h
Examining data/reiser4progs-2.0.4/include/reiser4/alloc.h
Examining data/reiser4progs-2.0.4/include/reiser4/backup.h
Examining data/reiser4progs-2.0.4/include/reiser4/bitmap.h
Examining data/reiser4progs-2.0.4/include/reiser4/factory.h
Examining data/reiser4progs-2.0.4/include/reiser4/fake.h
Examining data/reiser4progs-2.0.4/include/reiser4/filesystem.h
Examining data/reiser4progs-2.0.4/include/reiser4/flow.h
Examining data/reiser4progs-2.0.4/include/reiser4/format.h
Examining data/reiser4progs-2.0.4/include/reiser4/ioctl.h
Examining data/reiser4progs-2.0.4/include/reiser4/item.h
Examining data/reiser4progs-2.0.4/include/reiser4/journal.h
Examining data/reiser4progs-2.0.4/include/reiser4/key.h
Examining data/reiser4progs-2.0.4/include/reiser4/libreiser4.h
Examining data/reiser4progs-2.0.4/include/reiser4/master.h
Examining data/reiser4progs-2.0.4/include/reiser4/node.h
Examining data/reiser4progs-2.0.4/include/reiser4/object.h
Examining data/reiser4progs-2.0.4/include/reiser4/oid.h
Examining data/reiser4progs-2.0.4/include/reiser4/place.h
Examining data/reiser4progs-2.0.4/include/reiser4/plugin.h
Examining data/reiser4progs-2.0.4/include/reiser4/print.h
Examining data/reiser4progs-2.0.4/include/reiser4/profile.h
Examining data/reiser4progs-2.0.4/include/reiser4/pset.h
Examining data/reiser4progs-2.0.4/include/reiser4/semantic.h
Examining data/reiser4progs-2.0.4/include/reiser4/status.h
Examining data/reiser4progs-2.0.4/include/reiser4/tree.h
Examining data/reiser4progs-2.0.4/include/reiser4/types.h
Examining data/reiser4progs-2.0.4/include/repair/add_missing.h
Examining data/reiser4progs-2.0.4/include/repair/alloc.h
Examining data/reiser4progs-2.0.4/include/repair/backup.h
Examining data/reiser4progs-2.0.4/include/repair/cleanup.h
Examining data/reiser4progs-2.0.4/include/repair/disk_scan.h
Examining data/reiser4progs-2.0.4/include/repair/filesystem.h
Examining data/reiser4progs-2.0.4/include/repair/filter.h
Examining data/reiser4progs-2.0.4/include/repair/format.h
Examining data/reiser4progs-2.0.4/include/repair/item.h
Examining data/reiser4progs-2.0.4/include/repair/journal.h
Examining data/reiser4progs-2.0.4/include/repair/librepair.h
Examining data/reiser4progs-2.0.4/include/repair/lost_found.h
Examining data/reiser4progs-2.0.4/include/repair/master.h
Examining data/reiser4progs-2.0.4/include/repair/node.h
Examining data/reiser4progs-2.0.4/include/repair/object.h
Examining data/reiser4progs-2.0.4/include/repair/oid.h
Examining data/reiser4progs-2.0.4/include/repair/place.h
Examining data/reiser4progs-2.0.4/include/repair/plugin.h
Examining data/reiser4progs-2.0.4/include/repair/pset.h
Examining data/reiser4progs-2.0.4/include/repair/repair.h
Examining data/reiser4progs-2.0.4/include/repair/semantic.h
Examining data/reiser4progs-2.0.4/include/repair/status.h
Examining data/reiser4progs-2.0.4/include/repair/tree.h
Examining data/reiser4progs-2.0.4/include/repair/twig_scan.h
Examining data/reiser4progs-2.0.4/libaux/aux.c
Examining data/reiser4progs-2.0.4/libaux/crc32c.c
Examining data/reiser4progs-2.0.4/libaux/gauge.c
Examining data/reiser4progs-2.0.4/libmisc/gauge.c
Examining data/reiser4progs-2.0.4/libmisc/misc.c
Examining data/reiser4progs-2.0.4/libmisc/mpressure.c
Examining data/reiser4progs-2.0.4/libmisc/profile.c
Examining data/reiser4progs-2.0.4/libmisc/exception.c
Examining data/reiser4progs-2.0.4/libmisc/ui.c
Examining data/reiser4progs-2.0.4/libreiser4/alloc.c
Examining data/reiser4progs-2.0.4/libreiser4/backup.c
Examining data/reiser4progs-2.0.4/libreiser4/bitmap.c
Examining data/reiser4progs-2.0.4/libreiser4/factory.c
Examining data/reiser4progs-2.0.4/libreiser4/fake.c
Examining data/reiser4progs-2.0.4/libreiser4/filesystem.c
Examining data/reiser4progs-2.0.4/libreiser4/flow.c
Examining data/reiser4progs-2.0.4/libreiser4/format.c
Examining data/reiser4progs-2.0.4/libreiser4/item.c
Examining data/reiser4progs-2.0.4/libreiser4/journal.c
Examining data/reiser4progs-2.0.4/libreiser4/key.c
Examining data/reiser4progs-2.0.4/libreiser4/libreiser4.c
Examining data/reiser4progs-2.0.4/libreiser4/master.c
Examining data/reiser4progs-2.0.4/libreiser4/node.c
Examining data/reiser4progs-2.0.4/libreiser4/object.c
Examining data/reiser4progs-2.0.4/libreiser4/oid.c
Examining data/reiser4progs-2.0.4/libreiser4/place.c
Examining data/reiser4progs-2.0.4/libreiser4/print.c
Examining data/reiser4progs-2.0.4/libreiser4/pset.c
Examining data/reiser4progs-2.0.4/libreiser4/semantic.c
Examining data/reiser4progs-2.0.4/libreiser4/status.c
Examining data/reiser4progs-2.0.4/libreiser4/tree.c
Examining data/reiser4progs-2.0.4/libreiser4/profile.c
Examining data/reiser4progs-2.0.4/librepair/add_missing.c
Examining data/reiser4progs-2.0.4/librepair/alloc.c
Examining data/reiser4progs-2.0.4/librepair/backup.c
