Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/rtklib-2.4.3+dfsg1/app/srctblbrows_qt/staoptdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/srctblbrows_qt/staoptdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/srctblbrows_qt/srctblbrows.cpp
Examining data/rtklib-2.4.3+dfsg1/app/srctblbrows_qt/browsmain.h
Examining data/rtklib-2.4.3+dfsg1/app/srctblbrows_qt/browsmain.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtklaunch_qt/launchmain.h
Examining data/rtklib-2.4.3+dfsg1/app/rtklaunch_qt/main.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtklaunch_qt/launchmain.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtklaunch_qt/rtklaunch.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkrcv/vt.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c
Examining data/rtklib-2.4.3+dfsg1/app/rtkrcv/vt.c
Examining data/rtklib-2.4.3+dfsg1/app/appcmn_qt/gmview.h
Examining data/rtklib-2.4.3+dfsg1/app/appcmn_qt/console.h
Examining data/rtklib-2.4.3+dfsg1/app/appcmn_qt/graph.h
Examining data/rtklib-2.4.3+dfsg1/app/appcmn_qt/timedlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/appcmn_qt/maskoptdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/appcmn_qt/timedlg.h
Examining data/rtklib-2.4.3+dfsg1/app/appcmn_qt/tspandlg.h
Examining data/rtklib-2.4.3+dfsg1/app/appcmn_qt/tspandlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/appcmn_qt/keydlg.h
Examining data/rtklib-2.4.3+dfsg1/app/appcmn_qt/aboutdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/appcmn_qt/aboutdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/appcmn_qt/viewer.cpp
Examining data/rtklib-2.4.3+dfsg1/app/appcmn_qt/cmdoptdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/appcmn_qt/refdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/appcmn_qt/ftpoptdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/appcmn_qt/tcpoptdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/appcmn_qt/ftpoptdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/appcmn_qt/refdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/appcmn_qt/fileoptdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/appcmn_qt/cmdoptdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/appcmn_qt/viewer.h
Examining data/rtklib-2.4.3+dfsg1/app/appcmn_qt/vieweropt.h
Examining data/rtklib-2.4.3+dfsg1/app/appcmn_qt/serioptdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/appcmn_qt/vieweropt.cpp
Examining data/rtklib-2.4.3+dfsg1/app/appcmn_qt/fileoptdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/appcmn_qt/console.cpp
Examining data/rtklib-2.4.3+dfsg1/app/appcmn_qt/gmview.cpp
Examining data/rtklib-2.4.3+dfsg1/app/appcmn_qt/tcpoptdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/appcmn_qt/keydlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/appcmn_qt/maskoptdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/appcmn_qt/graph.cpp
Examining data/rtklib-2.4.3+dfsg1/app/appcmn_qt/serioptdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot/gmview.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot/pntdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot/plotopt.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot/plotcmn.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot/skydlg.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot/mapdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot/fileseldlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot/satdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot/geview.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot/rtkplot.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot/plotopt.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot/skydlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot/pntdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot/fileseldlg.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot/mapdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot/conndlg.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot/gmview.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot/geview.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot/conndlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot/satdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/strsvr_qt/svroptdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/strsvr_qt/strsvr.cpp
Examining data/rtklib-2.4.3+dfsg1/app/strsvr_qt/svrmain.h
Examining data/rtklib-2.4.3+dfsg1/app/strsvr_qt/convdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/strsvr_qt/convdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/strsvr_qt/svroptdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/strsvr_qt/svrmain.cpp
Examining data/rtklib-2.4.3+dfsg1/app/srctblbrows/staoptdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/srctblbrows/staoptdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/srctblbrows/srctblbrows.cpp
Examining data/rtklib-2.4.3+dfsg1/app/srctblbrows/browsmain.h
Examining data/rtklib-2.4.3+dfsg1/app/srctblbrows/browsmain.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkget_qt/staoptdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkget_qt/main.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkget_qt/staoptdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkget_qt/getoptdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkget_qt/getmain.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkget_qt/getoptdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkget_qt/getmain.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/convmain.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/rtkconv.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/convopt.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/startdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/codeopt.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/convmain.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/startdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/convopt.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/codeopt.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/extopt.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postopt.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/kmzconv.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postmain.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postmain.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/rtkpost.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/extopt.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postopt.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/kmzconv.h
Examining data/rtklib-2.4.3+dfsg1/app/strsvr/svroptdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/strsvr/strsvr.cpp
Examining data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.h
Examining data/rtklib-2.4.3+dfsg1/app/strsvr/convdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/strsvr/convdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/strsvr/svroptdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/instrdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/rcvoptdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/outstrdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/main.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/rcvoptdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mapdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.h
Examining data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/naviopt.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/logstrdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/outstrdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.h
Examining data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mapdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/logstrdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/instrdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/naviopt.h
Examining data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c
Examining data/rtklib-2.4.3+dfsg1/app/rtkpost/extopt.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkpost/kmzconv.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkpost/rtkpost.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkpost/extopt.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkpost/kmzconv.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkget/staoptdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkget/staoptdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkget/getoptdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkget/getoptdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkget/rtkget.cpp
Examining data/rtklib-2.4.3+dfsg1/app/appcmn/gmview.h
Examining data/rtklib-2.4.3+dfsg1/app/appcmn/console.h
Examining data/rtklib-2.4.3+dfsg1/app/appcmn/graph.h
Examining data/rtklib-2.4.3+dfsg1/app/appcmn/timedlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/appcmn/maskoptdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/appcmn/timedlg.h
Examining data/rtklib-2.4.3+dfsg1/app/appcmn/confdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/appcmn/tspandlg.h
Examining data/rtklib-2.4.3+dfsg1/app/appcmn/tspandlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/appcmn/keydlg.h
Examining data/rtklib-2.4.3+dfsg1/app/appcmn/aboutdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/appcmn/aboutdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/appcmn/viewer.cpp
Examining data/rtklib-2.4.3+dfsg1/app/appcmn/cmdoptdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/appcmn/refdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/appcmn/ftpoptdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/appcmn/tcpoptdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/appcmn/ftpoptdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/appcmn/refdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/appcmn/fileoptdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/appcmn/cmdoptdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/appcmn/viewer.h
Examining data/rtklib-2.4.3+dfsg1/app/appcmn/vieweropt.h
Examining data/rtklib-2.4.3+dfsg1/app/appcmn/serioptdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/appcmn/vieweropt.cpp
Examining data/rtklib-2.4.3+dfsg1/app/appcmn/fileoptdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/appcmn/console.cpp
Examining data/rtklib-2.4.3+dfsg1/app/appcmn/gmview.cpp
Examining data/rtklib-2.4.3+dfsg1/app/appcmn/confdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/appcmn/tcpoptdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/appcmn/keydlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/appcmn/maskoptdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/appcmn/graph.cpp
Examining data/rtklib-2.4.3+dfsg1/app/appcmn/serioptdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtklaunch/launchmain.h
Examining data/rtklib-2.4.3+dfsg1/app/rtklaunch/launchmain.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtklaunch/rtklaunch.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtknavi/instrdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/rtknavi/rcvoptdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtknavi/outstrdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/rtknavi/rcvoptdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtknavi/mapdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.h
Examining data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtknavi/logstrdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/rtknavi/outstrdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.h
Examining data/rtklib-2.4.3+dfsg1/app/rtknavi/mapdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/rtknavi/rtknavi.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtknavi/logstrdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtknavi/instrdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.h
Examining data/rtklib-2.4.3+dfsg1/app/str2str/str2str.c
Examining data/rtklib-2.4.3+dfsg1/app/rtkpost_mkl/rtkpost_mkl.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtknavi_mkl/rtknavi_mkl.cpp
Examining data/rtklib-2.4.3+dfsg1/app/pos2kml/pos2kml.c
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/pntdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotopt.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotcmn.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/skydlg.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/mapdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/fileseldlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/satdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotinfo.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/geview.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/rtkplot.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotopt.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/skydlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/pntdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotmain.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotmain.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/fileseldlg.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/mapdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/conndlg.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdraw.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/geview.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/conndlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/satdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkconv/rtkconv.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkconv/convopt.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkconv/startdlg.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkconv/codeopt.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rtkconv/startdlg.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkconv/convopt.h
Examining data/rtklib-2.4.3+dfsg1/app/rtkconv/codeopt.cpp
Examining data/rtklib-2.4.3+dfsg1/app/rnx2rtkp/rnx2rtkp.c
Examining data/rtklib-2.4.3+dfsg1/lib/iers/src_c/vmf1_ht.c
Examining data/rtklib-2.4.3+dfsg1/lib/iers/src_c/norm8.c
Examining data/rtklib-2.4.3+dfsg1/lib/iers/src_c/step2diu.c
Examining data/rtklib-2.4.3+dfsg1/lib/iers/src_c/st1isem.c
Examining data/rtklib-2.4.3+dfsg1/lib/iers/src_c/zero_vec8.c
Examining data/rtklib-2.4.3+dfsg1/lib/iers/src_c/st1l1.c
Examining data/rtklib-2.4.3+dfsg1/lib/iers/src_c/sprod.c
Examining data/rtklib-2.4.3+dfsg1/lib/iers/src_c/st1idiu.c
Examining data/rtklib-2.4.3+dfsg1/lib/iers/src_c/cal2jd.c
Examining data/rtklib-2.4.3+dfsg1/lib/iers/src_c/vmf1.c
Examining data/rtklib-2.4.3+dfsg1/lib/iers/src_c/gpt.c
Examining data/rtklib-2.4.3+dfsg1/lib/iers/src_c/dat.c
Examining data/rtklib-2.4.3+dfsg1/lib/iers/src_c/f2c.h
Examining data/rtklib-2.4.3+dfsg1/lib/iers/src_c/gmf.c
Examining data/rtklib-2.4.3+dfsg1/lib/iers/src_c/step2lon.c
Examining data/rtklib-2.4.3+dfsg1/lib/iers/src_c/dehanttideinel.c
Examining data/rtklib-2.4.3+dfsg1/src/rtcm3.c
Examining data/rtklib-2.4.3+dfsg1/src/convrnx.c
Examining data/rtklib-2.4.3+dfsg1/src/rcvraw.c
Examining data/rtklib-2.4.3+dfsg1/src/rtcm3e.c
Examining data/rtklib-2.4.3+dfsg1/src/tle.c
Examining data/rtklib-2.4.3+dfsg1/src/rtcm.c
Examining data/rtklib-2.4.3+dfsg1/src/preceph.c
Examining data/rtklib-2.4.3+dfsg1/src/options.c
Examining data/rtklib-2.4.3+dfsg1/src/datum.c
Examining data/rtklib-2.4.3+dfsg1/src/streamsvr.c
Examining data/rtklib-2.4.3+dfsg1/src/rinex.c
Examining data/rtklib-2.4.3+dfsg1/src/postpos.c
Examining data/rtklib-2.4.3+dfsg1/src/rtcm2.c
Examining data/rtklib-2.4.3+dfsg1/src/ephemeris.c
Examining data/rtklib-2.4.3+dfsg1/src/tides.c
Examining data/rtklib-2.4.3+dfsg1/src/stream.c
Examining data/rtklib-2.4.3+dfsg1/src/pntpos.c
Examining data/rtklib-2.4.3+dfsg1/src/rtklib.h
Examining data/rtklib-2.4.3+dfsg1/src/download.c
Examining data/rtklib-2.4.3+dfsg1/src/lambda.c
Examining data/rtklib-2.4.3+dfsg1/src/rtksvr.c
Examining data/rtklib-2.4.3+dfsg1/src/convkml.c
Examining data/rtklib-2.4.3+dfsg1/src/rtkpos.c
Examining data/rtklib-2.4.3+dfsg1/src/ppp_corr.c
Examining data/rtklib-2.4.3+dfsg1/src/rcv/rt17.c
Examining data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c
Examining data/rtklib-2.4.3+dfsg1/src/rcv/crescent.c
Examining data/rtklib-2.4.3+dfsg1/src/rcv/rcvlex.c
Examining data/rtklib-2.4.3+dfsg1/src/rcv/nvs.c
Examining data/rtklib-2.4.3+dfsg1/src/rcv/binex.c
Examining data/rtklib-2.4.3+dfsg1/src/rcv/novatel.c
Examining data/rtklib-2.4.3+dfsg1/src/rcv/skytraq.c
Examining data/rtklib-2.4.3+dfsg1/src/rcv/javad.c
Examining data/rtklib-2.4.3+dfsg1/src/rcv/septentrio.c
Examining data/rtklib-2.4.3+dfsg1/src/rcv/ss2.c
Examining data/rtklib-2.4.3+dfsg1/src/rcv/gw10.c
Examining data/rtklib-2.4.3+dfsg1/src/ppp.c
Examining data/rtklib-2.4.3+dfsg1/src/geoid.c
Examining data/rtklib-2.4.3+dfsg1/src/sbas.c
Examining data/rtklib-2.4.3+dfsg1/src/qzslex.c
Examining data/rtklib-2.4.3+dfsg1/src/ppp_ar.c
Examining data/rtklib-2.4.3+dfsg1/src/rtkcmn.c
Examining data/rtklib-2.4.3+dfsg1/src/ionex.c
Examining data/rtklib-2.4.3+dfsg1/src/solution.c
Examining data/rtklib-2.4.3+dfsg1/test/utest/t_ppp.c
Examining data/rtklib-2.4.3+dfsg1/test/utest/t_corrperf.c
Examining data/rtklib-2.4.3+dfsg1/test/utest/t_rinex.c
Examining data/rtklib-2.4.3+dfsg1/test/utest/t_geoid.c
Examining data/rtklib-2.4.3+dfsg1/test/utest/t_matrix.c
Examining data/rtklib-2.4.3+dfsg1/test/utest/t_gloeph.c
Examining data/rtklib-2.4.3+dfsg1/test/utest/t_ionex.c
Examining data/rtklib-2.4.3+dfsg1/test/utest/t_coord.c
Examining data/rtklib-2.4.3+dfsg1/test/utest/t_misc.c
Examining data/rtklib-2.4.3+dfsg1/test/utest/t_filter.c
Examining data/rtklib-2.4.3+dfsg1/test/utest/t_lambda.c
Examining data/rtklib-2.4.3+dfsg1/test/utest/t_time.c
Examining data/rtklib-2.4.3+dfsg1/test/utest/t_preceph.c
Examining data/rtklib-2.4.3+dfsg1/test/utest/t_tle.c
Examining data/rtklib-2.4.3+dfsg1/test/utest/t_atmos.c
Examining data/rtklib-2.4.3+dfsg1/test/utest/t_stec.c
Examining data/rtklib-2.4.3+dfsg1/util/geniono/rcvdcb.c
Examining data/rtklib-2.4.3+dfsg1/util/geniono/genstec.c
Examining data/rtklib-2.4.3+dfsg1/util/geniono/gengrid.c
Examining data/rtklib-2.4.3+dfsg1/util/geniono/estiono.c
Examining data/rtklib-2.4.3+dfsg1/util/geniono/geniono.c
Examining data/rtklib-2.4.3+dfsg1/util/testlex/outlexion.c
Examining data/rtklib-2.4.3+dfsg1/util/testlex/dumpssr.c
Examining data/rtklib-2.4.3+dfsg1/util/testlex/dumplex.c
Examining data/rtklib-2.4.3+dfsg1/util/testlex/convlex.c
Examining data/rtklib-2.4.3+dfsg1/util/rnx2rtcm/rnx2rtcm.c
Examining data/rtklib-2.4.3+dfsg1/util/logfile/margelog.c
Examining data/rtklib-2.4.3+dfsg1/util/gencrc/genmsk.c
Examining data/rtklib-2.4.3+dfsg1/util/gencrc/crc24.c
Examining data/rtklib-2.4.3+dfsg1/util/gencrc/genxor.c
Examining data/rtklib-2.4.3+dfsg1/util/gencrc/gencrc.c
Examining data/rtklib-2.4.3+dfsg1/util/gencrc/crc16.c
Examining data/rtklib-2.4.3+dfsg1/util/simobs/simobs.c
Examining data/rtklib-2.4.3+dfsg1/util/testeph/dumpssr.c
Examining data/rtklib-2.4.3+dfsg1/util/testeph/diffeph.c
FINAL RESULTS:
data/rtklib-2.4.3+dfsg1/app/appcmn/aboutdlg.cpp:23:22: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
LabelVer->Caption=s.sprintf("with RTKLIB ver.%s %s",VER_RTKLIB,PATCH_LEVEL);
data/rtklib-2.4.3+dfsg1/app/appcmn/console.cpp:106:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s",ConBuff->Strings[ConBuff->Count-1].c_str());
data/rtklib-2.4.3+dfsg1/app/appcmn/console.cpp:114:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s%02X",(p-buff)%17==16?" ":"",msg[i]);
data/rtklib-2.4.3+dfsg1/app/appcmn/fileoptdlg.cpp:25:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,Path.c_str());
data/rtklib-2.4.3+dfsg1/app/appcmn/fileoptdlg.cpp:47:21: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
TimeSpeed->Text=s.sprintf("x%g",speed);
data/rtklib-2.4.3+dfsg1/app/appcmn/fileoptdlg.cpp:48:21: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
TimeStart->Text=s.sprintf("%g", start);
data/rtklib-2.4.3+dfsg1/app/appcmn/fileoptdlg.cpp:57:34: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
if (intv>0.0) SwapIntv->Text=s.sprintf("%.3g",intv);
data/rtklib-2.4.3+dfsg1/app/appcmn/ftpoptdlg.cpp:29:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,Path.c_str());
data/rtklib-2.4.3+dfsg1/app/appcmn/ftpoptdlg.cpp:49:15: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Addr->Text=s.sprintf("%s/%s",addr,file);
data/rtklib-2.4.3+dfsg1/app/appcmn/ftpoptdlg.cpp:52:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
PathOffset ->Text=s.sprintf("%.2g",topts[0]/3600.0);
data/rtklib-2.4.3+dfsg1/app/appcmn/ftpoptdlg.cpp:53:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Interval ->Text=s.sprintf("%.2g",topts[1]/3600.0);
data/rtklib-2.4.3+dfsg1/app/appcmn/ftpoptdlg.cpp:54:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Offset ->Text=s.sprintf("%.2g",topts[2]/3600.0);
data/rtklib-2.4.3+dfsg1/app/appcmn/ftpoptdlg.cpp:55:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RetryInterval->Text=s.sprintf("%d",topts[3]);
data/rtklib-2.4.3+dfsg1/app/appcmn/ftpoptdlg.cpp:78:9: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Path=s.sprintf("%s:%s@%s::T=%d,%d,%d,%d",User_Text.c_str(),
data/rtklib-2.4.3+dfsg1/app/appcmn/gmview.cpp:87:16: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ExecFunc(f.sprintf("AddMark(%.7f,%.7f,\"%s\",\"%s\")",lat,lon,title,msg));
data/rtklib-2.4.3+dfsg1/app/appcmn/gmview.cpp:94:16: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ExecFunc(f.sprintf("PosMark(%.7f,%.7f,\"%s\")",lat,lon,title));
data/rtklib-2.4.3+dfsg1/app/appcmn/gmview.cpp:100:16: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ExecFunc(f.sprintf("HighlightMark(\"%s\")",title));
data/rtklib-2.4.3+dfsg1/app/appcmn/graph.cpp:155:11: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
return s.sprintf("%.*f",n<0?0:n,x);
data/rtklib-2.4.3+dfsg1/app/appcmn/graph.cpp:164:14: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
return s.sprintf("%*.*s",w,w,str+b);
data/rtklib-2.4.3+dfsg1/app/appcmn/graph.cpp:412:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(lf.lfFaceName,Font_Name.c_str());
data/rtklib-2.4.3+dfsg1/app/appcmn/graph.cpp:598:5: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s.sprintf("%d",el);
data/rtklib-2.4.3+dfsg1/app/appcmn/graph.cpp:608:5: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s.sprintf("%d",az); if (!(az%90)) s=dir[i++];
data/rtklib-2.4.3+dfsg1/app/appcmn/graph.cpp:636:5: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s.sprintf("%d",el);
data/rtklib-2.4.3+dfsg1/app/appcmn/graph.cpp:646:5: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s.sprintf("%d",az); if (!(az%90)) s=dir[i++];
data/rtklib-2.4.3+dfsg1/app/appcmn/maskoptdlg.cpp:32:22: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
mask[i][j]->Text=s.sprintf("%.0f",Mask.mask[i][j]);
data/rtklib-2.4.3+dfsg1/app/appcmn/refdlg.cpp:131:7: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
if (sscanf(buff,"%lf %lf %lf %s %s",pos,pos+1,pos+2,code,name)<3) continue;
data/rtklib-2.4.3+dfsg1/app/appcmn/refdlg.cpp:207:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
StaList->Cells[0][i-1]=s.sprintf("%4d",n);
data/rtklib-2.4.3+dfsg1/app/appcmn/refdlg.cpp:208:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
StaList->Cells[1][i-1]=s.sprintf("%13.9f",pos[0]);
data/rtklib-2.4.3+dfsg1/app/appcmn/refdlg.cpp:209:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
StaList->Cells[2][i-1]=s.sprintf("%14.9f",pos[1]);
data/rtklib-2.4.3+dfsg1/app/appcmn/refdlg.cpp:210:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
StaList->Cells[3][i-1]=s.sprintf("%10.4f",pos[2]);
data/rtklib-2.4.3+dfsg1/app/appcmn/refdlg.cpp:242:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
StaList->Cells[6][i]=s.sprintf("%6.1f",norm(rr,3)/1E3);
data/rtklib-2.4.3+dfsg1/app/appcmn/serioptdlg.cpp:27:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(path,Path.c_str());
data/rtklib-2.4.3+dfsg1/app/appcmn/serioptdlg.cpp:60:9: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Path=s.sprintf("%s:%s:%d:%s:%d:%s",Port_Text.c_str(),BitRate_Text.c_str(),
data/rtklib-2.4.3+dfsg1/app/appcmn/tcpoptdlg.cpp:33:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,Path.c_str());
data/rtklib-2.4.3+dfsg1/app/appcmn/tcpoptdlg.cpp:93:9: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Path=s.sprintf("%s:%s@%s:%s/%s:%s",User_Text.c_str(),Passwd_Text.c_str(),
data/rtklib-2.4.3+dfsg1/app/appcmn/timedlg.cpp:27:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s GPST\n",s1);
data/rtklib-2.4.3+dfsg1/app/appcmn/timedlg.cpp:28:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s UTC\n\n",s2);
data/rtklib-2.4.3+dfsg1/app/appcmn/tspandlg.cpp:43:22: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
EditTimeInt->Text=s.sprintf("%g",TimeInt);
data/rtklib-2.4.3+dfsg1/app/appcmn/tspandlg.cpp:95:17: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
TimeY1->Text=s.sprintf("%04.0f/%02.0f/%02.0f",ep[0],ep[1],ep[2]);
data/rtklib-2.4.3+dfsg1/app/appcmn/tspandlg.cpp:108:17: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
TimeH1->Text=s.sprintf("%02d:%02d:%02d",sec/3600,(sec%3600)/60,sec%60);
data/rtklib-2.4.3+dfsg1/app/appcmn/tspandlg.cpp:126:17: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
TimeY2->Text=s.sprintf("%04.0f/%02.0f/%02.0f",ep[0],ep[1],ep[2]);
data/rtklib-2.4.3+dfsg1/app/appcmn/tspandlg.cpp:139:17: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
TimeH2->Text=s.sprintf("%02d:%02d:%02d",sec/3600,(sec%3600)/60,sec%60);
data/rtklib-2.4.3+dfsg1/app/appcmn/viewer.cpp:132:3: [4] (buffer) wcscpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using a function version that stops copying at the end
of the buffer.