Examining data/reiser4progs-2.0.4/librepair/cleanup.c
Examining data/reiser4progs-2.0.4/librepair/disk_scan.c
Examining data/reiser4progs-2.0.4/librepair/filesystem.c
Examining data/reiser4progs-2.0.4/librepair/filter.c
Examining data/reiser4progs-2.0.4/librepair/format.c
Examining data/reiser4progs-2.0.4/librepair/item.c
Examining data/reiser4progs-2.0.4/librepair/journal.c
Examining data/reiser4progs-2.0.4/librepair/master.c
Examining data/reiser4progs-2.0.4/librepair/node.c
Examining data/reiser4progs-2.0.4/librepair/object.c
Examining data/reiser4progs-2.0.4/librepair/oid.c
Examining data/reiser4progs-2.0.4/librepair/pset.c
Examining data/reiser4progs-2.0.4/librepair/repair.c
Examining data/reiser4progs-2.0.4/librepair/semantic.c
Examining data/reiser4progs-2.0.4/librepair/status.c
Examining data/reiser4progs-2.0.4/librepair/tree.c
Examining data/reiser4progs-2.0.4/librepair/twig_scan.c
Examining data/reiser4progs-2.0.4/plugin/alloc/alloc40/alloc40.c
Examining data/reiser4progs-2.0.4/plugin/alloc/alloc40/alloc40_repair.c
Examining data/reiser4progs-2.0.4/plugin/alloc/alloc40/alloc40.h
Examining data/reiser4progs-2.0.4/plugin/alloc/alloc40/alloc40_repair.h
Examining data/reiser4progs-2.0.4/plugin/compress/cluster.c
Examining data/reiser4progs-2.0.4/plugin/compress/compress.c
Examining data/reiser4progs-2.0.4/plugin/compress/compress_mode.c
Examining data/reiser4progs-2.0.4/plugin/dst/dst.c
Examining data/reiser4progs-2.0.4/plugin/fibre/dot_o_fibre/dot_o_fibre.c
Examining data/reiser4progs-2.0.4/plugin/fibre/ext_1_fibre/ext_1_fibre.c
Examining data/reiser4progs-2.0.4/plugin/fibre/ext_3_fibre/ext_3_fibre.c
Examining data/reiser4progs-2.0.4/plugin/fibre/lexic_fibre/lexic_fibre.c
Examining data/reiser4progs-2.0.4/plugin/format/format40/format40.c
Examining data/reiser4progs-2.0.4/plugin/format/format40/format40_repair.c
Examining data/reiser4progs-2.0.4/plugin/format/format40/format40.h
Examining data/reiser4progs-2.0.4/plugin/format/format40/format40_repair.h
Examining data/reiser4progs-2.0.4/plugin/format/format41/format41.c
Examining data/reiser4progs-2.0.4/plugin/format/format41/format41_repair.c
Examining data/reiser4progs-2.0.4/plugin/format/format41/format41.h
Examining data/reiser4progs-2.0.4/plugin/format/format41/format41_repair.h
Examining data/reiser4progs-2.0.4/plugin/hash/deg_hash/deg_hash.c
Examining data/reiser4progs-2.0.4/plugin/hash/fnv1_hash/fnv1_hash.c
Examining data/reiser4progs-2.0.4/plugin/hash/r5_hash/r5_hash.c
Examining data/reiser4progs-2.0.4/plugin/hash/rupasov_hash/rupasov_hash.c
Examining data/reiser4progs-2.0.4/plugin/hash/tea_hash/tea_hash.c
Examining data/reiser4progs-2.0.4/plugin/item/bbox40/bbox40.c
Examining data/reiser4progs-2.0.4/plugin/item/bbox40/bbox40_repair.c
Examining data/reiser4progs-2.0.4/plugin/item/bbox40/bbox40_repair.h
Examining data/reiser4progs-2.0.4/plugin/item/body40/body40.c
Examining data/reiser4progs-2.0.4/plugin/item/body40/body40.h
Examining data/reiser4progs-2.0.4/plugin/item/cde40/cde40.c
Examining data/reiser4progs-2.0.4/plugin/item/cde40/cde40_repair.c
Examining data/reiser4progs-2.0.4/plugin/item/cde40/cde40.h
Examining data/reiser4progs-2.0.4/plugin/item/cde40/cde40_repair.h
Examining data/reiser4progs-2.0.4/plugin/item/ctail40/ctail40.c
Examining data/reiser4progs-2.0.4/plugin/item/ctail40/ctail40_repair.c
Examining data/reiser4progs-2.0.4/plugin/item/ctail40/ctail40.h
Examining data/reiser4progs-2.0.4/plugin/item/ctail40/ctail40_repair.h
Examining data/reiser4progs-2.0.4/plugin/item/extent40/extent40.c
Examining data/reiser4progs-2.0.4/plugin/item/extent40/extent40_repair.c
Examining data/reiser4progs-2.0.4/plugin/item/extent40/extent40.h
Examining data/reiser4progs-2.0.4/plugin/item/extent40/extent40_repair.h
Examining data/reiser4progs-2.0.4/plugin/item/extent41/extent41.c
Examining data/reiser4progs-2.0.4/plugin/item/extent41/extent41.h
Examining data/reiser4progs-2.0.4/plugin/item/nodeptr40/nodeptr40.c
Examining data/reiser4progs-2.0.4/plugin/item/nodeptr40/nodeptr40_repair.c
Examining data/reiser4progs-2.0.4/plugin/item/nodeptr40/nodeptr40.h
Examining data/reiser4progs-2.0.4/plugin/item/nodeptr40/nodeptr40_repair.h
Examining data/reiser4progs-2.0.4/plugin/item/plain40/plain40.c
Examining data/reiser4progs-2.0.4/plugin/item/plain40/plain40_repair.c
Examining data/reiser4progs-2.0.4/plugin/item/plain40/plain40.h
Examining data/reiser4progs-2.0.4/plugin/item/plain40/plain40_repair.h
Examining data/reiser4progs-2.0.4/plugin/item/stat40/stat40.c
Examining data/reiser4progs-2.0.4/plugin/item/stat40/stat40_repair.c
Examining data/reiser4progs-2.0.4/plugin/item/stat40/stat40.h
Examining data/reiser4progs-2.0.4/plugin/item/stat40/stat40_repair.h
Examining data/reiser4progs-2.0.4/plugin/item/tail40/tail40.c