wcscpy(TextStr+n,wbuff);
data/rtklib-2.4.3+dfsg1/app/appcmn/vieweropt.cpp:21:45: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
FontLabel->Caption=FontLabel->Font->Name+s.sprintf(" %dpt",FontLabel->Font->Size);
data/rtklib-2.4.3+dfsg1/app/appcmn/vieweropt.cpp:53:45: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
FontLabel->Caption=FontLabel->Font->Name+s.sprintf(" %dpt",FontLabel->Font->Size);
data/rtklib-2.4.3+dfsg1/app/appcmn_qt/console.cpp:68:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s",qPrintable(ConBuff.last()));
data/rtklib-2.4.3+dfsg1/app/appcmn_qt/console.cpp:76:24: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s%02X",(p-buff)%17==16?" ":"",msg[i]);
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:161:27: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
va_start(arg,format); vfprintf(stderr,format,arg); va_end(arg);
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:162:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr,*format?"\r":"\n");
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:178:18: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (file[0]) strcpy(ofile[0],file[0]);
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:183:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ofile[0],ifile);
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:187:18: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (file[1]) strcpy(ofile[1],file[1]);
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:190:9: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(ofile[1],extnav);
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:193:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ofile[1],ifile);
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:197:18: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (file[2]) strcpy(ofile[2],file[2]);
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:202:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ofile[2],ifile);
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:206:18: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (file[3]) strcpy(ofile[3],file[3]);
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:211:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ofile[3],ifile);
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:215:18: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (file[4]) strcpy(ofile[4],file[4]);
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:220:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ofile[4],ifile);
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:224:18: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (file[5]) strcpy(ofile[5],file[5]);
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:229:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ofile[5],ifile);
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:233:18: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (file[6]) strcpy(ofile[6],file[6]);
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:236:9: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(ofile[6],extlog);
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:239:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ofile[6],ifile);
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:242:9: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(ofile[6],extlog);
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:246:48: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if ((p=strrchr(ofile[i],FILEPATHSEP))) strcpy(work,p+1);
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:247:14: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
else strcpy(work,ofile[i]);
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:248:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(ofile[i],"%s%c%s",dir,FILEPATHSEP,work);
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:273:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,argv);
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:329:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(opt->rcvopt,argv[++i]);
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:335:32: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (nc<MAXCOMMENT) strcpy(opt->comment[nc++],argv[++i]);
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:338:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(opt->marker,argv[++i]);
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:341:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(opt->markerno,argv[++i]);
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:344:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(opt->markertype,argv[++i]);
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:348:17: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(opt->name[j],p);
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:353:17: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(opt->rec[j],p);
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:358:17: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(opt->ant[j],p);
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:415:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(opt->staid,argv[++i]);
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:496:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(opt.prog,"%s %s",PRGNAME,VER_RTKLIB);
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:498:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(opt.comment[1],"format: %s",formatstrs[format]);
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:501:9: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(opt.comment[1],opt.rcvopt);
data/rtklib-2.4.3+dfsg1/app/rnx2rtkp/rnx2rtkp.c:79:27: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
va_start(arg,format); vfprintf(stderr,format,arg); va_end(arg);
data/rtklib-2.4.3+dfsg1/app/rnx2rtkp/rnx2rtkp.c:109:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(solopt.prog ,"%s ver.%s %s",PROGNAME,VER_RTKLIB,PATCH_LEVEL);
data/rtklib-2.4.3+dfsg1/app/rnx2rtkp/rnx2rtkp.c:110:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(filopt.trace,"%s.trace",PROGNAME);
data/rtklib-2.4.3+dfsg1/app/rnx2rtkp/rnx2rtkp.c:138:51: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
else if (!strcmp(argv[i],"-s")&&i+1<argc) strcpy(solopt.sep,argv[++i]);
data/rtklib-2.4.3+dfsg1/app/rtkconv/codeopt.cpp:22:24: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
for (int i=0;i<6;i++) strcpy(mask[i],ConvOptDialog->CodeMask[i].c_str());
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:56:27: [4] (format) vsprintf:
Potential format string problem (CWE-134). Make format string constant.
va_start(arg,format); vsprintf(buff,format,arg); va_end(arg);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:90:15: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Caption=s.sprintf("%s ver.%s %s",PRGNAME,VER_RTKLIB,PATCH_LEVEL);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:100:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,GetCommandLine());
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:145:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(ofile[0],"%s\\%s",OutDir_Text.c_str(),p);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:148:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ofile[0],ifile);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:155:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(ofile[1],"%s.obs" ,ofile[0]);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:156:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(ofile[2],"%s.nav" ,ofile[0]);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:157:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(ofile[3],"%s.gnav",ofile[0]);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:158:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(ofile[4],"%s.hnav",ofile[0]);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:159:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(ofile[5],"%s.qnav",ofile[0]);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:160:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(ofile[6],"%s.lnav",ofile[0]);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:161:9: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(ofile[7],lex?"%s.lex":"%s.sbs",ofile[0]);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:166:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(ofile[1],"%s%%r%%n0.%%yO",ofile[0]);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:168:13: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(ofile[2],"%s%%r%%n0.%%yP",ofile[0]);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:171:13: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(ofile[2],"%s%%r%%n0.%%yN",ofile[0]);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:173:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(ofile[3],"%s%%r%%n0.%%yG",ofile[0]);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:174:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(ofile[4],"%s%%r%%n0.%%yH",ofile[0]);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:175:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(ofile[5],"%s%%r%%n0.%%yQ",ofile[0]);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:176:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(ofile[6],"%s%%r%%n0.%%yL",ofile[0]);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:177:9: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(ofile[7],lex?"%s%%r%%n0_%%y.lex":"%s%%r%%n0_%%y.sbs",ofile[0]);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:215:36: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
item=ini->ReadString(cat,s.sprintf("%s_%03d",key.c_str(),i),"");
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:228:32: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteString(cat,s.sprintf("%s_%03d",key.c_str(),i),list->Strings[i]);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:569:20: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
TimeY1->Text=s.sprintf("%04.0f/%02.0f/%02.0f",ep[0],ep[1],ep[2]);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:582:20: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
TimeH1->Text=s.sprintf("%02d:%02d:%02d",sec/3600,(sec%3600)/60,sec%60);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:600:20: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
TimeY2->Text=s.sprintf("%04.0f/%02.0f/%02.0f",ep[0],ep[1],ep[2]);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:613:20: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
TimeH2->Text=s.sprintf("%02d:%02d:%02d",sec/3600,(sec%3600)/60,sec%60);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:709:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(file,InFile_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:761:50: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (OutFile1->Enabled&&OutFileEna1->Checked) strcpy(ofile[0],OutFile1_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:762:50: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (OutFile2->Enabled&&OutFileEna2->Checked) strcpy(ofile[1],OutFile2_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:763:50: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (OutFile3->Enabled&&OutFileEna3->Checked) strcpy(ofile[2],OutFile3_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:764:50: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (OutFile4->Enabled&&OutFileEna4->Checked) strcpy(ofile[3],OutFile4_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:765:50: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (OutFile5->Enabled&&OutFileEna5->Checked) strcpy(ofile[4],OutFile5_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:766:50: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (OutFile6->Enabled&&OutFileEna6->Checked) strcpy(ofile[5],OutFile6_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:767:50: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (OutFile7->Enabled&&OutFileEna7->Checked) strcpy(ofile[6],OutFile7_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:778:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(rnxopt.prog,"%s %s %s",PRGNAME,VER_RTKLIB,PATCH_LEVEL);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:797:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"format: %s",formatstrs[format]);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:798:25: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
if (*rnxopt.rcvopt) sprintf(p,", option: %s",rnxopt.rcvopt);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:800:23: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
for (i=0;i<6;i++) strcpy(rnxopt.mask[i],CodeMask[i].c_str());
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:807:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,ExSats.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkconv/convopt.cpp:51:18: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
AppPos0->Text=s.sprintf("%.4f",MainWindow->AppPos[0]);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convopt.cpp:52:18: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
AppPos1->Text=s.sprintf("%.4f",MainWindow->AppPos[1]);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convopt.cpp:53:18: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
AppPos2->Text=s.sprintf("%.4f",MainWindow->AppPos[2]);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convopt.cpp:54:18: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
AntDel0->Text=s.sprintf("%.4f",MainWindow->AntDel[0]);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convopt.cpp:55:18: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
AntDel1->Text=s.sprintf("%.4f",MainWindow->AntDel[1]);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convopt.cpp:56:18: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
AntDel2->Text=s.sprintf("%.4f",MainWindow->AntDel[2]);
data/rtklib-2.4.3+dfsg1/app/rtkconv/startdlg.cpp:53:17: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
TimeY1->Text=s.sprintf("%04.0f/%02.0f/%02.0f",ep[0],ep[1],ep[2]);
data/rtklib-2.4.3+dfsg1/app/rtkconv/startdlg.cpp:66:17: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
TimeH1->Text=s.sprintf("%02d:%02d:%02d",sec/3600,(sec%3600)/60,sec%60);
data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/codeopt.cpp:25:27: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
for (int i=0;i<6;i++) strcpy(mask[i],qPrintable(convOptDialog->CodeMask[i]));
data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/convmain.cpp:59:27: [4] (format) vsprintf:
Potential format string problem (CWE-134). Make format string constant.
va_start(arg,format); vsprintf(buff,format,arg); va_end(arg);
data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/convmain.cpp:693:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(conversionThread->ifile,qPrintable(InFile_Text));
data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/convmain.cpp:742:58: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (OutFile1->isEnabled()&&OutFileEna1->isChecked()) strcpy(conversionThread->ofile[0],qPrintable(OutFile1_Text));
data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/convmain.cpp:743:58: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (OutFile2->isEnabled()&&OutFileEna2->isChecked()) strcpy(conversionThread->ofile[1],qPrintable(OutFile2_Text));
data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/convmain.cpp:744:58: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (OutFile3->isEnabled()&&OutFileEna3->isChecked()) strcpy(conversionThread->ofile[2],qPrintable(OutFile3_Text));
data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/convmain.cpp:745:58: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (OutFile4->isEnabled()&&OutFileEna4->isChecked()) strcpy(conversionThread->ofile[3],qPrintable(OutFile4_Text));
data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/convmain.cpp:746:58: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (OutFile5->isEnabled()&&OutFileEna5->isChecked()) strcpy(conversionThread->ofile[4],qPrintable(OutFile5_Text));
data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/convmain.cpp:747:58: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (OutFile6->isEnabled()&&OutFileEna6->isChecked()) strcpy(conversionThread->ofile[5],qPrintable(OutFile6_Text));
data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/convmain.cpp:748:58: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (OutFile7->isEnabled()&&OutFileEna7->isChecked()) strcpy(conversionThread->ofile[6],qPrintable(OutFile7_Text));
data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/convmain.cpp:757:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conversionThread->rnxopt.prog,"%s %s %s",PRGNAME,VER_RTKLIB,PATCH_LEVEL);
data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/convmain.cpp:776:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"format: %s",formatstrs[conversionThread->format]);
data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/convmain.cpp:777:43: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
if (*conversionThread->rnxopt.rcvopt) sprintf(p,", option: %s",conversionThread->rnxopt.rcvopt);
data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/convmain.cpp:779:23: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
for (i=0;i<6;i++) strcpy(conversionThread->rnxopt.mask[i],qPrintable(CodeMask[i]));
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:57:5: [4] (format) vsprintf:
Potential format string problem (CWE-134). Make format string constant.
vsprintf(buff,format,arg);
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:64:12: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
q+=sprintf(q,"%s",str.c_str()+MAX(len-66,0));
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:66:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(q,"%s",p+5);
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:102:17: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Caption=str.sprintf("%s v.%s %s",PRGNAME,VER_RTKLIB,PATCH_LEVEL);
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:104:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,GetCommandLine());
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:155:9: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
opt.sprintf(" /root,\"%s\" /select,\"%s\"",path,path);
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:384:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
LabelSta->Caption=str.sprintf("Stations (%d)",n);
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:471:20: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
TimeY1->Text=s.sprintf("%04.0f/%02.0f/%02.0f",ep[0],ep[1],ep[2]);
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:485:20: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
TimeH1->Text=s.sprintf("%02d:%02d",sec/3600,(sec%3600)/60);
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:504:20: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
TimeY2->Text=s.sprintf("%04.0f/%02.0f/%02.0f",ep[0],ep[1],ep[2]);
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:518:20: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
TimeH2->Text=s.sprintf("%02d:%02d",sec/3600,(sec%3600)/60);
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:567:38: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
stas=ini->ReadString("sta",s.sprintf("station%d",i),"");
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:568:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,stas.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:616:16: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s%s",k==0?"":",",sta.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:618:35: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteString ("sta",s.sprintf("station%d",i),buff);
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:714:9: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
if (sscanf(str.c_str(),"%lf%s",&val,unit)>=1) {
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:732:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(types[nurl++],str.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:771:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,str.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:815:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
LabelSta->Caption=str.sprintf("Stations (%d)",n);
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:868:42: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
item=ini->ReadString("history",s.sprintf("%s_%03d",key.c_str(),i),"");
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:879:38: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteString("history",s.sprintf("%s_%03d",key.c_str(),i),list->Strings[i]);
data/rtklib-2.4.3+dfsg1/app/rtkget_qt/getmain.cpp:68:5: [4] (format) vsprintf:
Potential format string problem (CWE-134). Make format string constant.
vsprintf(buff,format,arg);
data/rtklib-2.4.3+dfsg1/app/rtkget_qt/getmain.cpp:284:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(thread->dir,qPrintable(Dir->currentText()));
data/rtklib-2.4.3+dfsg1/app/rtkget_qt/getmain.cpp:350:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(thread->dir,qPrintable(Dir->currentText()));
data/rtklib-2.4.3+dfsg1/app/rtkget_qt/getmain.cpp:731:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(types[nurl++],qPrintable(str));
data/rtklib-2.4.3+dfsg1/app/rtklaunch/launchmain.cpp:49:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,GetCommandLine());
data/rtklib-2.4.3+dfsg1/app/rtknavi/instrdlg.cpp:62:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
NmeaPos1 ->Text =s.sprintf("%.9f",NmeaPos[0]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/instrdlg.cpp:63:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
NmeaPos2 ->Text =s.sprintf("%.9f",NmeaPos[1]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/instrdlg.cpp:133:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,path.c_str());
data/rtklib-2.4.3+dfsg1/app/rtknavi/instrdlg.cpp:295:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
NmeaPos1->Text=s.sprintf("%.9f",RefDialog->Pos[0]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/instrdlg.cpp:296:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
NmeaPos2->Text=s.sprintf("%.9f",RefDialog->Pos[1]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/logstrdlg.cpp:142:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,path.c_str());
data/rtklib-2.4.3+dfsg1/app/rtknavi/mapdlg.cpp:234:5: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s.sprintf("To %s: Distance %.3fm Direction %.1f%s",
data/rtklib-2.4.3+dfsg1/app/rtknavi/mapdlg.cpp:376:33: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
DrawText(p.x,p.y+VELSIZE/2+7,s.sprintf("%.0f km/h",v*3.6),color,1);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mapdlg.cpp:401:20: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
DrawText(x,y-10,s.sprintf("%.0f %s",sf,unit),clGray,1);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:229:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
n=sprintf(buff,"%s\n",rtcm.msgtype);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:239:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
n=sprintf(buff,"%s\n",rtcm.msgtype);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:249:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
n=sprintf(buff,"%s\n",raw.msgtype);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:265:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s",ConBuff->Strings[ConBuff->Count-1].c_str());
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:273:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s%02X",(p-buff)%17==16?" ":"",msg[i]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:397:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(file,rtksvr.files[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:422:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%s %s",VER_RTKLIB,PATCH_LEVEL);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:425:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%d",thread);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:431:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%d",cycle);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:440:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.0f",rtk.opt.elmin*R2D);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:443:44: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
Tbl->Cells[1][i++]=!rtk.opt.snrmask.ena?s.sprintf(""):
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:444:5: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s.sprintf("%.0f,%.0f,%.0f,%.0f,%.0f,%.0f,%.0f,%.0f,%.0f",
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:450:44: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
Tbl->Cells[1][i++]=!rtk.opt.snrmask.ena?s.sprintf(""):
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:451:5: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s.sprintf("%.0f,%.0f,%.0f,%.0f,%.0f,%.0f,%.0f,%.0f,%.0f",
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:457:44: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
Tbl->Cells[1][i++]=!rtk.opt.snrmask.ena?s.sprintf(""):
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:458:5: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s.sprintf("%.0f,%.0f,%.0f,%.0f,%.0f,%.0f,%.0f,%.0f,%.0f",
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:464:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%s,%s",rtk.opt.dynamics?"ON":"OFF",rtk.opt.tidecorr?"ON":"OFF");
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:467:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%s,%s",ionoopt[rtk.opt.ionoopt],tropopt[rtk.opt.tropopt]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:485:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%02.0f:%02.0f:%04.1f",rt[0],rt[1],rt[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:488:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%d",cputime);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:491:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%d",prcout);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:494:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%d,%d,%d",nb[0],nb[1],nb[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:497:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("Obs(%d),Nav(%d),Gnav(%d),Ion(%d),Sbs(%d),Pos(%d),Dgps(%d),Ssr(%d),Lex(%d),Err(%d)",
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:502:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("Obs(%d),Nav(%d),Gnav(%d),Ion(%d),Sbs(%d),Pos(%d),Dgps(%d),Ssr(%d),Lex(%d),Err(%d)",
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:507:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("Obs(%d),Nav(%d),Gnav(%d),Ion(%d),Sbs(%d),Pos(%d),Dgps(%d),Ssr(%d),Lex(%d),Err(%d)",
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:519:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.3f,%.3f,%.3f",rtk.sol.dtr[1]*1E9,rtk.sol.dtr[2]*1E9,
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:523:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.3f",rtk.tt);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:526:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++] =s.sprintf("%.3f",rtk.sol.age);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:529:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.3f",rtk.sol.ratio);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:532:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%d",nsat0);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:535:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%d",nsat1);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:538:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%d",rtk.sol.ns);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:541:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.1f,%.1f,%.1f,%.1f",dop[0],dop[1],dop[2],dop[3]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:544:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%d",rtk.na);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:547:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%d",rtk.nx);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:550:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.3f,%.3f,%.3f",rtk.sol.rr[0],rtk.sol.rr[1],rtk.sol.rr[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:554:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.8f,%.8f,%.3f",pos[0]*R2D,pos[1]*R2D,pos[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:558:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.3f,%.3f,%.3f",vel[0],vel[1],vel[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:561:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.3f,%.3f,%.3f",
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:565:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.3f,%.3f,%.3f",
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:569:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.3f,%.3f,%.3f",
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:573:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.3f,%.3f,%.3f",
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:577:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.3f,%.3f,%.3f",rtk.rb[0],rtk.rb[1],rtk.rb[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:581:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.8f,%.8f,%.3f",pos[0]*R2D,pos[1]*R2D,pos[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:585:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.3f,%.3f,%.3f",vel[0],vel[1],vel[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:592:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.3f,%.3f,%.3f",off1[0],off1[1],off1[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:596:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.3f,%.3f,%.3f",off2[0],off2[1],off2[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:600:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.3f,%.3f,%.3f",del[0],del[1],del[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:607:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.3f,%.3f,%.3f",off1[0],off1[1],off1[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:611:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.3f,%.3f,%.3f",off2[0],off2[1],off2[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:615:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.3f,%.3f,%.3f",del[0],del[1],del[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:618:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%s-%s (%d)",s1,s2,ne);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:645:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j ][0]=s.sprintf("L%d",freq[i]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:650:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j ][0]=s.sprintf("Fix%d",freq[i]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:655:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j ][0]=s.sprintf("P%d Residual(m)",freq[i]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:660:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j ][0]=s.sprintf("L%d Residual(m)",freq[i]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:665:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j ][0]=s.sprintf("Slip%d",freq[i]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:670:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j ][0]=s.sprintf("Lock%d",freq[i]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:675:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j ][0]=s.sprintf("Outage%d",freq[i]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:680:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j ][0]=s.sprintf("Reject%d",freq[i]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:685:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j ][0]=s.sprintf("WaveL%d(m)",freq[i]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:737:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%d",prn);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:741:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.1f",az);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:742:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.1f",el);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:751:25: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.2f",ssat->resp[k]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:754:25: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.4f",ssat->resc[k]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:757:25: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%d",ssat->slipc[k]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:760:25: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%d",ssat->lock[k]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:763:25: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%d",ssat->outc[k]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:766:25: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%d",ssat->rejc[k]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:769:25: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%7.5f",lam[i][k]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:771:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.3f",ssat->gf);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:772:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.2f",ssat->phw);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:773:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.2f",cbias[i][0]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:774:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.2f",cbias[i][1]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:775:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.2f",cbias[i][2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:832:29: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Label->Caption=time.time?s.sprintf("Time: %s",tstr):s0;
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:836:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("X_%d",i+1);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:837:37: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=x[i]==0.0?s0:s.sprintf("%.3f",x[i]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:838:42: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=P[i+i*nx]==0.0?s0:s.sprintf("%.3f",SQRT(P[i+i*nx]));
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:839:43: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=i>=na||xa[i]==0?s0:s.sprintf("%.3f",xa[i]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:840:50: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=i>=na||Pa[i+i*na]==0.0?s0:s.sprintf("%.3f",SQRT(Pa[i+i*na]));
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:892:29: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Label->Caption=time.time?s.sprintf("Time: %s",tstr):s0;
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:896:22: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[0][n]=s.sprintf("X_%d",i+1);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:897:22: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[n][0]=s.sprintf("X_%d",i+1);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:901:25: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
P[i+j*nx]==0.0?s0:s.sprintf("%.5f",SQRT(P[i+j*nx]));
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:924:32: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j ][0]=i<NFREQ?s.sprintf("P%d (m)",freq[i]):s.sprintf("PX%d (m)",i-NFREQ+1);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:924:61: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j ][0]=i<NFREQ?s.sprintf("P%d (m)",freq[i]):s.sprintf("PX%d (m)",i-NFREQ+1);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:929:32: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j ][0]=i<NFREQ?s.sprintf("L%d (cycle)",freq[i]):s.sprintf("LX%d (cycle)",i-NFREQ+1);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:929:65: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j ][0]=i<NFREQ?s.sprintf("L%d (cycle)",freq[i]):s.sprintf("LX%d (cycle)",i-NFREQ+1);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:934:32: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j ][0]=i<NFREQ?s.sprintf("D%d (Hz)",freq[i]):s.sprintf("DX%d (Hz)",i-NFREQ+1);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:934:62: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j ][0]=i<NFREQ?s.sprintf("D%d (Hz)",freq[i]):s.sprintf("DX%d (Hz)",i-NFREQ+1);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:939:32: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j ][0]=i<NFREQ?s.sprintf("S%d",freq[i]):s.sprintf("SX%d",i-NFREQ+1);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:939:57: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j ][0]=i<NFREQ?s.sprintf("S%d",freq[i]):s.sprintf("SX%d",i-NFREQ+1);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:949:32: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j ][0]=i<NFREQ?s.sprintf("C%d",freq[i]):s.sprintf("CX%d",i-NFREQ+1);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:949:57: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j ][0]=i<NFREQ?s.sprintf("C%d",freq[i]):s.sprintf("CX%d",i-NFREQ+1);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:980:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%d",obs[i].rcv);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:982:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%.3f",obs[i].P[k]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:985:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%.3f",obs[i].L[k]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:988:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%.3f",obs[i].D[k]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:991:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%.1f",obs[i].SNR[k]*0.25);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:994:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%d",obs[i].LLI[k]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:998:38: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
if (*code) Tbl->Cells[j++][i+1]=s.sprintf("L%s",code);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1061:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%d",prn);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1063:36: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
if (eph[k].iode<0) s="-"; else s.sprintf("%d",eph[k].iode);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1065:36: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
if (eph[k].iodc<0) s="-"; else s.sprintf("%d",eph[k].iodc);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1067:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%d",eph[k].sva);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1068:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%02x",eph[k].svh);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1075:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.3f",eph[k].A);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1076:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.8f",eph[k].e);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1077:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.5f",eph[k].i0 *R2D);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1078:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.5f",eph[k].OMG0*R2D);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1079:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.5f",eph[k].omg *R2D);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1080:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.5f",eph[k].M0 *R2D);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1081:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.4E",eph[k].deln*R2D);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1082:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.4E",eph[k].OMGd*R2D);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1083:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.4E",eph[k].idot*R2D);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1084:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.1f",eph[k].f0*1E9);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1085:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.4f",eph[k].f1*1E9);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1086:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.4f",eph[k].f2*1E9);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1087:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.1f",eph[k].tgd[0]*1E9);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1088:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.1f",eph[k].tgd[1]*1E9);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1089:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.1f",eph[k].tgd[2]*1E9);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1091:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.4E",eph[k].cuc);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1092:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.4E",eph[k].cus);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1093:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.4E",eph[k].crc);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1094:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.4E",eph[k].crs);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1095:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.4E",eph[k].cic);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1096:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.4E",eph[k].cis);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1097:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%d" ,eph[k].code);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1098:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%d" ,eph[k].flag);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1158:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%d",prn);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1160:37: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
if (geph[i].iode<0) s="-"; else s.sprintf("%d",geph[i].iode);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1162:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%d",geph[i].frq);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1163:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%d",geph[i].svh);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1164:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%d",geph[i].age);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1169:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.2f",geph[i].pos[0]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1170:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.2f",geph[i].pos[1]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1171:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.2f",geph[i].pos[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1172:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.5f",geph[i].vel[0]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1173:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.5f",geph[i].vel[1]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1174:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.5f",geph[i].vel[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1175:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.7f",geph[i].acc[0]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1176:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.7f",geph[i].acc[1]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1177:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.7f",geph[i].acc[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1178:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.1f",geph[i].taun*1E9);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1179:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.4f",geph[i].gamn*1E9);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1240:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%d",prn);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1248:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%2x", seph[i].svh);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1249:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%d", seph[i].sva);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1250:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.2f",seph[i].pos[0]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1251:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.2f",seph[i].pos[1]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1252:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.2f",seph[i].pos[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1253:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.6f",seph[i].vel[0]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1254:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.6f",seph[i].vel[1]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1255:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.6f",seph[i].vel[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1256:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.7f",seph[i].acc[0]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1257:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.7f",seph[i].acc[1]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1258:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.7f",seph[i].acc[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1259:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.1f",seph[i].af0*1E9);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1260:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.4f",seph[i].af1*1E9);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1308:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%s",tstr);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1312:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%s",tstr);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1316:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%s",tstr);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1320:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%d,%.3f",week,tow);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1323:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%d",leaps);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1326:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.0f,%.0f",utc_gps[3],utc_gps[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1329:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.3f,%.6f",utc_gps[0]*1E9,utc_gps[1]*1E9);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1332:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.0f,%.0f",utc_gal[3],utc_gal[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1335:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.3f,%.6f",utc_gal[0]*1E9,utc_gal[1]*1E9);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1338:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.0f,%.0f",utc_qzs[3],utc_qzs[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1341:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.3f,%.6f",utc_qzs[0]*1E9,utc_qzs[1]*1E9);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1344:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.5E,%.5E,%.5E,%.5E",ion_gps[0],ion_gps[1],ion_gps[2],ion_gps[3]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1347:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.5E,%.5E,%.5E,%.5E",ion_gps[4],ion_gps[5],ion_gps[6],ion_gps[7]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1350:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.5E,%.5E,%.5E",ion_gal[0],ion_gal[1],ion_gal[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1353:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.5E,%.5E,%.5E,%.5E",ion_qzs[0],ion_qzs[1],ion_qzs[2],ion_qzs[3]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1356:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.5E,%.5E,%.5E,%.5E",ion_qzs[4],ion_qzs[5],ion_qzs[6],ion_qzs[7]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1418:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%d",stream[i].inb);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1419:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%d",stream[i].inr);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1420:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%d",stream[i].outb);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1421:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%d",stream[i].outr);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1422:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(path,stream[i].path);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1486:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%d",msg[i].prn);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1488:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%d",type);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1530:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Label->Caption=s.sprintf("IODP:%2d System Latency:%2d s",
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1539:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%d",satp->lcorr.iode);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1540:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%.3f",satp->lcorr.dpos[0]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1541:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%.3f",satp->lcorr.dpos[1]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1542:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%.3f",satp->lcorr.dpos[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1543:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%.4f",satp->lcorr.dvel[0]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1544:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%.4f",satp->lcorr.dvel[1]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1545:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%.4f",satp->lcorr.dvel[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1546:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%.3f",satp->lcorr.daf0*1E9);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1547:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%.4f",satp->lcorr.daf1*1E9);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1586:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[k++][n+1]=s.sprintf("%d",ion->iodi);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1587:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[k++][n+1]=s.sprintf("%d",ion->igp[j].lat);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1588:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[k++][n+1]=s.sprintf("%d",ion->igp[j].lon);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1589:44: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[k++][n+1]=ion->igp[j].give?s.sprintf("%d",ion->igp[j].give-1):s0;
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1590:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[k++][n+1]=s.sprintf("%.3f",ion->igp[j].delay);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1632:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Label->Caption=s.sprintf("IODP:%2d System Latency:%2d s",sbssat.iodp,sbssat.tlat);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1641:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%.3f",satp->fcorr.prc);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1642:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%.4f",satp->fcorr.rrc);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1643:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%d",satp->fcorr.iodf);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1644:43: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=satp->fcorr.udre?s.sprintf("%d",satp->fcorr.udre-1):s0;
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1645:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%d",satp->fcorr.ai);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1685:13: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p1+=sprintf(p1,"%s%d (%d)",p1>mstr1?",":"",j,rtcm.nmsg2[j]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1688:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(p1,"%sother (%d)",p1>mstr1?",":"",rtcm.nmsg2[0]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1692:13: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p2+=sprintf(p2,"%s%d(%d)",p2>mstr2?",":"",j+1000,rtcm.nmsg3[j]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1695:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(p2,"%sother(%d)",p2>mstr2?",":"",rtcm.nmsg3[0]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1708:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%d",rtcm.staid);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1711:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%d",rtcm.stah);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1714:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%d",rtcm.seqno);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1717:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.3f,%.3f,%.3f",rtcm.sta.pos[0],rtcm.sta.pos[1],rtcm.sta.pos[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1721:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.8f,%.8f,%.3f",pos[0]*R2D,pos[1]*R2D,pos[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1724:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%d",rtcm.sta.itrf);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1730:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.3f,%.3f,%.3f",rtcm.sta.del[0],rtcm.sta.del[1],rtcm.sta.del[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1733:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.3f",rtcm.sta.hgt);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1739:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%d",rtcm.sta.antsetup);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1819:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%.3f",dgps[i].prc);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1820:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%.4f",dgps[i].rrc);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1821:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%d",dgps[i].iod);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1822:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%d",dgps[i].udre);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1877:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%.0f",ssr[i].udi[0]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1878:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%.0f",ssr[i].udi[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1879:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%d",ssr[i].iode);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1880:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%d",ssr[i].ura);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1881:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%d",ssr[i].refd);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1885:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%.3f",ssr[i].deph[k]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1888:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%.3f",ssr[i].ddeph[k]*1E3);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1890:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%.3f",ssr[i].dclk[0]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1891:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%.3f",ssr[i].dclk[1]*1E3);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1892:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%.5f",ssr[i].dclk[2]*1E3);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1893:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][i+1]=s.sprintf("%.3f",ssr[i].hrclk);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1897:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s:%.3f ",code2obs(k+1,NULL),ssr[i].cbias[k]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1903:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s:%.3f ",code2obs(k+1,NULL),ssr[i].pbias[k]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1947:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%d",raw.lexmsg.stat);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1950:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.3f",raw.lexmsg.ttt/1000.0);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1953:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.1f",raw.lexmsg.snr*0.25);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1956:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%d",raw.lexmsg.prn);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1959:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%d",raw.lexmsg.type);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1962:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%d",raw.lexmsg.alert);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1967:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%02X%s",raw.lexmsg.msg[j*32+k],k%4==3?" ":"");
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1969:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[0][i ]=s.sprintf("Data Part (%d-%d)",j*32*8,