Examining data/reiser4progs-2.0.4/plugin/item/tail40/tail40_repair.c
Examining data/reiser4progs-2.0.4/plugin/item/tail40/tail40.h
Examining data/reiser4progs-2.0.4/plugin/item/tail40/tail40_repair.h
Examining data/reiser4progs-2.0.4/plugin/journal/journal40/journal40.c
Examining data/reiser4progs-2.0.4/plugin/journal/journal40/journal40_repair.c
Examining data/reiser4progs-2.0.4/plugin/journal/journal40/journal40.h
Examining data/reiser4progs-2.0.4/plugin/journal/journal40/journal40_repair.h
Examining data/reiser4progs-2.0.4/plugin/key/key_alloc/key_alloc.c
Examining data/reiser4progs-2.0.4/plugin/key/key_common/key_common.c
Examining data/reiser4progs-2.0.4/plugin/key/key_common/key_common.h
Examining data/reiser4progs-2.0.4/plugin/key/key_large/key_large.c
Examining data/reiser4progs-2.0.4/plugin/key/key_large/key_large_repair.c
Examining data/reiser4progs-2.0.4/plugin/key/key_large/key_large.h
Examining data/reiser4progs-2.0.4/plugin/key/key_short/key_short.c
Examining data/reiser4progs-2.0.4/plugin/key/key_short/key_short_repair.c
Examining data/reiser4progs-2.0.4/plugin/key/key_short/key_short.h
Examining data/reiser4progs-2.0.4/plugin/node/node40/node40.c
Examining data/reiser4progs-2.0.4/plugin/node/node40/node40_repair.c
Examining data/reiser4progs-2.0.4/plugin/node/node40/node40.h
Examining data/reiser4progs-2.0.4/plugin/node/node40/node40_repair.h
Examining data/reiser4progs-2.0.4/plugin/node/node41/node41.c
Examining data/reiser4progs-2.0.4/plugin/node/node41/node41_repair.c
Examining data/reiser4progs-2.0.4/plugin/node/node41/node41.h
Examining data/reiser4progs-2.0.4/plugin/node/node41/node41_repair.h
Examining data/reiser4progs-2.0.4/plugin/object/ccreg40/ccreg40.c
Examining data/reiser4progs-2.0.4/plugin/object/ccreg40/ccreg40_repair.c
Examining data/reiser4progs-2.0.4/plugin/object/ccreg40/ccreg40.h
Examining data/reiser4progs-2.0.4/plugin/object/dir40/dir40.c
Examining data/reiser4progs-2.0.4/plugin/object/dir40/dir40_repair.c
Examining data/reiser4progs-2.0.4/plugin/object/dir40/dir40.h
Examining data/reiser4progs-2.0.4/plugin/object/dir40/dir40_repair.h
Examining data/reiser4progs-2.0.4/plugin/object/obj40/obj40.c
Examining data/reiser4progs-2.0.4/plugin/object/obj40/obj40_repair.c
Examining data/reiser4progs-2.0.4/plugin/object/obj40/obj40.h
Examining data/reiser4progs-2.0.4/plugin/object/obj40/obj40_repair.h
Examining data/reiser4progs-2.0.4/plugin/object/reg40/reg40.c
Examining data/reiser4progs-2.0.4/plugin/object/reg40/reg40_repair.c
Examining data/reiser4progs-2.0.4/plugin/object/reg40/reg40_repair.h
Examining data/reiser4progs-2.0.4/plugin/object/reg42/reg42.c
Examining data/reiser4progs-2.0.4/plugin/object/spl40/spl40.c
Examining data/reiser4progs-2.0.4/plugin/object/spl40/spl40_repair.c
Examining data/reiser4progs-2.0.4/plugin/object/spl40/spl40.h
Examining data/reiser4progs-2.0.4/plugin/object/spl40/spl40_repair.h
Examining data/reiser4progs-2.0.4/plugin/object/sym40/sym40.c
Examining data/reiser4progs-2.0.4/plugin/object/sym40/sym40_repair.c
Examining data/reiser4progs-2.0.4/plugin/object/sym40/sym40_repair.h
Examining data/reiser4progs-2.0.4/plugin/oid/oid40/oid40.c
Examining data/reiser4progs-2.0.4/plugin/oid/oid40/oid40_repair.c
Examining data/reiser4progs-2.0.4/plugin/oid/oid40/oid40.h
Examining data/reiser4progs-2.0.4/plugin/oid/oid40/oid40_repair.h
Examining data/reiser4progs-2.0.4/plugin/policy/extents/extents.c
Examining data/reiser4progs-2.0.4/plugin/policy/smart/smart.c
Examining data/reiser4progs-2.0.4/plugin/policy/tails/tails.c
Examining data/reiser4progs-2.0.4/plugin/sdext/sdext_crypto/sdext_crypto.c
Examining data/reiser4progs-2.0.4/plugin/sdext/sdext_crypto/sdext_crypto_repair.c
Examining data/reiser4progs-2.0.4/plugin/sdext/sdext_crypto/sdext_crypto.h
Examining data/reiser4progs-2.0.4/plugin/sdext/sdext_flags/sdext_flags.c
Examining data/reiser4progs-2.0.4/plugin/sdext/sdext_flags/sdext_flags_repair.c
Examining data/reiser4progs-2.0.4/plugin/sdext/sdext_flags/sdext_flags.h
Examining data/reiser4progs-2.0.4/plugin/sdext/sdext_lt/sdext_lt.c
Examining data/reiser4progs-2.0.4/plugin/sdext/sdext_lt/sdext_lt_repair.c
Examining data/reiser4progs-2.0.4/plugin/sdext/sdext_lt/sdext_lt.h
Examining data/reiser4progs-2.0.4/plugin/sdext/sdext_lw/sdext_lw.c
Examining data/reiser4progs-2.0.4/plugin/sdext/sdext_lw/sdext_lw_repair.c
Examining data/reiser4progs-2.0.4/plugin/sdext/sdext_lw/sdext_lw.h
Examining data/reiser4progs-2.0.4/plugin/sdext/sdext_plug/sdext_plug.c
Examining data/reiser4progs-2.0.4/plugin/sdext/sdext_plug/sdext_plug_repair.c
Examining data/reiser4progs-2.0.4/plugin/sdext/sdext_plug/sdext_plug.h
Examining data/reiser4progs-2.0.4/plugin/sdext/sdext_symlink/sdext_symlink.c
Examining data/reiser4progs-2.0.4/plugin/sdext/sdext_symlink/sdext_symlink_repair.c