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:2039:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%d",lexeph[i].ura);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:2042:25: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.3f",lexeph[i].pos[k]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:2045:25: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.6f",lexeph[i].vel[k]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:2048:25: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.6E",lexeph[i].acc[k]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:2051:25: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.6E",lexeph[i].jerk[k]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:2053:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.1f",lexeph[i].af0*1E9);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:2054:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.4f",lexeph[i].af1*1E9);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:2055:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.1f",lexeph[i].tgd*1E9);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:2057:25: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[j++][n]=s.sprintf("%.1f",lexeph[i].isc[k]*1E9);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:2099:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.1f",lexion.tspan);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:2102:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.4f %.4f",lexion.pos0[0]*R2D,lexion.pos0[1]*R2D);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:2105:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.3f",lexion.coef[0][0]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:2108:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.3f",lexion.coef[1][0]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:2111:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.3f",lexion.coef[2][0]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:2114:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.3f",lexion.coef[0][1]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:2117:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.3f",lexion.coef[1][1]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:2120:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[1][i++]=s.sprintf("%.3f",lexion.coef[2][1]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:2136:22: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[i][0]=s.sprintf("%.0fE",IONLON1+(i-1)*DIONLON);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:2139:22: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[0][j]=s.sprintf("%.0fN",IONLAT1-(j-1)*DIONLAT);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:2175:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Tbl->Cells[i][j]=s.sprintf("%.2f",ion);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:157:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,GetCommandLine());
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:359:9: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
cmd.sprintf("rtkplot -p tcpcli://localhost:%d -t \"%s %s\"",OpenPort,
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:563:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff1,path);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:574:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff2,Paths[i][2].c_str());
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:578:32: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Message->Caption=s.sprintf("invalid output %s",buff1);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:921:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,ExSats.c_str());
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:929:28: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Message->Caption=s.sprintf("rcv ant file read error %s",AntPcvFileF.c_str());
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:939:32: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Message->Caption=s.sprintf("no antenna pcv %s",type);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:950:32: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Message->Caption=s.sprintf("no antenna pcv %s",type);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:960:32: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Message->Caption=s.sprintf("sat ant file read error %s",SatPcvFileF.c_str());
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1279:14: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s[3].sprintf(L"%.0f%c %02.0f' %07.4f\"",fabs(dms1[0]),CHARDEG,dms1[1],dms1[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1280:14: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s[4].sprintf(L"%.0f%c %02.0f' %07.4f\"",fabs(dms2[0]),CHARDEG,dms2[1],dms2[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1281:14: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s[5].sprintf(L"%.3f m",pos[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1282:14: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s[6].sprintf(L"N:%6.3f E:%6.3f U:%6.3f m",SQRT(Qe[4]),SQRT(Qe[0]),SQRT(Qe[8]));
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1291:14: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s[3].sprintf(L"%.8f %c",fabs(pos[0])*R2D,CHARDEG);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1292:14: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s[4].sprintf(L"%.8f %c",fabs(pos[1])*R2D,CHARDEG);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1293:14: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s[5].sprintf(L"%.3f m",pos[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1294:14: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s[6].sprintf(L"E:%6.3f N:%6.3f U:%6.3f m",SQRT(Qe[0]),SQRT(Qe[4]),SQRT(Qe[8]));
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1298:14: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s[3].sprintf(L"%.3f m",rr[0]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1299:14: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s[4].sprintf(L"%.3f m",rr[1]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1300:14: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s[5].sprintf(L"%.3f m",rr[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1301:14: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s[6].sprintf(L"X:%6.3f Y:%6.3f Z:%6.3f m",SQRT(qr[0]),SQRT(qr[4]),SQRT(qr[8]));
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1308:14: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s[3].sprintf(L"%.3f m",enu[0]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1309:14: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s[4].sprintf(L"%.3f m",enu[1]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1310:14: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s[5].sprintf(L"%.3f m",enu[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1311:14: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s[6].sprintf(L"E:%6.3f N:%6.3f U:%6.3f m",SQRT(Qe[0]),SQRT(Qe[4]),SQRT(Qe[8]));
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1320:14: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s[3].sprintf(L"%.3f %c",pitch*R2D,CHARDEG);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1321:14: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s[4].sprintf(L"%.3f %c",yaw*R2D,CHARDEG);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1322:14: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s[5].sprintf(L"%.3f m",len);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1323:14: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s[6].sprintf(L"E:%6.3f N:%6.3f U:%6.3f m",SQRT(Qe[0]),SQRT(Qe[4]),SQRT(Qe[8]));
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1325:10: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s[7].sprintf(L"Age:%4.1f s Ratio:%4.1f # Sat:%2d",Age[PSol],Ratio[PSol],Nvsat[PSol]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1426:11: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s.sprintf(L"Rover:Base %sSNR (dBHz)",fstr[freq]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1431:11: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s.sprintf(L"Rover %s SNR (dBHz)",fstr[freq]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1436:11: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s.sprintf(L"Rover %s",fstr[!freq?1:freq]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1442:11: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s.sprintf(L"Rover %s",fstr[!freq?1:freq]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1444:11: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s.sprintf(L"Base %s",fstr[!freq?1:freq]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1504:29: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
DrawText(c,w-9,y1,s.sprintf(L"%d",snr[0]),clGray,1);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1594:31: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
DrawText(c,x0+3,y0+h-15,s.sprintf(L"# Sat:%2d",Nsat[index]),clGray,0);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1595:33: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
DrawText(c,x0+w-3,y0+h-15,s.sprintf(L"GDOP:%.1f",dop[0]),clGray,2);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1673:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
DrawText(c,p.x,p.y ,s.sprintf(L"%.*f m",digit,len),clGray,1);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1674:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
DrawText(c,3, h-15,s.sprintf(L"Y: %.1f%c",yaw*R2D,CHARDEG),clGray,0);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1675:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
DrawText(c,w-3,h-15,s.sprintf(L"P: %.1f%c",pitch*R2D,CHARDEG),clGray,2);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1746:32: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
if (i>0) Caption=s.sprintf("%s ver.%s %s (%d)",PRGNAME,VER_RTKLIB,PATCH_LEVEL,i+1);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1751:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ShowMessage(s.sprintf("monitor port %d-%d open error",port,port+MAXPORTOFF));
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1835:43: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
if ((str=ini->ReadString("navi",s.sprintf("eph_%02d",i),""))=="") continue;
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1837:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,str.c_str());
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1902:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
str=str+s.sprintf("%s,",id);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1903:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
str=str+s.sprintf("%d,",nav->eph[i].iode);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1904:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
str=str+s.sprintf("%d,",nav->eph[i].iodc);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1905:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
str=str+s.sprintf("%d,",nav->eph[i].sva);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1906:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
str=str+s.sprintf("%d,",nav->eph[i].svh);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1907:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
str=str+s.sprintf("%d,",(int)nav->eph[i].toe.time);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1908:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
str=str+s.sprintf("%d,",(int)nav->eph[i].toc.time);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1909:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
str=str+s.sprintf("%d,",(int)nav->eph[i].ttr.time);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1910:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
str=str+s.sprintf("%.14E,",nav->eph[i].A);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1911:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
str=str+s.sprintf("%.14E,",nav->eph[i].e);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1912:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
str=str+s.sprintf("%.14E,",nav->eph[i].i0);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1913:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
str=str+s.sprintf("%.14E,",nav->eph[i].OMG0);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1914:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
str=str+s.sprintf("%.14E,",nav->eph[i].omg);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1915:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
str=str+s.sprintf("%.14E,",nav->eph[i].M0);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1916:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
str=str+s.sprintf("%.14E,",nav->eph[i].deln);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1917:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
str=str+s.sprintf("%.14E,",nav->eph[i].OMGd);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1918:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
str=str+s.sprintf("%.14E,",nav->eph[i].idot);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1919:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
str=str+s.sprintf("%.14E,",nav->eph[i].crc);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1920:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
str=str+s.sprintf("%.14E,",nav->eph[i].crs);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1921:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
str=str+s.sprintf("%.14E,",nav->eph[i].cuc);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1922:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
str=str+s.sprintf("%.14E,",nav->eph[i].cus);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1923:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
str=str+s.sprintf("%.14E,",nav->eph[i].cic);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1924:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
str=str+s.sprintf("%.14E,",nav->eph[i].cis);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1925:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
str=str+s.sprintf("%.14E,",nav->eph[i].toes);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1926:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
str=str+s.sprintf("%.14E,",nav->eph[i].fit);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1927:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
str=str+s.sprintf("%.14E,",nav->eph[i].f0);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1928:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
str=str+s.sprintf("%.14E,",nav->eph[i].f1);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1929:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
str=str+s.sprintf("%.14E,",nav->eph[i].f2);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1930:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
str=str+s.sprintf("%.14E,",nav->eph[i].tgd[0]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1931:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
str=str+s.sprintf("%d,",nav->eph[i].code);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1932:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
str=str+s.sprintf("%d,",nav->eph[i].flag);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1933:35: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteString("navi",s.sprintf("eph_%02d",i),str);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1936:33: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
for (i=0;i<8;i++) str=str+s.sprintf("%.14E,",nav->ion_gps[i]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1940:33: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
for (i=0;i<4;i++) str=str+s.sprintf("%.14E,",nav->utc_gps[i]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1967:48: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
StreamC[i]=ini->ReadInteger("stream",s.sprintf("streamc%d",no),0);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1968:48: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Stream [i]=ini->ReadInteger("stream",s.sprintf("stream%d", no),0);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1969:48: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Format [i]=ini->ReadInteger("stream",s.sprintf("format%d", no),0);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1971:52: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Paths[i][j]=ini->ReadString("stream",s.sprintf("path_%d_%d",no,j),"");
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1975:47: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RcvOpt [i]=ini->ReadString("stream",s.sprintf("rcvopt%d",i+1),"");
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1978:47: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Cmds[i][j]=ini->ReadString("serial",s.sprintf("cmd_%d_%d",i,j),"");
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1979:50: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
CmdEna[i][j]=ini->ReadInteger("serial",s.sprintf("cmdena_%d_%d",i,j),0);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1985:49: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
CmdsTcp[i][j]=ini->ReadString("tcpip",s.sprintf("cmd_%d_%d",i,j),"");
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1986:52: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
CmdEnaTcp[i][j]=ini->ReadInteger("tcpip",s.sprintf("cmdena_%d_%d",i,j),0);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1998:39: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->ReadFloat("prcopt",s.sprintf("snrmask_%d_%d",i+1,j+1),0.0);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:2052:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(SolOpt.sep,s.c_str());
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:2115:49: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RovAntDel[i]=ini->ReadFloat("setting",s.sprintf("rovantdel_%d",i),0.0);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:2116:49: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RefAntDel[i]=ini->ReadFloat("setting",s.sprintf("refantdel_%d",i),0.0);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:2117:49: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RovPos [i]=ini->ReadFloat("setting",s.sprintf("rovpos_%d", i),0.0);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:2118:49: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RefPos [i]=ini->ReadFloat("setting",s.sprintf("refpos_%d", i),0.0);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:2121:48: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
History[i]=ini->ReadString ("tcpopt",s.sprintf("history%d", i),"");
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:2124:48: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
MntpHist[i]=ini->ReadString("tcpopt",s.sprintf("mntphist%d",i),"");
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:2128:47: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
PntName[i]=ini->ReadString("mapopt",s.sprintf("pntname%d",i+1),"");
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:2129:51: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
AnsiString pos=ini->ReadString("mapopt",s.sprintf("pntpos%d",i+1),"0,0,0");
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:2172:38: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteInteger("stream",s.sprintf("streamc%d",no),StreamC[i]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:2173:38: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteInteger("stream",s.sprintf("stream%d" ,no),Stream [i]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:2174:38: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteInteger("stream",s.sprintf("format%d" ,no),Format [i]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:2176:41: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteString("stream",s.sprintf("path_%d_%d",no,j),Paths[i][j]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:2180:37: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteString("stream",s.sprintf("rcvopt%d",i+1),RcvOpt[i]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:2186:38: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteString ("serial",s.sprintf("cmd_%d_%d" ,i,j),Cmds [i][j]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:2187:38: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteInteger("serial",s.sprintf("cmdena_%d_%d",i,j),CmdEna[i][j]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:2193:37: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteString ("tcpip",s.sprintf("cmd_%d_%d" ,i,j),CmdsTcp [i][j]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:2194:37: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteInteger("tcpip",s.sprintf("cmdena_%d_%d",i,j),CmdEnaTcp[i][j]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:2202:36: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteFloat("prcopt",s.sprintf("snrmask_%d_%d",i+1,j+1),
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:2319:37: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteFloat("setting",s.sprintf("rovantdel_%d",i),RovAntDel[i]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:2320:37: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteFloat("setting",s.sprintf("refantdel_%d",i),RefAntDel[i]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:2321:37: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteFloat("setting",s.sprintf("rovpos_%d",i), RovPos[i]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:2322:37: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteFloat("setting",s.sprintf("refpos_%d",i), RefPos[i]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:2325:37: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteString("tcpopt",s.sprintf("history%d" ,i),History [i]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:2328:37: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteString("tcpopt",s.sprintf("mntphist%d",i),MntpHist[i]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:2333:38: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteString("mapopt",s1.sprintf("pntname%d",i+1),PntName[i]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:2334:38: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteString("mapopt",s1.sprintf("pntpos%d" ,i+1),
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:2335:16: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s2.sprintf("%.4f,%.4f,%.4f",PntPos[i][0],PntPos[i][1],PntPos[i][2]));
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:105:30: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
label=label+(i>0?"+":"")+s.sprintf("L%d",freq[i]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:311:45: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
FontLabel->Caption=FontLabel->Font->Name+s.sprintf(" %dpt",FontLabel->Font->Size);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:408:25: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ElMask ->Text =s.sprintf("%.0f",PrcOpt.elmin*R2D);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:417:29: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ValidThresAR ->Text =s.sprintf("%.1f",PrcOpt.thresar[0]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:418:29: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
OutCntResetAmb->Text =s.sprintf("%d", PrcOpt.maxout);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:419:29: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
LockCntFixAmb->Text =s.sprintf("%d", PrcOpt.minlock);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:420:29: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
FixCntHoldAmb->Text =s.sprintf("%d", PrcOpt.minfix);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:421:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ElMaskAR ->Text =s.sprintf("%.0f",PrcOpt.elmaskar*R2D);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:422:28: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ElMaskHold ->Text =s.sprintf("%.0f",PrcOpt.elmaskhold*R2D);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:423:28: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
MaxAgeDiff ->Text =s.sprintf("%.1f",PrcOpt.maxtdiff);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:424:29: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RejectGdop ->Text =s.sprintf("%.1f",PrcOpt.maxgdop);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:425:29: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RejectThres ->Text =s.sprintf("%.1f",PrcOpt.maxinno);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:426:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SlipThres ->Text =s.sprintf("%.3f",PrcOpt.thresslip);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:427:25: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ARIter ->Text =s.sprintf("%d", PrcOpt.armaxiter);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:428:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
NumIter ->Text =s.sprintf("%d", PrcOpt.niter);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:445:29: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
TimeDecimal ->Text =s.sprintf("%d",SolOpt.timeu);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:453:29: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
NmeaIntv1 ->Text =s.sprintf("%.2g",SolOpt.nmeaintv[0]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:454:29: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
NmeaIntv2 ->Text =s.sprintf("%.2g",SolOpt.nmeaintv[1]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:459:29: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
BaselineLen->Text =s.sprintf("%.3f",Baseline[0]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:460:29: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
BaselineSig->Text =s.sprintf("%.3f",Baseline[1]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:462:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
MeasErrR1 ->Text =s.sprintf("%.1f",PrcOpt.eratio[0]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:463:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
MeasErrR2 ->Text =s.sprintf("%.1f",PrcOpt.eratio[1]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:464:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
MeasErr2 ->Text =s.sprintf("%.3f",PrcOpt.err[1]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:465:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
MeasErr3 ->Text =s.sprintf("%.3f",PrcOpt.err[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:466:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
MeasErr4 ->Text =s.sprintf("%.3f",PrcOpt.err[3]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:467:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
MeasErr5 ->Text =s.sprintf("%.3f",PrcOpt.err[4]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:468:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
PrNoise1 ->Text =s.sprintf("%.2E",PrcOpt.prn[0]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:469:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
PrNoise2 ->Text =s.sprintf("%.2E",PrcOpt.prn[1]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:470:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
PrNoise3 ->Text =s.sprintf("%.2E",PrcOpt.prn[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:471:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
PrNoise4 ->Text =s.sprintf("%.2E",PrcOpt.prn[3]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:472:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
PrNoise5 ->Text =s.sprintf("%.2E",PrcOpt.prn[4]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:473:28: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SatClkStab ->Text =s.sprintf("%.2E",PrcOpt.sclkstab);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:481:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RovAntE ->Text =s.sprintf("%.4f",RovAntDel[0]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:482:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RovAntN ->Text =s.sprintf("%.4f",RovAntDel[1]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:483:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RovAntU ->Text =s.sprintf("%.4f",RovAntDel[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:484:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RefAntE ->Text =s.sprintf("%.4f",RefAntDel[0]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:485:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RefAntN ->Text =s.sprintf("%.4f",RefAntDel[1]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:486:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RefAntU ->Text =s.sprintf("%.4f",RefAntDel[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:501:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SvrCycleE ->Text =s.sprintf("%d",SvrCycle);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:502:29: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
TimeoutTimeE ->Text =s.sprintf("%d",TimeoutTime);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:503:29: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ReconTimeE ->Text =s.sprintf("%d",ReconTime);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:504:29: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
NmeaCycleE ->Text =s.sprintf("%d",NmeaCycle);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:505:29: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
FileSwapMarginE->Text =s.sprintf("%d",FileSwapMargin);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:506:29: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SvrBuffSizeE ->Text =s.sprintf("%d",SvrBuffSize);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:507:29: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SolBuffSizeE ->Text =s.sprintf("%d",SolBuffSize);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:508:29: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SavedSolE ->Text =s.sprintf("%d",SavedSol);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:510:29: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SbasSatE ->Text =s.sprintf("%d",PrcOpt.sbassatsel);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:512:29: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
MoniPortE ->Text =s.sprintf("%d",MoniPort);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:513:29: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SolBuffSizeE ->Text =s.sprintf("%d",SolBuffSize);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:517:45: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
FontLabel->Caption=FontLabel->Font->Name+s.sprintf(" %dpt",FontLabel->Font->Size);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:571:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(SolOpt.sep,FieldSep_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:686:33: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SbasSatE ->Text =s.sprintf("%d",prcopt.sbassatsel);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:691:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ElMask ->Text =s.sprintf("%.0f",prcopt.elmin*R2D);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:701:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s%s%s",p==buff?"":" ",prcopt.exsats[sat-1]==2?"+":"",id);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:720:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ValidThresAR ->Text =s.sprintf("%.1f",prcopt.thresar[0]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:721:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
OutCntResetAmb->Text =s.sprintf("%d" ,prcopt.maxout );
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:722:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
FixCntHoldAmb->Text =s.sprintf("%d" ,prcopt.minfix );
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:723:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
LockCntFixAmb->Text =s.sprintf("%d" ,prcopt.minlock );
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:724:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ElMaskAR ->Text =s.sprintf("%.0f",prcopt.elmaskar*R2D);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:725:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ElMaskHold ->Text =s.sprintf("%.0f",prcopt.elmaskhold*R2D);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:726:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
MaxAgeDiff ->Text =s.sprintf("%.1f",prcopt.maxtdiff );
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:727:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RejectGdop ->Text =s.sprintf("%.1f",prcopt.maxgdop );
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:728:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RejectThres ->Text =s.sprintf("%.1f",prcopt.maxinno );
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:729:25: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SlipThres ->Text =s.sprintf("%.3f",prcopt.thresslip);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:730:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ARIter ->Text =s.sprintf("%d", prcopt.armaxiter);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:731:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
NumIter ->Text =s.sprintf("%d", prcopt.niter );
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:733:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
BaselineLen ->Text =s.sprintf("%.3f",prcopt.baseline[0]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:734:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
BaselineSig ->Text =s.sprintf("%.3f",prcopt.baseline[1]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:739:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
TimeDecimal ->Text =s.sprintf("%d",solopt.timeu);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:747:25: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
NmeaIntv1 ->Text =s.sprintf("%.2g",solopt.nmeaintv[0]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:748:25: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
NmeaIntv2 ->Text =s.sprintf("%.2g",solopt.nmeaintv[1]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:752:25: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
MeasErrR1 ->Text =s.sprintf("%.1f",prcopt.eratio[0]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:753:25: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
MeasErrR2 ->Text =s.sprintf("%.3f",prcopt.eratio[1]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:754:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
MeasErr2 ->Text =s.sprintf("%.3f",prcopt.err[1]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:755:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
MeasErr3 ->Text =s.sprintf("%.3f",prcopt.err[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:756:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
MeasErr4 ->Text =s.sprintf("%.3f",prcopt.err[3]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:757:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
MeasErr5 ->Text =s.sprintf("%.3f",prcopt.err[4]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:758:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SatClkStab ->Text =s.sprintf("%.2E",prcopt.sclkstab);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:759:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
PrNoise1 ->Text =s.sprintf("%.2E",prcopt.prn[0]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:760:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
PrNoise2 ->Text =s.sprintf("%.2E",prcopt.prn[1]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:761:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
PrNoise3 ->Text =s.sprintf("%.2E",prcopt.prn[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:762:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
PrNoise4 ->Text =s.sprintf("%.2E",prcopt.prn[3]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:763:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
PrNoise5 ->Text =s.sprintf("%.2E",prcopt.prn[4]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:769:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RovAntE ->Text =s.sprintf("%.4f",prcopt.antdel[0][0]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:770:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RovAntN ->Text =s.sprintf("%.4f",prcopt.antdel[0][1]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:771:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RovAntU ->Text =s.sprintf("%.4f",prcopt.antdel[0][2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:772:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RefAntE ->Text =s.sprintf("%.4f",prcopt.antdel[1][0]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:773:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RefAntN ->Text =s.sprintf("%.4f",prcopt.antdel[1][1]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:774:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RefAntU ->Text =s.sprintf("%.4f",prcopt.antdel[1][2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:826:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(strpath[i],MainForm->Paths[i][0].c_str());
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:829:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(strpath[i],MainForm->Paths[i][2].c_str());
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:832:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(strpath[i],MainForm->Paths[i][1].c_str());
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:835:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(strpath[i],MainForm->Paths[i][3].c_str());
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:848:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(proxyaddr,ProxyAddrE_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:862:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,ExSatsE_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:907:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(solopt.sep,FieldSep_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:931:26: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (RovAntPcv->Checked) strcpy(prcopt.anttype[0],RovAnt_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:932:26: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (RefAntPcv->Checked) strcpy(prcopt.anttype[1],RefAnt_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:946:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.satantp,SatPcvFile_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:947:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.rcvantp,AntPcvFile_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:948:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.stapos, StaPosFile_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:949:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.geoid, GeoidDataFile_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:950:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.dcb, DCBFile_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:951:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.tempdir,LocalDir_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:954:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(comment,"RTKNAVI options (%s, v.%s %s)",s,VER_RTKLIB,PATCH_LEVEL);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:1075:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