Examining data/reiser4progs-2.0.4/plugin/sdext/sdext_unix/sdext_unix.c
Examining data/reiser4progs-2.0.4/plugin/sdext/sdext_unix/sdext_unix_repair.c
Examining data/reiser4progs-2.0.4/plugin/sdext/sdext_unix/sdext_unix.h
Examining data/reiser4progs-2.0.4/plugin/vol/volume.c
Examining data/reiser4progs-2.0.4/progs/debugfs/browse.c
Examining data/reiser4progs-2.0.4/progs/debugfs/debugfs.c
Examining data/reiser4progs-2.0.4/progs/debugfs/print.c
Examining data/reiser4progs-2.0.4/progs/debugfs/browse.h
Examining data/reiser4progs-2.0.4/progs/debugfs/debugfs.h
Examining data/reiser4progs-2.0.4/progs/debugfs/print.h
Examining data/reiser4progs-2.0.4/progs/debugfs/types.h
Examining data/reiser4progs-2.0.4/progs/fsck/backup.c
Examining data/reiser4progs-2.0.4/progs/fsck/fsck.c
Examining data/reiser4progs-2.0.4/progs/fsck/backup.h
Examining data/reiser4progs-2.0.4/progs/fsck/fsck.h
Examining data/reiser4progs-2.0.4/progs/measurefs/measurefs.c
Examining data/reiser4progs-2.0.4/progs/mkfs/mkfs.c
Examining data/reiser4progs-2.0.4/progs/volume/volume.c
Examining data/reiser4progs-2.0.4/debian/testLibreiser4.c
FINAL RESULTS:
data/reiser4progs-2.0.4/libmisc/ui.c:61:2: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stream, prompt);
data/reiser4progs-2.0.4/libmisc/ui.c:119:4: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stream, word);
data/reiser4progs-2.0.4/progs/debugfs/browse.c:30:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(buff);
data/reiser4progs-2.0.4/progs/debugfs/print.c:27:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(buff);
data/reiser4progs-2.0.4/progs/fsck/fsck.c:52:2: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, WARNING "\n");
data/reiser4progs-2.0.4/demos/busy.c:310:2: [3] (random) srandom:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
srandom(time(0));
data/reiser4progs-2.0.4/progs/debugfs/debugfs.c:146:14: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt_long(argc, argv, "hVyftb:djk:n:i:o:plsaPUOFWB:c:?",
data/reiser4progs-2.0.4/progs/fsck/fsck.c:167:14: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt_long(argc, argv, "L:VhnqafU:b:r?dB:plo:c:uyON",
data/reiser4progs-2.0.4/progs/measurefs/measurefs.c:728:14: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt_long(argc, argv, "hVyfKTDESF:o:plc:?",
data/reiser4progs-2.0.4/progs/mkfs/mkfs.c:187:14: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt_long(argc, argv, "hVyfb:t:U:L:n:r:spalo:dm?",
data/reiser4progs-2.0.4/progs/mkfs/mkfs.c:481:4: [3] (random) srandom:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
srandom(time(0) + dev_cnt);
data/reiser4progs-2.0.4/progs/mkfs/mkfs.c:482:19: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
hint.mkfs_id = random();
data/reiser4progs-2.0.4/progs/volume/volume.c:428:14: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt_long(argc, argv, "hVRSByfbliep:g:u:a:x:r:z:c:q:m:?",
data/reiser4progs-2.0.4/demos/busy.c:226:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[256];
data/reiser4progs-2.0.4/demos/busy.c:296:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[6][256];
data/reiser4progs-2.0.4/demos/busy.h:24:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[PATH_MAXLEN];
data/reiser4progs-2.0.4/demos/cp.c:32:20: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(src_file = fopen(ctx->in.path, "r"))) {
data/reiser4progs-2.0.4/demos/cp.c:63:20: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(dst_file = fopen(ctx->out.path, "w+"))) {
data/reiser4progs-2.0.4/include/reiser4/ioctl.h:172:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[REISER4_PATH_NAME_MAX + 1];
data/reiser4progs-2.0.4/include/reiser4/plugin.h:83:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char label[PLUG_MAX_LABEL];
data/reiser4progs-2.0.4/include/reiser4/plugin.h:86:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char desc[PLUG_MAX_DESC];
data/reiser4progs-2.0.4/include/reiser4/plugin.h:798:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[REISER4_MAX_BLKSIZE];
data/reiser4progs-2.0.4/include/reiser4/plugin.h:1159:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
errno_t (*open) (reiser4_object_t *);
data/reiser4progs-2.0.4/include/reiser4/plugin.h:1337:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
errno_t (*open) (stat_entity_t *, void *);
data/reiser4progs-2.0.4/include/reiser4/plugin.h:1442:20: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
reiser4_node_t *(*open) (aal_block_t *, reiser4_key_plug_t *);
data/reiser4progs-2.0.4/include/reiser4/plugin.h:1548:26: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
reiser4_format_ent_t *(*open) (aal_device_t *, uint32_t);
data/reiser4progs-2.0.4/include/reiser4/plugin.h:1586:23: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
reiser4_oid_ent_t *(*open) (reiser4_format_ent_t *);
data/reiser4progs-2.0.4/include/reiser4/plugin.h:1638:25: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
reiser4_alloc_ent_t *(*open) (aal_device_t *, uint32_t, uint64_t);
data/reiser4progs-2.0.4/include/reiser4/plugin.h:1705:27: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
reiser4_journal_ent_t *(*open) (aal_device_t *, uint32_t,
data/reiser4progs-2.0.4/include/reiser4/types.h:24:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ms_magic[16];
data/reiser4progs-2.0.4/include/reiser4/types.h:33:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ms_vol_uuid[16];
data/reiser4progs-2.0.4/include/reiser4/types.h:36:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ms_label[16];
data/reiser4progs-2.0.4/include/reiser4/types.h:39:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ms_sub_uuid[16]; /* subvolume's external id (per subolvume) */
data/reiser4progs-2.0.4/include/reiser4/types.h:82:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ss_magic[16];
data/reiser4progs-2.0.4/include/reiser4/types.h:95:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ss_message[SS_MESSAGE_SIZE];
data/reiser4progs-2.0.4/include/reiser4/types.h:320:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char volume_uuid[17];
data/reiser4progs-2.0.4/include/reiser4/types.h:321:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char subvol_uuid[17];
data/reiser4progs-2.0.4/include/reiser4/types.h:322:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char label[17];
data/reiser4progs-2.0.4/libaux/aux.c:65:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char local[MAX_PATH];
data/reiser4progs-2.0.4/libmisc/exception.c:58:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str1[256], str2[256];
data/reiser4progs-2.0.4/libmisc/exception.c:82:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[4096];
data/reiser4progs-2.0.4/libmisc/exception.c:107:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char prompt[256];
data/reiser4progs-2.0.4/libmisc/misc.c:60:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char number[512];
data/reiser4progs-2.0.4/libmisc/profile.c:12:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[256];
data/reiser4progs-2.0.4/libmisc/profile.c:13:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char value[256];
data/reiser4progs-2.0.4/libmisc/ui.c:137:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[80], s1[80];
data/reiser4progs-2.0.4/libmisc/ui.c:183:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[255];
data/reiser4progs-2.0.4/libmisc/ui.c:210:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[255];
data/reiser4progs-2.0.4/libreiser4/alloc.c:79:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
open, fs->device, blksize, blocks);
data/reiser4progs-2.0.4/libreiser4/bitmap.c:380:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *buf[sizeof(AUX_BITMAP_MAGIC)];
data/reiser4progs-2.0.4/libreiser4/format.c:70:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
open, fs->device, blksize)))
data/reiser4progs-2.0.4/libreiser4/journal.c:82:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
open, journal->device, blksize,
data/reiser4progs-2.0.4/libreiser4/master.c:113:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
open, device, blksize)))
data/reiser4progs-2.0.4/libreiser4/node.c:159:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
open, block, tree->key.plug)))
data/reiser4progs-2.0.4/libreiser4/object.c:121:38: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (plugcall(reiser4_psobj(object), open, object)) {
data/reiser4progs-2.0.4/libreiser4/oid.c:70:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
open, fs->format->ent)))
data/reiser4progs-2.0.4/librepair/filesystem.c:267:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sign[5] = {0};
data/reiser4progs-2.0.4/librepair/format.c:118:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[256];
data/reiser4progs-2.0.4/librepair/master.c:412:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char uuid[37];
data/reiser4progs-2.0.4/librepair/master.c:421:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char uuid[37];
data/reiser4progs-2.0.4/librepair/repair.c:258:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
file = fopen(control->repair->bitmap_file, "r");
data/reiser4progs-2.0.4/librepair/semantic.c:153:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[REISER4_MAX_BLKSIZE];
data/reiser4progs-2.0.4/librepair/semantic.c:256:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[REISER4_MAX_BLKSIZE];
data/reiser4progs-2.0.4/librepair/semantic.c:385:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[REISER4_MAX_BLKSIZE];
data/reiser4progs-2.0.4/plugin/format/format40/format40.h:46:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sb_magic[MAGIC_SIZE];