edit[0]->Text=s.sprintf("%.0f %02.0f %09.6f",s1*dms1[0],dms1[1],dms1[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:1076:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
edit[1]->Text=s.sprintf("%.0f %02.0f %09.6f",s2*dms2[0],dms2[1],dms2[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:1077:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
edit[2]->Text=s.sprintf("%.4f",p[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:1080:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
edit[0]->Text=s.sprintf("%.4f",pos[0]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:1081:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
edit[1]->Text=s.sprintf("%.4f",pos[1]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:1082:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
edit[2]->Text=s.sprintf("%.4f",pos[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:1086:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
edit[0]->Text=s.sprintf("%.9f",p[0]*R2D);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:1087:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
edit[1]->Text=s.sprintf("%.9f",p[1]*R2D);
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:1088:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
edit[2]->Text=s.sprintf("%.4f",p[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/outstrdlg.cpp:113:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,path.c_str());
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:279:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s",qPrintable(ConBuff.at(ConBuff.count()-1)));
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:287:24: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s%02X",(p-buff)%17==16?" ":"",msg[i]);
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:390:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(file,rtksvr.files[2]);
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:1412:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(path,stream[i].path);
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:904:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,qPrintable(ExSats));
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:962:39: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
else if (strs[i]==STR_SERIAL) strcpy(paths[i],qPrintable(Paths[i][0]));
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:963:39: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
else if (strs[i]==STR_FILE ) strcpy(paths[i],qPrintable(Paths[i][2]));
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:964:55: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
else if (strs[i]==STR_FTP||strs[i]==STR_HTTP) strcpy(paths[i],qPrintable(Paths[i][3]));
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:965:14: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
else strcpy(paths[i],qPrintable(Paths[i][1]));
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:972:31: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (CmdEna[i][0]) strcpy(cmds[i],qPrintable(Cmds[i][0]));
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:976:34: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (CmdEnaTcp[i][0]) strcpy(cmds[i],qPrintable(CmdsTcp[i][0]));
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:978:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(rcvopts[i],qPrintable(RcvOpt[i]));
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:1063:31: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (CmdEna[i][1]) strcpy(cmds[i],qPrintable(Cmds[i][1]));
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:1066:34: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (CmdEnaTcp[i][1]) strcpy(cmds[i],qPrintable(CmdsTcp[i][1]));
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:1856:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,qPrintable(str));
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:2059:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(SolOpt.sep,qPrintable(s));
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/naviopt.cpp:610:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(SolOpt.sep,qPrintable(FieldSep_Text));
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/naviopt.cpp:868:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(strpath[i],qPrintable(mainForm->Paths[i][0]));
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/naviopt.cpp:871:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(strpath[i],qPrintable(mainForm->Paths[i][2]));
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/naviopt.cpp:874:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(strpath[i],qPrintable(mainForm->Paths[i][1]));
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/naviopt.cpp:877:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(strpath[i],qPrintable(mainForm->Paths[i][3]));
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/naviopt.cpp:890:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(proxyaddr,qPrintable(ProxyAddrE_Text));
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/naviopt.cpp:904:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,qPrintable(ExSatsE_Text));
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/naviopt.cpp:947:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(solopt.sep,qPrintable(FieldSep_Text));
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/naviopt.cpp:971:33: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (RovAntPcv->isChecked()) strcpy(prcopt.anttype[0],qPrintable(RovAnt_Text));
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/naviopt.cpp:972:33: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (RefAntPcv->isChecked()) strcpy(prcopt.anttype[1],qPrintable(RefAnt_Text));
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/naviopt.cpp:986:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.satantp,qPrintable(SatPcvFile_Text));
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/naviopt.cpp:987:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.rcvantp,qPrintable(AntPcvFile_Text));
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/naviopt.cpp:988:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.stapos, qPrintable(StaPosFile_Text));
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/naviopt.cpp:989:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.geoid, qPrintable(GeoidDataFile_Text));
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/naviopt.cpp:990:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.dcb, qPrintable(DCBFile_Text));
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/naviopt.cpp:991:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.tempdir,qPrintable(LocalDir_Text));
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/naviopt.cpp:994:5: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(comment,qPrintable(tr("RTKNAVI options (%s, v.%s)")),s,VER_RTKLIB);
data/rtklib-2.4.3+dfsg1/app/rtkplot/conndlg.cpp:36:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
TimeOutTimeE->Text=s.sprintf("%d",TimeOutTime);
data/rtklib-2.4.3+dfsg1/app/rtkplot/conndlg.cpp:37:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ReConnTimeE ->Text=s.sprintf("%d",ReConnTime);
data/rtklib-2.4.3+dfsg1/app/rtkplot/geview.cpp:135:16: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ExecFunc(f.sprintf("SetTilt(%.1f)",TILT_ANGLE));
data/rtklib-2.4.3+dfsg1/app/rtkplot/geview.cpp:239:16: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ExecFunc(f.sprintf("SetView(%.9f,%.9f,%.3f,%.1f)",lat,lon,range,heading));
data/rtklib-2.4.3+dfsg1/app/rtkplot/geview.cpp:245:16: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ExecFunc(f.sprintf("SetCent(%.9f,%.9f)",lat,lon));
data/rtklib-2.4.3+dfsg1/app/rtkplot/geview.cpp:251:16: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ExecFunc(f.sprintf("SetRange(%.3f)",range));
data/rtklib-2.4.3+dfsg1/app/rtkplot/geview.cpp:257:16: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ExecFunc(f.sprintf("SetHeading(%.2f)",angle));
data/rtklib-2.4.3+dfsg1/app/rtkplot/geview.cpp:266:16: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ExecFunc(f.sprintf("SetMark(%d,%.9f,%.9f,%.3f)",index,pos[0]*R2D,
data/rtklib-2.4.3+dfsg1/app/rtkplot/geview.cpp:278:16: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ExecFunc(f.sprintf("ShowMark(%d)",index));
data/rtklib-2.4.3+dfsg1/app/rtkplot/geview.cpp:287:16: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ExecFunc(f.sprintf("HideMark(%d)",index));
data/rtklib-2.4.3+dfsg1/app/rtkplot/geview.cpp:296:16: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ExecFunc(f.sprintf("ClearTrack(%d)",index));
data/rtklib-2.4.3+dfsg1/app/rtkplot/geview.cpp:322:20: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ExecFunc(f.sprintf("AddTrack(%d,%.9f,%.9f)",index,pos[0]*R2D,
data/rtklib-2.4.3+dfsg1/app/rtkplot/geview.cpp:334:16: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ExecFunc(f.sprintf("ShowTrack(%d)",index));
data/rtklib-2.4.3+dfsg1/app/rtkplot/geview.cpp:343:16: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ExecFunc(f.sprintf("HideTrack(%d)",index));
data/rtklib-2.4.3+dfsg1/app/rtkplot/geview.cpp:358:20: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ExecFunc(f.sprintf("AddPoint('%s',%.9f,%.9f,%.2f)",Plot->PntName[i],
data/rtklib-2.4.3+dfsg1/app/rtkplot/geview.cpp:401:16: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ExecFunc(f.sprintf("SetOpts(%d,%d,%d,%d,%d,%d,%d,%d,%d,%d)",opts[0],
data/rtklib-2.4.3+dfsg1/app/rtkplot/gmview.cpp:67:16: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ExecFunc(f.sprintf("SetView(%.9f,%.9f,%d)",lat,lon,zoom));
data/rtklib-2.4.3+dfsg1/app/rtkplot/gmview.cpp:74:16: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ExecFunc(f.sprintf("SetCent(%.9f,%.9f)",lat,lon));
data/rtklib-2.4.3+dfsg1/app/rtkplot/gmview.cpp:82:16: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ExecFunc(f.sprintf("SetZoom(%d)",zoom));
data/rtklib-2.4.3+dfsg1/app/rtkplot/gmview.cpp:94:16: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ExecFunc(f.sprintf("AddMark(%.9f,%.9f,\"%s\",\"%s\")",lat,lon,title,msg));
data/rtklib-2.4.3+dfsg1/app/rtkplot/gmview.cpp:100:11: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
title.sprintf("SOL%d",index);
data/rtklib-2.4.3+dfsg1/app/rtkplot/gmview.cpp:101:16: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ExecFunc(f.sprintf("PosMark(%.9f,%.9f,\"%s\")",pos[0]*R2D,pos[1]*R2D,title));
data/rtklib-2.4.3+dfsg1/app/rtkplot/gmview.cpp:113:11: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
title.sprintf("SOL%d",index);
data/rtklib-2.4.3+dfsg1/app/rtkplot/gmview.cpp:114:16: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ExecFunc(f.sprintf("ShowMark(\"%s\")",title));
data/rtklib-2.4.3+dfsg1/app/rtkplot/gmview.cpp:120:11: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
title.sprintf("SOL%d",index);
data/rtklib-2.4.3+dfsg1/app/rtkplot/gmview.cpp:121:16: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ExecFunc(f.sprintf("HideMark(\"%s\")",title));
data/rtklib-2.4.3+dfsg1/app/rtkplot/mapdlg.cpp:61:14: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Lat->Text=s.sprintf("%.7f",pos[0]*R2D);
data/rtklib-2.4.3+dfsg1/app/rtkplot/mapdlg.cpp:62:14: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Lon->Text=s.sprintf("%.7f",pos[1]*R2D);
data/rtklib-2.4.3+dfsg1/app/rtkplot/mapdlg.cpp:88:17: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ScaleX->Text=s.sprintf("%.5f",scale);
data/rtklib-2.4.3+dfsg1/app/rtkplot/mapdlg.cpp:98:17: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ScaleY->Text=s.sprintf("%.5f",scale);
data/rtklib-2.4.3+dfsg1/app/rtkplot/mapdlg.cpp:108:14: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Lat->Text=s.sprintf("%.7f",lat);
data/rtklib-2.4.3+dfsg1/app/rtkplot/mapdlg.cpp:118:14: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Lon->Text=s.sprintf("%.7f",lon);
data/rtklib-2.4.3+dfsg1/app/rtkplot/mapdlg.cpp:126:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
MapSize1->Text=s.sprintf("%d",Plot->MapSize[0]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/mapdlg.cpp:127:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
MapSize2->Text=s.sprintf("%d",Plot->MapSize[1]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/mapdlg.cpp:128:17: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ScaleX->Text=s.sprintf("%.5f",Plot->MapScaleX);
data/rtklib-2.4.3+dfsg1/app/rtkplot/mapdlg.cpp:129:17: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ScaleY->Text=s.sprintf("%.5f",Plot->MapScaleY);
data/rtklib-2.4.3+dfsg1/app/rtkplot/mapdlg.cpp:130:14: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Lat->Text=s.sprintf("%.7f",Plot->MapLat);
data/rtklib-2.4.3+dfsg1/app/rtkplot/mapdlg.cpp:131:14: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Lon->Text=s.sprintf("%.7f",Plot->MapLon);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotcmn.cpp:432:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(str,"%s%s",tstr,label);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotcmn.cpp:441:11: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s.sprintf("%*.*f" CHARDEG " %*.*f" CHARDEG,ndec+4,ndec,pos[0]*R2D,
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotcmn.cpp:447:11: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s.sprintf("%3.0f" CHARDEG "%02.0f'%0*.*f\" %4.0f" CHARDEG "%02.0f'%0*.*f\"",
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:35:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(paths[n++],U2A(files->Strings[i]).c_str());
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:39:15: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ShowMsg(s.sprintf("reading %s...",paths[0]));
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:43:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ShowMsg(s.sprintf("no solution data : %s...",paths[0]));
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:110:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(paths[n++],U2A(files->Strings[i]).c_str());
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:112:15: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ShowMsg(s.sprintf("reading %s...",paths[0]));
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:153:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(file,U2A(files->Strings[0]).c_str());
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:155:15: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Caption=s.sprintf("%s%s",file,files->Count>1?"...":"");
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:189:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(obsfile,U2A(files->Strings[i]).c_str());
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:191:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ShowMsg(s.sprintf("reading obs data... %s",obsfile));
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:203:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(navfile,U2A(files->Strings[i]).c_str());
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:233:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ShowMsg(s.sprintf("no observation data: %s...",files->Strings[0].c_str()));
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:264:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(navfile,U2A(files->Strings[i]).c_str());
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:270:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ShowMsg(s.sprintf("no nav message: %s...",files->Strings[0].c_str()));
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:297:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ShowMsg(s.sprintf("no el mask data: %s...",file.c_str()));
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:402:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ShowMsg(s.sprintf("map file read error: %s",file));
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:602:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ShowMsg(s.sprintf("sky image file read error: %s",file));
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:709:17: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
if (sscanf(buff,"%lf %lf %lf %s",pos,pos+1,pos+2,code)<4) continue;
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:786:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(mp,"%s MP(m)",ObsTypeText.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:869:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,path);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:875:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ShowMsg(s.sprintf("connect error: %s",name));
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:891:20: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
else Caption=s.sprintf("CONNECT %s %s",name[0],name[1]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:923:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(caption,U2A(Caption).c_str());
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:926:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Caption=s.sprintf("DISCONNECT%s",caption+7);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:1020:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ShowMsg(s.sprintf("updating azimuth/elevation... (%d%%)",(per_=per)));
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:1112:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ShowMsg(s.sprintf("updating multipath... (%d%%)",(per_=per)));
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:1209:35: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Caption=Title!=""?Title:s.sprintf("%s ver.%s %s",PRGNAME,VER_RTKLIB,PATCH_LEVEL);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:120:43: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
header="ORI="+LatLonStr(opos,9)+s.sprintf(" %.4fm",opos[2]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:249:35: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
if (xt<0.01 ) label.sprintf("%.0f mm",xt*1000.0);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:250:35: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
else if (xt<1.0 ) label.sprintf("%.0f cm",xt*100.0);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:251:35: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
else if (xt<1000.0) label.sprintf("%.0f m" ,xt);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:252:35: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
else label.sprintf("%.0f km",xt/1000.0);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:257:16: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
header.sprintf("ORI=%.9f" CHARDEG " %.9f" CHARDEG " %.4fm",opos[0]*R2D,
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:386:16: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s[n++].sprintf("AVE=E:%7.4fm N:%7.4fm U:%7.4fm",ave[0],ave[1],ave[2]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:387:16: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s[n++].sprintf("STD=E:%7.4fm N:%7.4fm U:%7.4fm",std[0],std[1],std[2]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:388:16: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s[n++].sprintf("RMS=E:%7.4fm N:%7.4fm U:%7.4fm 2D:%7.4fm",
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:477:11: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
label.sprintf("%.0f km/h",v*3600.0/1000.0);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:687:50: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
label="ORI="+LatLonStr(opos,9)+s.sprintf(" %.4fm",opos[2]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:693:11: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s.sprintf("AVE=%.4f%s STD=%.4f%s RMS=%.4f%s",ave,u,std,u,rms,u);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:1170:11: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s.sprintf("MARKER: %s %s",Sta.name,Sta.marker);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:1172:11: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s.sprintf("REC: %s %s %s",Sta.rectype,Sta.recver,Sta.recsno);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:1174:11: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s.sprintf("ANT: %s %s",Sta.antdes,Sta.antsno);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:1180:11: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s.sprintf("SAT: OBS : SNR : LLI%s",!*code?"":" : CODE");
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:1191:15: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s.sprintf("%-3s: ",id);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:1197:45: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
for (j=0;j<NFREQ;j++) s+=ss.sprintf("%02.0f ",obs->SNR[j]*0.25);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:1199:45: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
for (j=0;j<NFREQ;j++) s+=ss.sprintf("%d",obs->LLI[j]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:1207:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s+=ss.sprintf("%s%s%s : %04.1f : %d : %s",obs->P[j]==0.0?"-":"C",
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:1257:15: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
label.sprintf("# OF SATELLITES / DOP (EL>=%.0f%s)",ElMask,CHARDEG);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:1260:15: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
label.sprintf("# OF SATELLITES (EL>=%.0f%s)",ElMask,CHARDEG);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:1263:15: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
label.sprintf("DOP (EL>=%.0f%s)",ElMask,CHARDEG);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:1381:17: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s2[m++].sprintf("AVE= GDOP:%4.1f PDOP:%4.1f HDOP:%4.1f VDOP:%4.1f",
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:1383:17: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s2[m++].sprintf("NDOP=%d(%4.1f%%) %d(%4.1f%%) %d(%4.1f%%) %d(%4.1f%%)",
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:1393:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s0[m].sprintf("%s%2d:",j++==0?"NSAT= ":"",i);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:1394:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s1[m].sprintf("%7d",nsat[i]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:1395:21: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s2[m++].sprintf("(%4.1f%%)",nsat[i]*100.0/n);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:1510:42: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
DrawLabel(GraphG[i],p1,s.sprintf("AVE=%.4fm RMS=%.4fm",ave[i],
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:1535:42: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
DrawLabel(GraphG[i],p1,s.sprintf("%.*f %s",i==1?4:1,yp[0],unit[i]),2,2);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:1546:34: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
DrawLabel(GraphG[i],p1,s.sprintf("%s (%s)",label[i],unit[i]),1,2);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:1676:15: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s.sprintf("MARKER: %s %s",Sta.name,Sta.marker);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:1678:15: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s.sprintf("REC: %s %s %s",Sta.rectype,Sta.recver,Sta.recsno);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:1680:15: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s.sprintf("ANT: %s %s",Sta.antdes,Sta.antsno);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:1688:38: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
DrawLabel(GraphE[1],p1,s.sprintf("AVE=%.4fm RMS=%.4fm",ave,rms),2,2);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:1895:21: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
str.sprintf("AVE=%.3fm STD=%.3fm RMS=%.3fm",ave,std,rms);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:53:13: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
msg.sprintf("[1]%s : N=%d ",tstr,no);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:56:21: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
msgs[0].sprintf("NSAT=%d",ns);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:57:21: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
msgs[1].sprintf(" GDOP=%.1f",dop[0]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:58:21: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
msgs[2].sprintf(" PDOP=%.1f",dop[1]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:59:21: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
msgs[3].sprintf(" HDOP=%.1f",dop[2]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:60:21: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
msgs[4].sprintf(" VDOP=%.1f",dop[3]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:63:20: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
msg+=s.sprintf("NSAT=%d ",ns);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:67:20: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
msg+=s.sprintf("NSAT=%d ",ns);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:71:20: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
msg+=s.sprintf("NSAT=%d ",ns);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:94:32: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
if (!ConnectState) msg.sprintf("[%d]",sel+1); else msg="[R]";
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:103:20: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
msg+=s.sprintf("E=%7.4f%s N=%7.4f%s U=%7.4f%s Q=",
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:107:20: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
msg+=s.sprintf("NS=%d AGE=%.1f RATIO=%.1f Q=",data->ns,data->age,
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:112:37: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
msg+=LatLonStr(pos,9)+s.sprintf(" %9.4fm Q=",pos[2]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:118:20: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
msg+=s.sprintf("B=%.3fm D=%6.2f" CHARDEG " %5.2f" CHARDEG " Q=",
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:122:34: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
msgs[data->stat-1]=s.sprintf("%d:%s",data->stat,sol[data->stat]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:154:13: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
msg.sprintf("[1]%s-%s : EP=%d N=%d",s1,s2+(TimeLabel?5:0),ne,n);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:218:32: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
if (!ConnectState) msg.sprintf("[%d]",sel+1); else msg="[R]";
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:222:16: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
msg+=s.sprintf("%s-%s : N=%d",s1,s2+(TimeLabel?5:0),n);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:225:20: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
msg+=s.sprintf(" B=%.1f-%.1fkm",bl[0]/1E3,bl[1]/1E3);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:228:20: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
msg+=s.sprintf(" B=%.1fkm",bl[0]/1E3);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:234:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
msgs[i-1].sprintf("%d:%d(%.1f%%) ",i,nq[i],(double)nq[i]/n*100.0);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:340:32: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ObsType ->Items->Add(s.sprintf("L%c",freqs[i]));
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:341:32: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ObsType2->Items->Add(s.sprintf("L%c",freqs[i]));
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:344:32: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ObsType ->Items->Add(s.sprintf("L%s",codes[i]));
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:345:32: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ObsType2->Items->Add(s.sprintf("L%s",codes[i]));
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:382:17: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
msg.sprintf("AZ=%5.1f" CHARDEG " EL=%4.1f" CHARDEG,az,el);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:387:13: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
msg.sprintf("EL=%4.1f " CHARDEG,q[0]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:194:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,cmd.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:237:35: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Caption=Title!=""?Title:s.sprintf("%s ver.%s %s",PRGNAME,VER_RTKLIB,PATCH_LEVEL);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:304:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(file,U2A(files->Strings[0]).c_str());
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:438:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(file,U2A(SaveImageDialog->FileName).c_str());
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:667:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(file,U2A(ObsFiles->Strings[0]).c_str());
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:754:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(file,U2A(RangeList->Items->Strings[i]).c_str());
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:818:11: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s.sprintf("%s ver.%s %s: Google Earth View",PRGNAME,VER_RTKLIB,PATCH_LEVEL);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:826:11: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s.sprintf("%s ver.%s %s: Google Map View",PRGNAME,VER_RTKLIB,PATCH_LEVEL);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:1050:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(file,U2A(RangeList->Items->Strings[i]).c_str());
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:1685:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(opt.sep,RtFieldSep.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:1690:31: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
connectmsg+=s.sprintf("(%d) %s ",i+1,msg);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:1956:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(file,U2A(SolFiles[sel]->Strings[0]).c_str());
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:1962:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(file,U2A(RefDialog->StaPosFile).c_str());
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:1997:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,ExSats.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:2473:43: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
geopts[i]=ini->ReadInteger("ge",s.sprintf("geopts_%d",i),0);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:2478:50: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
StrCmds [0][i]=ini->ReadString ("str",s.sprintf("strcmd1_%d", i),"");
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:2479:50: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
StrCmds [1][i]=ini->ReadString ("str",s.sprintf("strcmd2_%d", i),"");
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:2480:50: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
StrCmdEna[0][i]=ini->ReadInteger("str",s.sprintf("strcmdena1_%d", i), 0);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:2481:50: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
StrCmdEna[1][i]=ini->ReadInteger("str",s.sprintf("strcmdena2_%d", i), 0);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:2484:49: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
StrPaths[0][i]=ini->ReadString ("str",s.sprintf("strpath1_%d", i),"");
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:2485:49: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
StrPaths[1][i]=ini->ReadString ("str",s.sprintf("strpath2_%d", i),"");
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:2488:49: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
StrHistory [i]=ini->ReadString ("str",s.sprintf("strhistry_%d", i),"");
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:2489:49: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
StrMntpHist[i]=ini->ReadString ("str",s.sprintf("strmntphist_%d",i),"");
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:2493:45: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
PntName[i]=ini->ReadString("plot",s.sprintf("pntname%d",i+1),"");
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:2494:37: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s1=ini->ReadString("plot",s.sprintf("pntpos%d",i+1),"0,0,0");
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:2510:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(rangelist,U2A(RangeList->Items->Strings[i]).c_str());
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:2603:34: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteInteger("ge",s.sprintf("geopts_%d",i),geopts[i]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:2606:35: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteString ("str",s.sprintf("strcmd1_%d", i),StrCmds [0][i]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:2607:35: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteString ("str",s.sprintf("strcmd2_%d", i),StrCmds [1][i]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:2608:35: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteInteger("str",s.sprintf("strcmdena1_%d", i),StrCmdEna[0][i]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:2609:35: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteInteger("str",s.sprintf("strcmdena2_%d", i),StrCmdEna[1][i]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:2612:35: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteString ("str",s.sprintf("strpath1_%d", i),StrPaths[0][i]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:2613:35: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteString ("str",s.sprintf("strpath2_%d", i),StrPaths[1][i]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:2616:35: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteString ("str",s.sprintf("strhistry_%d", i),StrHistory [i]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:2617:35: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteString ("str",s.sprintf("strmntphist_%d",i),StrMntpHist[i]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:2621:35: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteString("plot",s.sprintf("pntname%d",i+1),PntName[i]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:2622:35: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteString("plot",s.sprintf("pntpos%d",i+1),
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:2623:16: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s1.sprintf("%.4f,%.4f,%.4f",PntPos[i][0],PntPos[i][1],PntPos[i][2]));
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:2726:11: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s.sprintf("zoom: Location=%d,%d,Flag=%d,%d,Angle=%.1f,Disnance=%d",
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:2732:11: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s.sprintf("pan: Location=%d,%d,Flag=%d,%d,Angle=%.1f,Disnance=%d",
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:2738:11: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s.sprintf("rotate: Location=%d,%d,Flag=%d,%d,Angle=%.1f,Disnance=%d",
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotopt.cpp:71:21: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ElMask ->Text=s.sprintf("%g",Plot->ElMask);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotopt.cpp:72:21: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
MaxDop ->Text=s.sprintf("%g",Plot->MaxDop);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotopt.cpp:73:21: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
MaxMP ->Text=s.sprintf("%g",Plot->MaxMP );
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotopt.cpp:74:21: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
YRange ->Text=s.sprintf("%g",Plot->YRange);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotopt.cpp:77:21: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RefPos1->Text=s.sprintf("%.9f",Plot->OOPos[0]*R2D);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotopt.cpp:78:21: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RefPos2->Text=s.sprintf("%.9f",Plot->OOPos[1]*R2D);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotopt.cpp:79:21: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RefPos3->Text=s.sprintf("%.4f",Plot->OOPos[2]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotopt.cpp:86:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
AnimCycle->Text=s.sprintf("%d",Plot->AnimCycle);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotopt.cpp:87:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RefCycle ->Text=s.sprintf("%d",Plot->RefCycle );
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotopt.cpp:91:22: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
BuffSize->Text=s.sprintf("%d",Plot->RtBuffSize);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotopt.cpp:239:21: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RefPos1->Text=s.sprintf("%.9f",RefDialog->Pos[0]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotopt.cpp:240:21: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RefPos2->Text=s.sprintf("%.9f",RefDialog->Pos[1]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotopt.cpp:241:21: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RefPos3->Text=s.sprintf("%.4f",RefDialog->Pos[2]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotopt.cpp:259:40: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
FontLabel->Caption=FontOpt->Name+s.sprintf(" %dpt",FontOpt->Size);
data/rtklib-2.4.3+dfsg1/app/rtkplot/pntdlg.cpp:43:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
PntList->Cells[0][i]=s.sprintf("%.9f",pos[0]*R2D);
data/rtklib-2.4.3+dfsg1/app/rtkplot/pntdlg.cpp:44:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
PntList->Cells[1][i]=s.sprintf("%.9f",pos[1]*R2D);
data/rtklib-2.4.3+dfsg1/app/rtkplot/pntdlg.cpp:45:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
PntList->Cells[2][i]=s.sprintf("%.4f",pos[2]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/pntdlg.cpp:84:25: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