data/reiser4progs-2.0.4/plugin/format/format40/format40.h:64:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sb_not_used[375];
data/reiser4progs-2.0.4/plugin/format/format40/format40.h:79:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sb_magic[MAGIC_SIZE];
data/reiser4progs-2.0.4/plugin/item/cde40/cde40.c:919:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[256];
data/reiser4progs-2.0.4/plugin/item/cde40/cde40_repair.c:919:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[256];
data/reiser4progs-2.0.4/plugin/item/stat40/stat40.c:92:34: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!stat->plug || !stat->plug->open)
data/reiser4progs-2.0.4/plugin/item/stat40/stat40.c:105:24: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
return objcall(stat, open, sdext);
data/reiser4progs-2.0.4/plugin/journal/journal40/journal40.h:86:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char magic[TXH_MAGIC_SIZE];
data/reiser4progs-2.0.4/plugin/journal/journal40/journal40.h:121:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char magic[LGR_MAGIC_SIZE];
data/reiser4progs-2.0.4/plugin/journal/journal40/journal40_repair.c:548:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char magic[TXH_MAGIC_SIZE];
data/reiser4progs-2.0.4/plugin/journal/journal40/journal40_repair.c:615:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char magic[LGR_MAGIC_SIZE];
data/reiser4progs-2.0.4/plugin/sdext/sdext_lw/sdext_lw_repair.c:70:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mode[16];
data/reiser4progs-2.0.4/plugin/sdext/sdext_plug/sdext_plug_repair.c:14:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *pset_name[PSET_STORE_LAST] = {
data/reiser4progs-2.0.4/plugin/sdext/sdext_unix/sdext_unix_repair.c:38:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char uid[255], gid[255];
data/reiser4progs-2.0.4/progs/debugfs/browse.c:14:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[4096];
data/reiser4progs-2.0.4/progs/debugfs/debugfs.c:98:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char override[4096];
data/reiser4progs-2.0.4/progs/debugfs/debugfs.c:298:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/reiser4progs-2.0.4/progs/debugfs/debugfs.c:303:16: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((file = fopen(bm_file, "w+")) == NULL) {
data/reiser4progs-2.0.4/progs/debugfs/debugfs.c:395:16: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((file = fopen(bm_file, "r")) == NULL) {
data/reiser4progs-2.0.4/progs/debugfs/print.c:12:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[256];
data/reiser4progs-2.0.4/progs/fsck/backup.c:71:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[sizeof(BACKUP_MAGIC)];
data/reiser4progs-2.0.4/progs/fsck/fsck.c:119:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char override[4096];
data/reiser4progs-2.0.4/progs/fsck/fsck.c:175:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((stream = fopen(optarg, "w")) == NULL) {
data/reiser4progs-2.0.4/progs/fsck/fsck.c:289:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
data->backup = fopen(data->backup_file,
data/reiser4progs-2.0.4/progs/measurefs/measurefs.c:696:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char override[4096];
data/reiser4progs-2.0.4/progs/mkfs/mkfs.c:138:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char override[4096];
data/reiser4progs-2.0.4/progs/mkfs/mkfs.c:463:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char uuid[256];
data/reiser4progs-2.0.4/progs/volume/volume.c:176:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char uuid[37];
data/reiser4progs-2.0.4/progs/volume/volume.c:202:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char uuid[37];
data/reiser4progs-2.0.4/progs/volume/volume.c:289:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char uuid[37];
data/reiser4progs-2.0.4/progs/volume/volume.c:341:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char uuid[37];
data/reiser4progs-2.0.4/progs/volume/volume.c:557:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open("/dev/reiser4-control", O_NONBLOCK);
data/reiser4progs-2.0.4/progs/volume/volume.c:579:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(name, O_NONBLOCK);
data/reiser4progs-2.0.4/include/reiser4/plugin.h:1178:12: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int64_t (*read) (reiser4_object_t *, void *, uint64_t);
data/reiser4progs-2.0.4/include/reiser4/plugin.h:1829:12: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int64_t (*read) (tree_entity_t *, trans_hint_t *);
data/reiser4progs-2.0.4/libreiser4/bitmap.c:407:12: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
uint32_t read;
data/reiser4progs-2.0.4/libreiser4/bitmap.c:412:7: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read != sizeof(count))