PntList->Cells[0][i]=s.sprintf("%.9f",pos[0]*R2D);
data/rtklib-2.4.3+dfsg1/app/rtkplot/pntdlg.cpp:85:25: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
PntList->Cells[1][i]=s.sprintf("%.9f",pos[1]*R2D);
data/rtklib-2.4.3+dfsg1/app/rtkplot/pntdlg.cpp:86:25: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
PntList->Cells[2][i]=s.sprintf("%.4f",pos[2]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/pntdlg.cpp:87:25: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
PntList->Cells[3][i]=s.sprintf("new point %d",i+1);
data/rtklib-2.4.3+dfsg1/app/rtkplot/pntdlg.cpp:115:7: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
if (sscanf(buff,"%lf %lf %lf %s",pos,pos+1,pos+2,name)<4) continue;
data/rtklib-2.4.3+dfsg1/app/rtkplot/pntdlg.cpp:116:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
PntList->Cells[0][i]=s.sprintf("%.9f",pos[0]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/pntdlg.cpp:117:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
PntList->Cells[1][i]=s.sprintf("%.9f",pos[1]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/pntdlg.cpp:118:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
PntList->Cells[2][i]=s.sprintf("%.4f",pos[2]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/skydlg.cpp:82:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SkySize1->Text=s.sprintf("%d",Plot->SkySize[0]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/skydlg.cpp:83:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SkySize2->Text=s.sprintf("%d",Plot->SkySize[1]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/skydlg.cpp:84:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SkyCent1->Text=s.sprintf("%.2f",Plot->SkyCent[0]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/skydlg.cpp:85:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SkyCent2->Text=s.sprintf("%.2f",Plot->SkyCent[1]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/skydlg.cpp:86:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SkyScale->Text=s.sprintf("%.2f",Plot->SkyScale);
data/rtklib-2.4.3+dfsg1/app/rtkplot/skydlg.cpp:87:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SkyFov1 ->Text=s.sprintf("%.2f",Plot->SkyFov[0]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/skydlg.cpp:88:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SkyFov2 ->Text=s.sprintf("%.2f",Plot->SkyFov[1]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/skydlg.cpp:89:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SkyFov3 ->Text=s.sprintf("%.2f",Plot->SkyFov[2]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/skydlg.cpp:90:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SkyDest1->Text=s.sprintf("%.1f",Plot->SkyDest[1]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/skydlg.cpp:91:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SkyDest2->Text=s.sprintf("%.1f",Plot->SkyDest[2]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/skydlg.cpp:92:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SkyDest3->Text=s.sprintf("%.1f",Plot->SkyDest[3]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/skydlg.cpp:93:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SkyDest4->Text=s.sprintf("%.1f",Plot->SkyDest[4]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/skydlg.cpp:94:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SkyDest5->Text=s.sprintf("%.1f",Plot->SkyDest[5]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/skydlg.cpp:95:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SkyDest6->Text=s.sprintf("%.1f",Plot->SkyDest[6]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/skydlg.cpp:96:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SkyDest7->Text=s.sprintf("%.1f",Plot->SkyDest[7]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/skydlg.cpp:97:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SkyDest8->Text=s.sprintf("%.1f",Plot->SkyDest[8]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/skydlg.cpp:98:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SkyDest9->Text=s.sprintf("%.1f",Plot->SkyDest[9]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/skydlg.cpp:104:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SkyBinThres1->Text=s.sprintf("%.2f",Plot->SkyBinThres1);
data/rtklib-2.4.3+dfsg1/app/rtkplot/skydlg.cpp:105:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SkyBinThres2->Text=s.sprintf("%.2f",Plot->SkyBinThres2);
data/rtklib-2.4.3+dfsg1/app/rtkplot/skydlg.cpp:161:18: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SkyFov2->Text=s.sprintf("%.2f",fov);
data/rtklib-2.4.3+dfsg1/app/rtkplot/skydlg.cpp:173:18: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SkyFov1->Text=s.sprintf("%.2f",fov);
data/rtklib-2.4.3+dfsg1/app/rtkplot/skydlg.cpp:185:18: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SkyFov3->Text=s.sprintf("%.2f",fov);
data/rtklib-2.4.3+dfsg1/app/rtkplot/skydlg.cpp:196:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SkyCent1->Text=s.sprintf("%.2f",cent);
data/rtklib-2.4.3+dfsg1/app/rtkplot/skydlg.cpp:207:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SkyCent2->Text=s.sprintf("%.2f",cent);
data/rtklib-2.4.3+dfsg1/app/rtkplot/skydlg.cpp:219:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SkyScale->Text=s.sprintf("%.2f",scale);
data/rtklib-2.4.3+dfsg1/app/rtkplot/skydlg.cpp:297:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SkyBinThres1->Text=s.sprintf("%.2f",thres);
data/rtklib-2.4.3+dfsg1/app/rtkplot/skydlg.cpp:309:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SkyBinThres2->Text=s.sprintf("%.2f",thres);
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotcmn.cpp:311:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(code,qPrintable(ObsType_Text.mid(1)));
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotcmn.cpp:315:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(code,qPrintable(ObsType_Text.mid(1)));
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotcmn.cpp:427:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(tstr,qPrintable(QString("%1/%2").arg(week,4).arg(tow,(n>0?6:5)+n,'f',n)));
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotcmn.cpp:440:14: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
else strcpy(tstr,qPrintable(QString("%1/%2/%3 %4:%5:%6.%7").arg(t->tm_year+1900,4,QChar('0'))
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:45:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(paths[n++],qPrintable(files.at(i)));
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:121:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(paths[n++],qPrintable(files.at(i)));
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:197:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(opt,qPrintable(RnxOpts));
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:206:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(obsfile,qPrintable(QDir::toNativeSeparators(files.at(i))));
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:220:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(navfile,qPrintable(QDir::toNativeSeparators(files.at(i))));
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:265:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(opt,qPrintable(RnxOpts));
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:285:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(navfile,qPrintable(QDir::toNativeSeparators(files.at(i))));
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:806:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(code,qPrintable(ObsTypeText.mid(1)));
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:887:45: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
else if (RtStream[i]==STR_SERIAL ) strcpy(path,qPrintable(StrPaths[i][0]));
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:888:45: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
else if (RtStream[i]==STR_FILE ) strcpy(path,qPrintable(StrPaths[i][2]));
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:889:45: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
else if (RtStream[i]<=STR_NTRIPCLI) strcpy(path,qPrintable(StrPaths[i][1]));
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:898:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,path);
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:912:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(cmd,qPrintable(StrCmds[i][0]));
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:946:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(cmd,qPrintable(StrCmds[i][1]));
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotmain.cpp:805:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(file,qPrintable(ObsFiles.at(0)));
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotmain.cpp:896:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(file,qPrintable(RangeList->item(i)->text()));
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotmain.cpp:1165:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(file,qPrintable(i->text()));
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotmain.cpp:1701:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(opt.sep,qPrintable(RtFieldSep));
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotmain.cpp:1980:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(file,qPrintable(SolFiles[sel].at(0)));
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotmain.cpp:1986:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(file,qPrintable(plotOptDialog->refDialog->StaPosFile));
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotmain.cpp:2021:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,qPrintable(ExSats));
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotmain.cpp:2498:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(rangelist,qPrintable(RangeList->item(i)->text()));
data/rtklib-2.4.3+dfsg1/app/rtkpost/extopt.cpp:75:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
editc[i][j]->Text=s.sprintf("%.3f",OptDialog->ExtErr.cerr[i][j]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/extopt.cpp:76:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
editp[i][j]->Text=s.sprintf("%.3f",OptDialog->ExtErr.perr[i][j]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/extopt.cpp:78:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
GpsGloB0->Text=s.sprintf("%.3f",OptDialog->ExtErr.gpsglob[0]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/extopt.cpp:79:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
GpsGloB1->Text=s.sprintf("%.3f",OptDialog->ExtErr.gpsglob[1]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/extopt.cpp:80:18: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
GloICB0->Text=s.sprintf("%.3f",OptDialog->ExtErr.gloicb[0]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/extopt.cpp:81:18: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
GloICB1->Text=s.sprintf("%.3f",OptDialog->ExtErr.gloicb[1]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/kmzconv.cpp:64:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(cmd,"\"%s\" \"%s\"",MainForm->GoogleEarthFile,OutputFile->Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/kmzconv.cpp:94:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(file,InputFile_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/kmzconv.cpp:95:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(kmlfile,file);
data/rtklib-2.4.3+dfsg1/app/rtkpost/kmzconv.cpp:109:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(cmd,"zip.exe -j -m %s %s",OutputFile->Text.c_str(),kmlfile);
data/rtklib-2.4.3+dfsg1/app/rtkpost/kmzconv.cpp:174:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(file,InputFile_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/kmzconv.cpp:176:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(p,Compress->Checked?".kmz":".kml");
data/rtklib-2.4.3+dfsg1/app/rtkpost/kmzconv.cpp:194:17: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
TimeY1->Text=s.sprintf("%04.0f/%02.0f/%02.0f",ep[0],ep[1],ep[2]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/kmzconv.cpp:207:17: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
TimeH1->Text=s.sprintf("%02d:%02d:%02d",sec/3600,(sec%3600)/60,sec%60);
data/rtklib-2.4.3+dfsg1/app/rtkpost/kmzconv.cpp:225:17: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
TimeY2->Text=s.sprintf("%04.0f/%02.0f/%02.0f",ep[0],ep[1],ep[2]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/kmzconv.cpp:238:17: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
TimeH2->Text=s.sprintf("%02d:%02d:%02d",sec/3600,(sec%3600)/60,sec%60);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:74:9: [4] (format) vsprintf:
Potential format string problem (CWE-134). Make format string constant.
vsprintf(buff,format,arg);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:136:15: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Caption=s.sprintf("%s ver.%s %s",PRGNAME,VER_RTKLIB,PATCH_LEVEL);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:147:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,GetCommandLine());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:611:20: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
TimeY1->Text=s.sprintf("%04.0f/%02.0f/%02.0f",ep[0],ep[1],ep[2]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:625:20: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
TimeH1->Text=s.sprintf("%02d:%02d:%02d",sec/3600,(sec%3600)/60,sec%60);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:644:20: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
TimeY2->Text=s.sprintf("%04.0f/%02.0f/%02.0f",ep[0],ep[1],ep[2]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:658:20: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
TimeH2->Text=s.sprintf("%02d:%02d:%02d",sec/3600,(sec%3600)/60,sec%60);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:686:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ifile,InputFile1_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:690:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(ofile,"%s\\%s",OutDir_Text.c_str(),p);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:693:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ofile,ifile);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:696:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(p,SolFormat==SOLF_NMEA?".nmea":".pos");
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:728:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(infile[n++],InputFile1_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:731:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(infile[n++],InputFile2_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:734:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(infile[n++],InputFile3_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:741:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(infile[n++],InputFile4_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:744:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(infile[n++],InputFile5_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:747:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(infile[n++],InputFile6_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:749:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(outfile,OutputFile_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:766:26: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (*p!='#') strcpy(r,p); break;
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:776:26: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (*p!='#') strcpy(r,p); break;
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:877:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(prcopt.anttype[0],RovAnt.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:883:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(prcopt.anttype[1],RefAnt.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:889:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,ExSats.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:899:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(prcopt.rnxopt[0],RnxOpts1.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:900:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(prcopt.rnxopt[1],RnxOpts2.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:901:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(prcopt.pppopt,PPPOpts.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:917:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(solopt.sep,FieldSep!=""?FieldSep.c_str():" ");
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:918:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(solopt.prog,"%s ver.%s %s",PRGNAME,VER_RTKLIB,PATCH_LEVEL);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:921:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.satantp,SatPcvFile.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:922:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.rcvantp,AntPcvFile.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:923:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.stapos, StaPosFile.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:924:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.geoid, GeoidDataFile.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:925:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.iono, IonoFile.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:926:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.eop, EOPFile.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:927:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.dcb, DCBFile.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:928:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.blq, BLQFile.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:936:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(navfile,obsfile);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:964:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (!q) strcpy(rov,p); else strncpy(rov,p,q-p);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:969:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (!q) strcpy(base,p); else strncpy(base,p,q-p);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:984:36: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
item=ini->ReadString(cat,s.sprintf("%s_%03d",key.c_str(),i),"");
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:997:32: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteString(cat,s.sprintf("%s_%03d",key.c_str(),i),list->Strings[i]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:1076:20: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
TimeY1->Text=s.sprintf("%04.0f/%02.0f/%02.0f",ep[0],ep[1],ep[2]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:1077:20: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
TimeH1->Text=s.sprintf("%02.0f:%02.0f:%02.0f",ep[3],ep[4],ep[5]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:1087:20: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
TimeY2->Text=s.sprintf("%04.0f/%02.0f/%02.0f",ep[0],ep[1],ep[2]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:1088:20: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
TimeH2->Text=s.sprintf("%02.0f:%02.0f:%02.0f",ep[3],ep[4],ep[5]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:1167:36: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->ReadFloat("opt",s.sprintf("snrmask_%d_%d",i+1,j+1),0.0);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:1280:43: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RovList +=ini->ReadString("opt",s.sprintf("rovlist%d",i+1),"");
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:1284:43: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
BaseList+=ini->ReadString("opt",s.sprintf("baselist%d",i+1),"");
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:1297:50: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ExtErr.cerr[i][j]=ini->ReadFloat("opt",s.sprintf("exterr_cerr%d%d",i,j),0.3);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:1300:50: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ExtErr.perr[i][j]=ini->ReadFloat("opt",s.sprintf("exterr_perr%d%d",i,j),0.003);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:1373:33: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteFloat("opt",s.sprintf("snrmask_%d_%d",i+1,j+1),
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:1489:34: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteString("opt",s.sprintf("rovlist%d",i+1),RovList.SubString(i*2000,2000));
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:1495:34: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteString("opt",s.sprintf("baselist%d",i+1),BaseList.SubString(i*2000,2000));
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:1503:33: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteFloat("opt",s.sprintf("exterr_cerr%d%d",i,j),ExtErr.cerr[i][j]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:1506:33: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteFloat("opt",s.sprintf("exterr_perr%d%d",i,j),ExtErr.perr[i][j]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:34:37: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
label=label+(i>0?"+":"L")+s.sprintf("%d",freq[i]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:357:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ElMask ->Text =s.sprintf("%.0f",MainForm->ElMask);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:382:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ValidThresAR ->Text =s.sprintf("%.3g",MainForm->ValidThresAR);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:383:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ThresAR2 ->Text =s.sprintf("%.8g",MainForm->ThresAR2);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:384:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ThresAR3 ->Text =s.sprintf("%.3g",MainForm->ThresAR3);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:385:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
OutCntResetAmb->Text =s.sprintf("%d",MainForm->OutCntResetAmb);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:386:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
FixCntHoldAmb->Text =s.sprintf("%d",MainForm->FixCntHoldAmb);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:387:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
LockCntFixAmb->Text =s.sprintf("%d",MainForm->LockCntFixAmb);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:388:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ElMaskAR ->Text =s.sprintf("%.0f",MainForm->ElMaskAR);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:389:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ElMaskHold ->Text =s.sprintf("%.0f",MainForm->ElMaskHold);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:390:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
MaxAgeDiff ->Text =s.sprintf("%.1f",MainForm->MaxAgeDiff);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:391:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RejectGdop ->Text =s.sprintf("%.1f",MainForm->RejectGdop);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:392:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RejectThres ->Text =s.sprintf("%.1f",MainForm->RejectThres);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:393:25: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SlipThres ->Text =s.sprintf("%.3f",MainForm->SlipThres);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:394:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ARIter ->Text =s.sprintf("%d", MainForm->ARIter);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:395:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
NumIter ->Text =s.sprintf("%d", MainForm->NumIter);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:396:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
BaselineLen ->Text =s.sprintf("%.3f",MainForm->BaseLine[0]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:397:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
BaselineSig ->Text =s.sprintf("%.3f",MainForm->BaseLine[1]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:402:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
TimeDecimal ->Text =s.sprintf("%d",MainForm->TimeDecimal);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:414:25: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
MeasErrR1 ->Text =s.sprintf("%.1f",MainForm->MeasErrR1);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:415:25: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
MeasErrR2 ->Text =s.sprintf("%.1f",MainForm->MeasErrR2);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:416:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
MeasErr2 ->Text =s.sprintf("%.3f",MainForm->MeasErr2);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:417:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
MeasErr3 ->Text =s.sprintf("%.3f",MainForm->MeasErr3);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:418:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
MeasErr4 ->Text =s.sprintf("%.3f",MainForm->MeasErr4);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:419:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
MeasErr5 ->Text =s.sprintf("%.3f",MainForm->MeasErr5);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:420:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SatClkStab ->Text =s.sprintf("%.2E",MainForm->SatClkStab);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:421:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
PrNoise1 ->Text =s.sprintf("%.2E",MainForm->PrNoise1);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:422:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
PrNoise2 ->Text =s.sprintf("%.2E",MainForm->PrNoise2);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:423:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
PrNoise3 ->Text =s.sprintf("%.2E",MainForm->PrNoise3);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:424:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
PrNoise4 ->Text =s.sprintf("%.2E",MainForm->PrNoise4);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:425:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
PrNoise5 ->Text =s.sprintf("%.2E",MainForm->PrNoise5);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:431:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RovAntE ->Text =s.sprintf("%.4f",MainForm->RovAntE);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:432:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RovAntN ->Text =s.sprintf("%.4f",MainForm->RovAntN);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:433:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RovAntU ->Text =s.sprintf("%.4f",MainForm->RovAntU);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:434:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RefAntE ->Text =s.sprintf("%.4f",MainForm->RefAntE);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:435:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RefAntN ->Text =s.sprintf("%.4f",MainForm->RefAntN);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:436:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RefAntU ->Text =s.sprintf("%.4f",MainForm->RefAntU);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:444:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SbasSat ->Text =s.sprintf("%d",MainForm->SbasSat);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:604:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ElMask ->Text =s.sprintf("%.0f",prcopt.elmin*R2D);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:615:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s%s%s",p==buff?"":" ",prcopt.exsats[sat-1]==2?"+":"",id);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:635:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ValidThresAR ->Text =s.sprintf("%.3g",prcopt.thresar[0]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:636:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ThresAR2 ->Text =s.sprintf("%.9g",prcopt.thresar[1]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:637:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ThresAR3 ->Text =s.sprintf("%.3g",prcopt.thresar[2]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:638:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
OutCntResetAmb->Text =s.sprintf("%d" ,prcopt.maxout );
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:639:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
FixCntHoldAmb->Text =s.sprintf("%d" ,prcopt.minfix );
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:640:28: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
LockCntFixAmb ->Text =s.sprintf("%d" ,prcopt.minlock );
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:641:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ElMaskAR ->Text =s.sprintf("%.0f",prcopt.elmaskar*R2D);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:642:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ElMaskHold ->Text =s.sprintf("%.0f",prcopt.elmaskhold*R2D);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:643:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
MaxAgeDiff ->Text =s.sprintf("%.1f",prcopt.maxtdiff );
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:644:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RejectGdop ->Text =s.sprintf("%.1f",prcopt.maxgdop );
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:645:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RejectThres ->Text =s.sprintf("%.1f",prcopt.maxinno );
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:646:25: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SlipThres ->Text =s.sprintf("%.3f",prcopt.thresslip);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:647:23: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ARIter ->Text =s.sprintf("%d", prcopt.armaxiter);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:648:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
NumIter ->Text =s.sprintf("%d", prcopt.niter );
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:649:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
BaselineLen ->Text =s.sprintf("%.3f",prcopt.baseline[0]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:650:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
BaselineSig ->Text =s.sprintf("%.3f",prcopt.baseline[1]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:655:27: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
TimeDecimal ->Text =s.sprintf("%d",solopt.timeu);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:664:25: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
NmeaIntv1 ->Text =s.sprintf("%.2g",solopt.nmeaintv[0]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:665:25: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
NmeaIntv2 ->Text =s.sprintf("%.2g",solopt.nmeaintv[1]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:669:25: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
MeasErrR1 ->Text =s.sprintf("%.1f",prcopt.eratio[0]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:670:25: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
MeasErrR2 ->Text =s.sprintf("%.1f",prcopt.eratio[1]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:671:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
MeasErr2 ->Text =s.sprintf("%.3f",prcopt.err[1]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:672:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
MeasErr3 ->Text =s.sprintf("%.3f",prcopt.err[2]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:673:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
MeasErr4 ->Text =s.sprintf("%.3f",prcopt.err[3]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:674:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
MeasErr5 ->Text =s.sprintf("%.3f",prcopt.err[4]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:675:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SatClkStab ->Text =s.sprintf("%.2E",prcopt.sclkstab);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:676:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
PrNoise1 ->Text =s.sprintf("%.2E",prcopt.prn[0]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:677:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
PrNoise2 ->Text =s.sprintf("%.2E",prcopt.prn[1]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:678:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
PrNoise3 ->Text =s.sprintf("%.2E",prcopt.prn[2]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:679:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
PrNoise4 ->Text =s.sprintf("%.2E",prcopt.prn[3]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:680:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
PrNoise5 ->Text =s.sprintf("%.2E",prcopt.prn[4]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:686:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RovAntE ->Text =s.sprintf("%.4f",prcopt.antdel[0][0]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:687:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RovAntN ->Text =s.sprintf("%.4f",prcopt.antdel[0][1]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:688:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RovAntU ->Text =s.sprintf("%.4f",prcopt.antdel[0][2]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:689:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RefAntE ->Text =s.sprintf("%.4f",prcopt.antdel[1][0]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:690:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RefAntN ->Text =s.sprintf("%.4f",prcopt.antdel[1][1]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:691:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
RefAntU ->Text =s.sprintf("%.4f",prcopt.antdel[1][2]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:698:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SbasSat ->Text =s.sprintf("%d",prcopt.sbassatsel);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:753:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,ExSats_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:800:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(solopt.sep,FieldSep_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:825:26: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (RovAntPcv->Checked) strcpy(prcopt.anttype[0],RovAnt_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:826:26: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (RefAntPcv->Checked) strcpy(prcopt.anttype[1],RefAnt_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:841:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(prcopt.rnxopt[0],RnxOpts1_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:842:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(prcopt.rnxopt[1],RnxOpts2_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:843:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(prcopt.pppopt,PPPOpts_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:845:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.satantp,SatPcvFile_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:846:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.rcvantp,AntPcvFile_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:847:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.stapos, StaPosFile_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:848:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.geoid, GeoidDataFile_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:849:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.eop, EOPFile_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:850:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.dcb, DCBFile_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:851:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.blq, BLQFile_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:852:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.iono, IonoFile_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:855:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(comment,"rtkpost options (%s, v.%s %s)",s,VER_RTKLIB,PATCH_LEVEL);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:975:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
edit[0]->Text=s.sprintf("%.0f %02.0f %09.6f",s1*dms1[0],dms1[1],dms1[2]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:976:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
edit[1]->Text=s.sprintf("%.0f %02.0f %09.6f",s2*dms2[0],dms2[1],dms2[2]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:977:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
edit[2]->Text=s.sprintf("%.4f",p[2]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:980:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
edit[0]->Text=s.sprintf("%.4f",pos[0]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:981:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
edit[1]->Text=s.sprintf("%.4f",pos[1]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:982:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
edit[2]->Text=s.sprintf("%.4f",pos[2]);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:986:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
edit[0]->Text=s.sprintf("%.9f",p[0]*R2D);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:987:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
edit[1]->Text=s.sprintf("%.9f",p[1]*R2D);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:988:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
edit[2]->Text=s.sprintf("%.4f",p[2]);
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/kmzconv.cpp:111:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(file,qPrintable(InputFile_Text));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/kmzconv.cpp:112:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(kmlfile,file);
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postmain.cpp:90:9: [4] (format) vsprintf:
Potential format string problem (CWE-134). Make format string constant.