data/reiser4progs-2.0.4/libreiser4/flow.c:53:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int32_t read;
data/reiser4progs-2.0.4/libreiser4/flow.c:72:34: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
aal_memset(hint->specific, 0, read);
data/reiser4progs-2.0.4/libreiser4/flow.c:76:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (size > read)
data/reiser4progs-2.0.4/libreiser4/flow.c:79:42: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
reiser4_key_inc_offset(&hint->offset, read);
data/reiser4progs-2.0.4/libreiser4/flow.c:89:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read < 0)
data/reiser4progs-2.0.4/libreiser4/flow.c:90:12: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
return read;
data/reiser4progs-2.0.4/libreiser4/flow.c:94:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (size > read) {
data/reiser4progs-2.0.4/libreiser4/flow.c:101:43: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
reiser4_key_inc_offset(&hint->offset, read);
data/reiser4progs-2.0.4/libreiser4/flow.c:113:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
size -= read;
data/reiser4progs-2.0.4/libreiser4/flow.c:114:12: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
total += read;
data/reiser4progs-2.0.4/libreiser4/flow.c:117:21: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
hint->specific += read;
data/reiser4progs-2.0.4/libreiser4/object.c:683:30: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (!reiser4_psobj(object)->read)
data/reiser4progs-2.0.4/libreiser4/object.c:686:41: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
return plugcall(reiser4_psobj(object), read, object, buff, n);
data/reiser4progs-2.0.4/librepair/add_missing.c:128:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
uint64_t read, by_node, by_item, empty;
data/reiser4progs-2.0.4/librepair/add_missing.c:154:40: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
aal_gauge_set_value(am->gauge, stat->read * 100 / total);
data/reiser4progs-2.0.4/librepair/add_missing.c:334:32: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
am->stat.read_leaves = stat.read;
data/reiser4progs-2.0.4/librepair/add_missing.c:337:31: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
am->stat.read_twigs = stat.read;
data/reiser4progs-2.0.4/librepair/alloc.c:47:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
uint32_t read;
data/reiser4progs-2.0.4/librepair/alloc.c:54:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read != sizeof(pid)) {
data/reiser4progs-2.0.4/librepair/filesystem.c:533:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
count_t read;
data/reiser4progs-2.0.4/librepair/filesystem.c:551:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read != block->size)
data/reiser4progs-2.0.4/librepair/journal.c:122:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
uint32_t read;
data/reiser4progs-2.0.4/librepair/journal.c:130:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read != sizeof(pid)) {
data/reiser4progs-2.0.4/plugin/item/extent40/extent40.c:404:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
uint64_t read;
data/reiser4progs-2.0.4/plugin/item/extent40/extent40.c:539:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
uint32_t read;
data/reiser4progs-2.0.4/plugin/journal/journal40/journal40_repair.c:810:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
uint64_t read;
data/reiser4progs-2.0.4/plugin/journal/journal40/journal40_repair.c:848:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read != blksize) {
data/reiser4progs-2.0.4/plugin/journal/journal40/journal40_repair.c:856:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read != blksize) {
data/reiser4progs-2.0.4/plugin/node/node40/node40_repair.c:523:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
uint32_t read;
data/reiser4progs-2.0.4/plugin/node/node40/node40_repair.c:531:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read != sizeof(head->num_items))
data/reiser4progs-2.0.4/plugin/node/node40/node40_repair.c:537:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read != sizeof(head->free_space))
data/reiser4progs-2.0.4/plugin/node/node40/node40_repair.c:543:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read != sizeof(head->free_space_start))
data/reiser4progs-2.0.4/plugin/node/node40/node40_repair.c:549:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read != sizeof(head->mkfs_id))
data/reiser4progs-2.0.4/plugin/node/node40/node40_repair.c:555:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read != sizeof(head->flush_id))
data/reiser4progs-2.0.4/plugin/node/node40/node40_repair.c:561:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read != sizeof(head->flags))
data/reiser4progs-2.0.4/plugin/node/node40/node40_repair.c:567:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read != sizeof(head->level))
data/reiser4progs-2.0.4/plugin/node/node40/node40_repair.c:581:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
uint32_t read;
data/reiser4progs-2.0.4/plugin/node/node40/node40_repair.c:594:7: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read != ih_size(entity->keypol))
data/reiser4progs-2.0.4/plugin/node/node41/node41_repair.c:92:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
uint32_t read;
data/reiser4progs-2.0.4/plugin/node/node41/node41_repair.c:101:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read != sizeof(head41->csum))
data/reiser4progs-2.0.4/plugin/object/ccreg40/ccreg40.c:108:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int64_t read;
data/reiser4progs-2.0.4/plugin/object/ccreg40/ccreg40.c:120:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
return read;
data/reiser4progs-2.0.4/plugin/object/ccreg40/ccreg40.c:124:17: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ((uint64_t)read > count)
data/reiser4progs-2.0.4/plugin/object/ccreg40/ccreg40.c:127:23: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
aal_memset(buff, 0, read);
data/reiser4progs-2.0.4/plugin/object/ccreg40/ccreg40.c:128:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
return read;
data/reiser4progs-2.0.4/plugin/object/ccreg40/ccreg40.c:132:52: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ((read = ccreg40_decc_cluster(cc, clust, disk, read,
data/reiser4progs-2.0.4/plugin/object/ccreg40/ccreg40.c:133:7: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
read < clsize)) < 0)
data/reiser4progs-2.0.4/plugin/object/ccreg40/ccreg40.c:135:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
return read;
data/reiser4progs-2.0.4/plugin/object/ccreg40/ccreg40.c:138:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read != clsize) {
data/reiser4progs-2.0.4/plugin/object/ccreg40/ccreg40.c:147:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ((uint64_t)read > count)
data/reiser4progs-2.0.4/plugin/object/ccreg40/ccreg40.c:150:32: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
aal_memcpy(buff, clust + off, read);
data/reiser4progs-2.0.4/plugin/object/ccreg40/ccreg40.c:151:9: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
return read;
data/reiser4progs-2.0.4/plugin/object/ccreg40/ccreg40.c:235:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int64_t read;
data/reiser4progs-2.0.4/plugin/object/ccreg40/ccreg40.c:260:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
return read;
data/reiser4progs-2.0.4/plugin/object/ccreg40/ccreg40.c:263:36: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
aal_assert("vpf-1879", (uint64_t)read <= n);
data/reiser4progs-2.0.4/plugin/object/ccreg40/ccreg40.c:265:12: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
count += read;
data/reiser4progs-2.0.4/plugin/object/ccreg40/ccreg40.c:266:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
buff += read;
data/reiser4progs-2.0.4/plugin/object/ccreg40/ccreg40.c:267:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
off += read;
data/reiser4progs-2.0.4/plugin/object/ccreg40/ccreg40.c:268:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
n -= read;
data/reiser4progs-2.0.4/plugin/object/obj40/obj40.c:730:30: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
return obj40_core->flow_ops.read(obj->info.tree, hint);
data/reiser4progs-2.0.4/plugin/object/reg40/reg40.c:21:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int64_t read;
data/reiser4progs-2.0.4/plugin/object/reg40/reg40.c:45:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
return read;
data/reiser4progs-2.0.4/plugin/object/reg40/reg40.c:48:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read > 0)
data/reiser4progs-2.0.4/plugin/object/reg40/reg40.c:49:25: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
obj40_seek(reg, off + read);
data/reiser4progs-2.0.4/plugin/object/reg40/reg40.c:51:9: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
return read;
data/reiser4progs-2.0.4/progs/debugfs/browse.c:13:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int32_t read;
data/reiser4progs-2.0.4/progs/debugfs/browse.c:27:7: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read <= 0)
data/reiser4progs-2.0.4/progs/volume/volume.c:111:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(info->d.name, name, sizeof(info->d.name) - 1);
ANALYSIS SUMMARY:
Hits = 169
Lines analyzed = 53682 in approximately 1.17 seconds (45912 lines/second)
Physical Source Lines of Code (SLOC) = 36076
Hits@level = [0] 92 [1] 72 [2] 84 [3] 8 [4] 5 [5] 0
Hits@level+ = [0+] 261 [1+] 169 [2+] 97 [3+] 13 [4+] 5 [5+] 0
Hits/KSLOC@level+ = [0+] 7.23473 [1+] 4.68455 [2+] 2.68877 [3+] 0.36035 [4+] 0.138596 [5+] 0
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.