vsprintf(buff,format,arg);
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postmain.cpp:142:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(infile[n++],qPrintable(file));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postmain.cpp:156:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,qPrintable(line.mid(0,index)));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postmain.cpp:872:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(thread->outfile,qPrintable(OutputFile_Text));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postmain.cpp:978:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(prcopt.anttype[0],qPrintable(RovAnt));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postmain.cpp:984:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(prcopt.anttype[1],qPrintable(RefAnt));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postmain.cpp:990:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,qPrintable(ExSats));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postmain.cpp:1000:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(prcopt.rnxopt[0],qPrintable(RnxOpts1));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postmain.cpp:1001:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(prcopt.rnxopt[1],qPrintable(RnxOpts2));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postmain.cpp:1002:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(prcopt.pppopt,qPrintable(PPPOpts));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postmain.cpp:1018:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(solopt.sep,FieldSep!=""?qPrintable(FieldSep):" ");
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postmain.cpp:1019:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(solopt.prog,qPrintable(QString("%1 ver.%2 %3").arg(PRGNAME).arg(VER_RTKLIB).arg(PATCH_LEVEL)));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postmain.cpp:1022:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.satantp,qPrintable(SatPcvFile));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postmain.cpp:1023:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.rcvantp,qPrintable(AntPcvFile));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postmain.cpp:1024:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.stapos, qPrintable(StaPosFile));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postmain.cpp:1025:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.geoid, qPrintable(GeoidDataFile));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postmain.cpp:1026:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.iono, qPrintable(IonoFile));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postmain.cpp:1027:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.eop, qPrintable(EOPFile));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postmain.cpp:1028:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.dcb, qPrintable(DCBFile));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postmain.cpp:1029:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.blq, qPrintable(BLQFile));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postmain.cpp:1067:16: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (p!=-1) strcpy(rov,qPrintable(RovList.mid(p))); else strcpy(rov,qPrintable(RovList));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postmain.cpp:1067:61: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (p!=-1) strcpy(rov,qPrintable(RovList.mid(p))); else strcpy(rov,qPrintable(RovList));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postmain.cpp:1073:16: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (p!=-1) strcpy(base,qPrintable(BaseList.mid(p))); else strcpy(base,qPrintable(RovList));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postmain.cpp:1073:63: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (p!=-1) strcpy(base,qPrintable(BaseList.mid(p))); else strcpy(base,qPrintable(RovList));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postopt.cpp:31:37: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
label=label+(i>0?"+":"L")+s.sprintf("%d",freq[i]);
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postopt.cpp:822:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,qPrintable(ExSats_Text));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postopt.cpp:869:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(solopt.sep,qPrintable(FieldSep_Text));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postopt.cpp:894:33: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (RovAntPcv->isChecked()) strcpy(prcopt.anttype[0],qPrintable(RovAnt_Text));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postopt.cpp:895:33: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (RefAntPcv->isChecked()) strcpy(prcopt.anttype[1],qPrintable(RefAnt_Text));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postopt.cpp:910:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(prcopt.rnxopt[0],qPrintable(RnxOpts1_Text));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postopt.cpp:911:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(prcopt.rnxopt[1],qPrintable(RnxOpts2_Text));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postopt.cpp:912:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(prcopt.pppopt,qPrintable(PPPOpts_Text));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postopt.cpp:914:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.satantp,qPrintable(SatPcvFile_Text));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postopt.cpp:915:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.rcvantp,qPrintable(AntPcvFile_Text));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postopt.cpp:916:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.stapos, qPrintable(StaPosFile_Text));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postopt.cpp:917:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.geoid, qPrintable(GeoidDataFile_Text));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postopt.cpp:918:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.eop, qPrintable(EOPFile_Text));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postopt.cpp:919:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.dcb, qPrintable(DCBFile_Text));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postopt.cpp:920:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.blq, qPrintable(BLQFile_Text));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postopt.cpp:921:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filopt.iono, qPrintable(IonoFile_Text));
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postopt.cpp:924:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(comment,"rtkpost_qt options (%s, v.%s %s)",s,VER_RTKLIB,PATCH_LEVEL);
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:59:14: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
extern FILE *popen(const char *, const char *);
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:257:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,file);
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:297:16: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s",buff);
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:379:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(sta[0].name,sta_name);
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:405:25: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if (*startcmd&&(ret=system(startcmd))) {
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:443:24: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if (*stopcmd&&(ret=system(stopcmd))) {
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:625:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(s,"# of input data %s",type[i]);
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:634:16: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s%d(%d)",p>s?",":"",j,rtcm[i].nmsg2[j]);
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:637:13: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(p,"%sother2(%d)",p>s?",":"",rtcm[i].nmsg2[0]);
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:641:16: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s%d(%d)",p>s?",":"",j+1000,rtcm[i].nmsg3[j]);
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:644:13: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(p,"%sother3(%d)",p>s?",":"",rtcm[i].nmsg3[0]);
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:1038:12: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%-18s =",rcvopts[i].name);
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:1041:44: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
if ((n=(int)(buff+30-p))>0) p+=sprintf(p,"%*s",n,"");
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:1042:16: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p," # (%s)",rcvopts[i].comment);
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:1049:12: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%-18s =",sysopts[i].name);
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:1052:44: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
if ((n=(int)(buff+30-p))>0) p+=sprintf(p,"%*s",n,"");
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:1053:16: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p," # (%s)",sysopts[i].comment);
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:1087:10: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
else strcpy(buff,args[2]);
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:1111:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(file,args[1]);
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:1114:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(file,"%s/%s",OPTSDIR,OPTSFILE);
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:1137:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(file,args[1]);
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:1140:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(file,"%s/%s",OPTSDIR,OPTSFILE);
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:1144:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(comment,"%s options (%s, v.%s)",PRGNAME,s,VER_RTKLIB);
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:1198:14: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if (!(fp=popen(cmd,"r"))) {
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:1391:51: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
else if (!strcmp(argv[i],"-o")&&i+1<argc) strcpy(file,argv[++i]);
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:1394:53: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
else if (!strcmp(argv[i],"-sta")&&i+1<argc) strcpy(sta_name,argv[++i]);
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:1406:17: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
if (!*file) sprintf(file,"%s/%s",OPTSDIR,OPTSFILE);
data/rtklib-2.4.3+dfsg1/app/rtkrcv/vt.c:211:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(vt->hist[0],buff);
data/rtklib-2.4.3+dfsg1/app/rtkrcv/vt.c:398:5: [4] (format) vsprintf:
Potential format string problem (CWE-134). Make format string constant.
vsprintf(buff,format,ap);
data/rtklib-2.4.3+dfsg1/app/srctblbrows/browsmain.cpp:102:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,cmd.c_str());
data/rtklib-2.4.3+dfsg1/app/srctblbrows/browsmain.cpp:109:16: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Caption=title.sprintf("%s ver.%s %s",PRGNAME,VER_RTKLIB,PATCH_LEVEL);
data/rtklib-2.4.3+dfsg1/app/srctblbrows/browsmain.cpp:142:38: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
stas=ini->ReadString("sta",s.sprintf("station%d",i),"");
data/rtklib-2.4.3+dfsg1/app/srctblbrows/browsmain.cpp:143:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,stas.c_str());
data/rtklib-2.4.3+dfsg1/app/srctblbrows/browsmain.cpp:167:15: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
colw=colw+s.sprintf("%d,",Table0->ColWidths[i]*96/FontScale);
data/rtklib-2.4.3+dfsg1/app/srctblbrows/browsmain.cpp:172:15: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
colw=colw+s.sprintf("%d,",Table1->ColWidths[i]*96/FontScale);
data/rtklib-2.4.3+dfsg1/app/srctblbrows/browsmain.cpp:177:15: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
colw=colw+s.sprintf("%d,",Table2->ColWidths[i]*96/FontScale);
data/rtklib-2.4.3+dfsg1/app/srctblbrows/browsmain.cpp:185:16: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s%s",k==0?"":",",sta.c_str());
data/rtklib-2.4.3+dfsg1/app/srctblbrows/browsmain.cpp:187:35: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteString ("sta",s.sprintf("station%d",i),buff);
data/rtklib-2.4.3+dfsg1/app/str2str/str2str.c:145:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,path);
data/rtklib-2.4.3+dfsg1/app/str2str/str2str.c:152:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(strpath,buff);
data/rtklib-2.4.3+dfsg1/app/str2str/str2str.c:166:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(strpath,p+3);
data/rtklib-2.4.3+dfsg1/app/str2str/str2str.c:183:16: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s",buff);
data/rtklib-2.4.3+dfsg1/app/str2str/str2str.c:261:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,antinfo);
data/rtklib-2.4.3+dfsg1/app/str2str/str2str.c:263:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(conv[i]->out.sta.antdes,ant[0]);
data/rtklib-2.4.3+dfsg1/app/str2str/str2str.c:264:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(conv[i]->out.sta.antsno,ant[1]);
data/rtklib-2.4.3+dfsg1/app/str2str/str2str.c:266:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,rcvinfo);
data/rtklib-2.4.3+dfsg1/app/str2str/str2str.c:268:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(conv[i]->out.sta.rectype,rcv[0]);
data/rtklib-2.4.3+dfsg1/app/str2str/str2str.c:269:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(conv[i]->out.sta.recver ,rcv[1]);
data/rtklib-2.4.3+dfsg1/app/str2str/str2str.c:270:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(conv[i]->out.sta.recsno ,rcv[2]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:88:15: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Caption=s.sprintf("%s ver.%s %s",PRGNAME,VER_RTKLIB,PATCH_LEVEL);
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:90:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,GetCommandLine());
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:404:21: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Time->Caption=s.sprintf("%s GPST",s1);
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:417:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ConTime->Caption=s.sprintf("%.0fd %02.0f:%02.0f:%02.0f",t[0],t[1],t[2],t[3]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:420:22: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
TrayIcon->Hint=s.sprintf("%s bytes %s bps",s1,s2);
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:452:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(paths[0],Paths[0][ip[Input->ItemIndex]].c_str());
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:453:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(paths[1],!Output1->ItemIndex?"":Paths[1][ip[Output1->ItemIndex-1]].c_str());
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:454:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(paths[2],!Output2->ItemIndex?"":Paths[2][ip[Output2->ItemIndex-1]].c_str());
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:455:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(paths[3],!Output3->ItemIndex?"":Paths[3][ip[Output3->ItemIndex-1]].c_str());
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:471:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filepath,paths[i]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:486:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,AntType.c_str());
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:488:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(conv[i]->out.sta.antdes,ant[0]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:489:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(conv[i]->out.sta.antsno,ant[1]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:491:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,RcvType.c_str());
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:493:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(conv[i]->out.sta.rectype,rcv[0]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:494:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(conv[i]->out.sta.recver ,rcv[1]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:495:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(conv[i]->out.sta.recsno ,rcv[2]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:647:44: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SvrOpt[i]=ini->ReadInteger("set",s.sprintf("svropt_%d",i),optdef[i]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:650:42: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
AntPos[i]=ini->ReadFloat("set",s.sprintf("antpos_%d",i),0.0);
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:651:42: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
AntOff[i]=ini->ReadFloat("set",s.sprintf("antoff_%d",i),0.0);
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:654:46: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ConvEna[i]=ini->ReadInteger("conv",s.sprintf("ena_%d",i), 0);
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:655:46: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ConvInp[i]=ini->ReadInteger("conv",s.sprintf("inp_%d",i), 0);
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:656:46: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ConvOut[i]=ini->ReadInteger("conv",s.sprintf("out_%d",i), 0);
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:657:46: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ConvMsg[i]=ini->ReadString ("conv",s.sprintf("msg_%d",i),"");
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:658:46: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ConvOpt[i]=ini->ReadString ("conv",s.sprintf("opt_%d",i),"");
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:661:50: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
CmdEna [i]=ini->ReadInteger("serial",s.sprintf("cmdena_%d",i),1);
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:662:50: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
CmdEnaTcp[i]=ini->ReadInteger("tcpip" ,s.sprintf("cmdena_%d",i),1);
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:665:46: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Paths[i][j]=ini->ReadString("path",s.sprintf("path_%d_%d",i,j),"");
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:668:44: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
Cmds[i]=ini->ReadString("serial",s.sprintf("cmd_%d",i),"");
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:674:46: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
CmdsTcp[i]=ini->ReadString("tcpip",s.sprintf("cmd_%d",i),"");
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:680:50: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
TcpHistory[i]=ini->ReadString("tcpopt",s.sprintf("history%d",i),"");
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:683:51: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
TcpMntpHist[i]=ini->ReadString("tcpopt",s.sprintf("mntphist%d",i),"");
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:712:35: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteInteger("set",s.sprintf("svropt_%d",i),SvrOpt[i]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:715:33: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteFloat("set",s.sprintf("antpos_%d",i),AntPos[i]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:716:33: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteFloat("set",s.sprintf("antoff_%d",i),AntOff[i]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:719:36: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteInteger("conv",s.sprintf("ena_%d",i),ConvEna[i]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:720:36: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteInteger("conv",s.sprintf("inp_%d",i),ConvInp[i]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:721:36: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteInteger("conv",s.sprintf("out_%d",i),ConvOut[i]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:722:36: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteString ("conv",s.sprintf("msg_%d",i),ConvMsg[i]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:723:36: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteString ("conv",s.sprintf("opt_%d",i),ConvOpt[i]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:726:38: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteInteger("serial",s.sprintf("cmdena_%d",i),CmdEna [i]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:727:38: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteInteger("tcpip" ,s.sprintf("cmdena_%d",i),CmdEnaTcp[i]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:730:35: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteString("path",s.sprintf("path_%d_%d",i,j),Paths[i][j]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:736:37: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteString("serial",s.sprintf("cmd_%d",i),Cmds[i]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:742:36: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteString("tcpip",s.sprintf("cmd_%d",i),CmdsTcp[i]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:745:37: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteString("tcpopt",s.sprintf("history%d",i),TcpOptDialog->History[i]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:748:37: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ini->WriteString("tcpopt",s.sprintf("mntphist%d",i),TcpOptDialog->MntpHist[i]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svroptdlg.cpp:30:22: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
DataTimeout->Text=s.sprintf("%d",SvrOpt[0]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svroptdlg.cpp:31:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
ConnectInterval->Text=s.sprintf("%d",SvrOpt[1]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svroptdlg.cpp:32:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
AvePeriodRate->Text=s.sprintf("%d",SvrOpt[2]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svroptdlg.cpp:33:22: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SvrBuffSize->Text=s.sprintf("%d",SvrOpt[3]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svroptdlg.cpp:34:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
SvrCycle->Text=s.sprintf("%d",SvrOpt[4]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svroptdlg.cpp:35:20: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
NmeaCycle->Text=s.sprintf("%d",SvrOpt[5]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svroptdlg.cpp:36:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
FileSwapMarginE->Text=s.sprintf("%d",FileSwapMargin);
data/rtklib-2.4.3+dfsg1/app/strsvr/svroptdlg.cpp:39:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
AntPos1->Text=s.sprintf("%.8f",pos[0]*R2D);
data/rtklib-2.4.3+dfsg1/app/strsvr/svroptdlg.cpp:40:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
AntPos2->Text=s.sprintf("%.8f",pos[1]*R2D);
data/rtklib-2.4.3+dfsg1/app/strsvr/svroptdlg.cpp:41:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
AntPos3->Text=s.sprintf("%.3f",pos[2]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svroptdlg.cpp:52:20: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
StationId->Text=s.sprintf("%d",StaId);
data/rtklib-2.4.3+dfsg1/app/strsvr/svroptdlg.cpp:56:18: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
AntOff1->Text=s.sprintf("%.4f",AntOff[0]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svroptdlg.cpp:57:18: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
AntOff2->Text=s.sprintf("%.4f",AntOff[1]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svroptdlg.cpp:58:18: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
AntOff3->Text=s.sprintf("%.4f",AntOff[2]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svroptdlg.cpp:104:18: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
AntPos1->Text=s.sprintf("%.8f",RefDialog->Pos[0]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svroptdlg.cpp:105:18: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
AntPos2->Text=s.sprintf("%.8f",RefDialog->Pos[1]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svroptdlg.cpp:106:18: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
AntPos3->Text=s.sprintf("%.3f",RefDialog->Pos[2]);
data/rtklib-2.4.3+dfsg1/app/strsvr_qt/svrmain.cpp:552:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(paths[0],qPrintable(Paths[0][ip[Input->currentIndex()]]));
data/rtklib-2.4.3+dfsg1/app/strsvr_qt/svrmain.cpp:553:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(paths[1],!Output1->currentIndex()?"":qPrintable(Paths[1][ip[Output1->currentIndex()-1]]));
data/rtklib-2.4.3+dfsg1/app/strsvr_qt/svrmain.cpp:554:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(paths[2],!Output2->currentIndex()?"":qPrintable(Paths[2][ip[Output2->currentIndex()-1]]));
data/rtklib-2.4.3+dfsg1/app/strsvr_qt/svrmain.cpp:555:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(paths[3],!Output3->currentIndex()?"":qPrintable(Paths[3][ip[Output3->currentIndex()-1]]));
data/rtklib-2.4.3+dfsg1/app/strsvr_qt/svrmain.cpp:571:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filepath,paths[i]);
data/rtklib-2.4.3+dfsg1/app/strsvr_qt/svrmain.cpp:585:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,qPrintable(AntType));
data/rtklib-2.4.3+dfsg1/app/strsvr_qt/svrmain.cpp:587:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(conv[i]->out.sta.antdes,ant[0]);
data/rtklib-2.4.3+dfsg1/app/strsvr_qt/svrmain.cpp:588:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(conv[i]->out.sta.antsno,ant[1]);
data/rtklib-2.4.3+dfsg1/app/strsvr_qt/svrmain.cpp:590:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,qPrintable(RcvType));
data/rtklib-2.4.3+dfsg1/app/strsvr_qt/svrmain.cpp:592:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(conv[i]->out.sta.rectype,rcv[0]);
data/rtklib-2.4.3+dfsg1/app/strsvr_qt/svrmain.cpp:593:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(conv[i]->out.sta.recver ,rcv[1]);
data/rtklib-2.4.3+dfsg1/app/strsvr_qt/svrmain.cpp:594:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(conv[i]->out.sta.recsno ,rcv[2]);
data/rtklib-2.4.3+dfsg1/src/convkml.c:174:14: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
else sprintf(file,"%s.kml",infile);
data/rtklib-2.4.3+dfsg1/src/convkml.c:176:10: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
else strcpy(file,outfile);
data/rtklib-2.4.3+dfsg1/src/convrnx.c:103:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(opt->marker,rnx->sta.name);
data/rtklib-2.4.3+dfsg1/src/convrnx.c:104:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(opt->markerno,rnx->sta.marker);
data/rtklib-2.4.3+dfsg1/src/convrnx.c:107:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(opt->rec[0],rnx->sta.recsno);
data/rtklib-2.4.3+dfsg1/src/convrnx.c:108:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(opt->rec[1],rnx->sta.rectype);
data/rtklib-2.4.3+dfsg1/src/convrnx.c:109:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(opt->rec[2],rnx->sta.recver);
data/rtklib-2.4.3+dfsg1/src/convrnx.c:112:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(opt->ant[0],rnx->sta.antsno);
data/rtklib-2.4.3+dfsg1/src/convrnx.c:113:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(opt->ant[1],rnx->sta.antdes);
data/rtklib-2.4.3+dfsg1/src/convrnx.c:149:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(opt->rec[0],rtcm->sta.recsno);
data/rtklib-2.4.3+dfsg1/src/convrnx.c:150:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(opt->rec[1],rtcm->sta.rectype);
data/rtklib-2.4.3+dfsg1/src/convrnx.c:151:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(opt->rec[2],rtcm->sta.recver);
data/rtklib-2.4.3+dfsg1/src/convrnx.c:154:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(opt->ant[0],rtcm->sta.antsno);
data/rtklib-2.4.3+dfsg1/src/convrnx.c:155:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(opt->ant[1],rtcm->sta.antdes);
data/rtklib-2.4.3+dfsg1/src/convrnx.c:203:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(str->rtcm.opt,opt);
data/rtklib-2.4.3+dfsg1/src/convrnx.c:213:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(str->raw.opt,opt);
data/rtklib-2.4.3+dfsg1/src/convrnx.c:222:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(str->rnx.opt,opt);
data/rtklib-2.4.3+dfsg1/src/convrnx.c:374:13: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(type,"%c%s",type_str[j],id);
data/rtklib-2.4.3+dfsg1/src/convrnx.c:387:21: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(opt->tobs[0][opt->nobs[0]++],type);
data/rtklib-2.4.3+dfsg1/src/convrnx.c:391:17: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(opt->tobs[sys][opt->nobs[sys]++],type);
data/rtklib-2.4.3+dfsg1/src/convrnx.c:449:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(msg,"scanning: %s %s%s%s%s%s%s",time_str(str->time,0),
data/rtklib-2.4.3+dfsg1/src/convrnx.c:601:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(path,files[i]);
data/rtklib-2.4.3+dfsg1/src/convrnx.c:869:12: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s",s);
data/rtklib-2.4.3+dfsg1/src/convrnx.c:873:12: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"-%s",s+5);
data/rtklib-2.4.3+dfsg1/src/convrnx.c:879:12: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%c=%d%s",type[i],n[i],i<NOUTFILE?" ":"");
data/rtklib-2.4.3+dfsg1/src/download.c:51:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(cmds,"cmd /c %s",cmd);
data/rtklib-2.4.3+dfsg1/src/download.c:63:12: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
return system(cmd);
data/rtklib-2.4.3+dfsg1/src/download.c:78:39: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
if (*q=='s'||*q=='r') p+=sprintf(p,"%s",l_name)-1;
data/rtklib-2.4.3+dfsg1/src/download.c:79:39: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
else if (*q=='S'||*q=='R') p+=sprintf(p,"%s",u_name)-1;
data/rtklib-2.4.3+dfsg1/src/download.c:84:39: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
if ((env=getenv(var))) p+=sprintf(p,"%s",env)-1;
data/rtklib-2.4.3+dfsg1/src/download.c:111:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(s1,"^%s$",str1);
data/rtklib-2.4.3+dfsg1/src/download.c:112:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(s2,"^%s$",str2);
data/rtklib-2.4.3+dfsg1/src/download.c:126:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(local,"%s%c%s",dir,FILEPATHSEP,p);
data/rtklib-2.4.3+dfsg1/src/download.c:146:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,local);
data/rtklib-2.4.3+dfsg1/src/download.c:198:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(paths->path[paths->n].remot,remot);
data/rtklib-2.4.3+dfsg1/src/download.c:199:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(paths->path[paths->n].local,local);
data/rtklib-2.4.3+dfsg1/src/download.c:283:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(pdir,dir);
data/rtklib-2.4.3+dfsg1/src/download.c:302:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(pdir,dir);
data/rtklib-2.4.3+dfsg1/src/download.c:329:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(remot,path->remot);
data/rtklib-2.4.3+dfsg1/src/download.c:334:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(env,"set ftp_proxy=http://%s & ",proxy);
data/rtklib-2.4.3+dfsg1/src/download.c:337:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(cmd,"%s%s %s --ftp-user=%s --ftp-password=%s --glob=off "
data/rtklib-2.4.3+dfsg1/src/download.c:394:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dir,path->local);
data/rtklib-2.4.3+dfsg1/src/download.c:420:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(remot_p,path->remot);
data/rtklib-2.4.3+dfsg1/src/download.c:439:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(env,"set %s_proxy=http://%s & ",proto==0?"ftp":"http",proxy);
data/rtklib-2.4.3+dfsg1/src/download.c:443:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errfile,"%s.err",path->local);
data/rtklib-2.4.3+dfsg1/src/download.c:445:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(cmd,"%s%s %s --ftp-user=%s --ftp-password=%s --glob=off "
data/rtklib-2.4.3+dfsg1/src/download.c:452:13: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(opt+strlen(opt)," --http-user=%s --http-password=%s ",usr,
data/rtklib-2.4.3+dfsg1/src/download.c:455:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(cmd,"%s%s %s %s-t %d -T %d -O \"%s\" -o \"%s\"%s\n",env,FTP_CMD,
data/rtklib-2.4.3+dfsg1/src/download.c:514:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(str,"%s->%s",path,local);
data/rtklib-2.4.3+dfsg1/src/download.c:637:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(urls[n ].type,type);
data/rtklib-2.4.3+dfsg1/src/download.c:638:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(urls[n ].path,path);
data/rtklib-2.4.3+dfsg1/src/download.c:639:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(urls[n++].dir ,dir );
data/rtklib-2.4.3+dfsg1/src/download.c:673:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(stas[n++],p);
data/rtklib-2.4.3+dfsg1/src/download.c:742:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(str,"%s->%s (%d/%d)",paths.path[i].remot,paths.path[i].local,i+1,
data/rtklib-2.4.3+dfsg1/src/download.c:821:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(date_p,date);
data/rtklib-2.4.3+dfsg1/src/options.c:198:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(s,p+n);
data/rtklib-2.4.3+dfsg1/src/options.c:251:17: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
case 2: strcpy((char *)opt->var,str); break;
data/rtklib-2.4.3+dfsg1/src/options.c:272:20: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
case 2: p+=sprintf(p,"%s" , (char *)opt->var); break;
data/rtklib-2.4.3+dfsg1/src/options.c:290:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%-18s =",opt->name);
data/rtklib-2.4.3+dfsg1/src/options.c:293:40: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
if ((n=(int)(buff+30-p))>0) p+=sprintf(p,"%*s",n,"");
data/rtklib-2.4.3+dfsg1/src/options.c:294:12: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p," # (%s)",opt->comment);
data/rtklib-2.4.3+dfsg1/src/options.c:405:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,exsats_);
data/rtklib-2.4.3+dfsg1/src/options.c:415:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,snrmask_[i]);
data/rtklib-2.4.3+dfsg1/src/options.c:455:16: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s%s%s",p==exsats_?"":" ",
data/rtklib-2.4.3+dfsg1/src/options.c:464:16: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s%.0f",j>0?",":"",prcopt_.snrmask.mask[i][j]);
data/rtklib-2.4.3+dfsg1/src/pntpos.c:439:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(msg,msg_e);
data/rtklib-2.4.3+dfsg1/src/postpos.c:85:8: [4] (format) vsprintf:
Potential format string problem (CWE-134). Make format string constant.
p+=vsprintf(p,format,arg);
data/rtklib-2.4.3+dfsg1/src/postpos.c:87:32: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
if (*proc_rov&&*proc_base) sprintf(p," (%s-%s)",proc_rov,proc_base);
data/rtklib-2.4.3+dfsg1/src/postpos.c:88:26: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
else if (*proc_rov ) sprintf(p," (%s)",proc_rov );
data/rtklib-2.4.3+dfsg1/src/postpos.c:89:26: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
else if (*proc_base) sprintf(p," (%s)",proc_base);
data/rtklib-2.4.3+dfsg1/src/postpos.c:205:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(rtcm_path,path);
data/rtklib-2.4.3+dfsg1/src/postpos.c:602:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(rtcm_file,infile[i]);
data/rtklib-2.4.3+dfsg1/src/postpos.c:889:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(popt->anttype[i],sta[i].antdes);
data/rtklib-2.4.3+dfsg1/src/postpos.c:906:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(popt->anttype[i],pcv->type);
data/rtklib-2.4.3+dfsg1/src/postpos.c:963:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(tracefile,outfile);
data/rtklib-2.4.3+dfsg1/src/postpos.c:967:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(tracefile,fopt->trace);
data/rtklib-2.4.3+dfsg1/src/postpos.c:1021:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(statfile,outfile);
data/rtklib-2.4.3+dfsg1/src/postpos.c:1091:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(rov_,rov);
data/rtklib-2.4.3+dfsg1/src/postpos.c:1103:17: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(proc_rov,p);
data/rtklib-2.4.3+dfsg1/src/postpos.c:1147:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(base_,base);
data/rtklib-2.4.3+dfsg1/src/postpos.c:1160:17: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(proc_base,p);
data/rtklib-2.4.3+dfsg1/src/postpos.c:1279:21: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ifile[nf++],infile[j]);
data/rtklib-2.4.3+dfsg1/src/ppp.c:177:16: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"$ION,%d,%.3f,%d,%s,%.1f,%.1f,%.4f,%.4f\n",week,tow,
data/rtklib-2.4.3+dfsg1/src/ppp.c:188:12: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"$AMB,%d,%.3f,%d,%s,%d,%.4f,%.4f\n",week,tow,
data/rtklib-2.4.3+dfsg1/src/ppp_ar.c:325:33: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
satno2id(sat1[i],s); p+=sprintf(p,"%s ",s);
data/rtklib-2.4.3+dfsg1/src/ppp_ar.c:329:33: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
satno2id(sat2[i],s); p+=sprintf(p,"%s ",s);
data/rtklib-2.4.3+dfsg1/src/ppp_ar.c:362:12: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s%d",i==na-1?"":" ",(int)N[i]);
data/rtklib-2.4.3+dfsg1/src/ppp_corr.c:33:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(corr->stas[corr->nsta++],sta);
data/rtklib-2.4.3+dfsg1/src/ppp_corr.c:50:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(corr->stas[corr->nsta++],sta);
data/rtklib-2.4.3+dfsg1/src/ppp_corr.c:84:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(corr->stas[corr->nsta++],sta);
data/rtklib-2.4.3+dfsg1/src/rcv/binex.c:362:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(msg," fid=%02X time=%s src=%d",fid,time_str(raw->time,0),src);
data/rtklib-2.4.3+dfsg1/src/rcv/binex.c:1112:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(msg," subrec=%02X time%s",srec,time_str(raw->time,3));
data/rtklib-2.4.3+dfsg1/src/rcv/javad.c:264:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(msg," %s",time_str(time,3));
data/rtklib-2.4.3+dfsg1/src/rcv/novatel.c:1295:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(raw->msgtype,"OEM4 %4d (%4d): msg=%d %s",type,raw->len,msg,
data/rtklib-2.4.3+dfsg1/src/rcv/nvs.c:573:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(mbuff,msg);
data/rtklib-2.4.3+dfsg1/src/rcv/rcvlex.c:363:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(mbuff,msg);
data/rtklib-2.4.3+dfsg1/src/rcv/skytraq.c:573:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(mbuff,msg);
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:235:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(raw->msgtype,"UBX RXM-RAWX (%4d): time=%s nsat=%d",raw->len,
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:1162:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(mbuff,msg);
data/rtklib-2.4.3+dfsg1/src/rinex.c:871:13: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
if (sscanf(p,optstr,str,&shift)<2) continue;
data/rtklib-2.4.3+dfsg1/src/rinex.c:1702:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(rnx->tobs[i][j],tobs[i][j]);
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:244:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(msg," %s nsat=%2d sync=%d",time_str(rtcm->time,2),nsat,*sync);
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:540:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(msg," %s nsat=%2d sync=%d",time_str(rtcm->time,2),nsat,*sync);
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:1318:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(msg," %s nsat=%2d iod=%2d udi=%2d sync=%d",
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:1358:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(msg," %s nsat=%2d iod=%2d udi=%2d sync=%d",
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:1400:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(msg," %s nsat=%2d iod=%2d udi=%2d sync=%d",
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:1847:23: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
if (q) q+=sprintf(q,"L%s%s",sig[i],i<h->nsig-1?",":"");
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:1850:23: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
if (q) q+=sprintf(q,"(%d)%s",h->sigs[i],i<h->nsig-1?",":"");
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:1984:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(msg," %s staid=%3d nsat=%2d nsig=%2d iod=%2d ncell=%2d sync=%d",
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:352:26: [4] (format) vsprintf:
Potential format string problem (CWE-134). Make format string constant.
va_start(ap,format); vsprintf(msg,format,ap); va_end(ap);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:585:22: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (sys&SYS_GPS) strcpy(codepris[0][freq-1],pri);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:586:22: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (sys&SYS_GLO) strcpy(codepris[1][freq-1],pri);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:587:22: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (sys&SYS_GAL) strcpy(codepris[2][freq-1],pri);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:588:22: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (sys&SYS_QZS) strcpy(codepris[3][freq-1],pri);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:589:22: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (sys&SYS_SBS) strcpy(codepris[4][freq-1],pri);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:590:22: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (sys&SYS_CMP) strcpy(codepris[5][freq-1],pri);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:618:13: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
if (sscanf(p,optstr,str)<1||str[0]!=obs[0]) continue;
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2246:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,type);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2804:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(file_trace,file);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2825:30: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
va_start(ap,format); vfprintf(stderr,format,ap); va_end(ap);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2830:26: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
va_start(ap,format); vfprintf(fp_trace,format,ap); va_end(ap);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2840:26: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
va_start(ap,format); vfprintf(fp_trace,format,ap); va_end(ap);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2989:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(cmds,"cmd /c %s",cmd);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3000:12: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
return system(cmd);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3026:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(paths[0],path);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3029:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(paths[n++],"%s%s",dir,file.cFileName);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3032:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(paths[n++],"%s%s",dir,file.cFileName);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3049:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(s1,"^%s$",d->d_name);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3050:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(s2,"^%s$",file);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3057:24: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
if (p&&n<nmax) sprintf(paths[n++],"%s%s",dir,d->d_name);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3065:17: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(tmp,paths[i]);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3066:17: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(paths[i],paths[j]);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3067:17: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(paths[j],tmp);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3087:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,path);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3107:12: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
r+=sprintf(r,"%s",rep);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3110:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,p);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3111:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(str,buff);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3152:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(rpath,path);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3736:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(tmpfile,file);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3744:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(uncfile,tmpfile); uncfile[p-tmpfile]='\0';
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3745:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(cmd,"gzip -f -d -c \"%s\" > \"%s\"",tmpfile,uncfile);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3751:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(tmpfile,uncfile);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3757:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(uncfile,tmpfile); uncfile[p-tmpfile]='\0';
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3758:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,tmpfile);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3764:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(cmd,"set PATH=%%CD%%;%%PATH%% & cd /D \"%s\" & tar -xf \"%s\"",
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3770:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(cmd,"tar -C \"%s\" -xf \"%s\"",dir,tmpfile);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3782:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(uncfile,tmpfile);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3784:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(cmd,"crx2rnx < \"%s\" > \"%s\"",tmpfile,uncfile);
data/rtklib-2.4.3+dfsg1/src/rtkpos.c:191:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(file_stat,file);
data/rtklib-2.4.3+dfsg1/src/rtkpos.c:269:16: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"$ION,%d,%.3f,%d,%s,%.1f,%.1f,%.4f,%.4f\n",week,tow,
data/rtklib-2.4.3+dfsg1/src/rtkpos.c:363:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
n=sprintf(buff,"%s: ",tstr+11);
data/rtklib-2.4.3+dfsg1/src/rtkpos.c:365:8: [4] (format) vsprintf:
Potential format string problem (CWE-134). Make format string constant.
n+=vsprintf(buff+n,format,ap);
data/rtklib-2.4.3+dfsg1/src/rtksvr.c:369:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(svr->files[index],file);
data/rtklib-2.4.3+dfsg1/src/rtksvr.c:387:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(svr->files[index],file);
data/rtklib-2.4.3+dfsg1/src/rtksvr.c:701:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(svr->raw [i].opt,rcvopts[i]);
data/rtklib-2.4.3+dfsg1/src/rtksvr.c:702:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(svr->rtcm[i].opt,rcvopts[i]);
data/rtklib-2.4.3+dfsg1/src/rtksvr.c:919:20: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
if (*s) p+=sprintf(p,"(%d) %s ",i+1,s);
data/rtklib-2.4.3+dfsg1/src/solution.c:303:25: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
else if (*opt->sep) strcpy(s,opt->sep);
data/rtklib-2.4.3+dfsg1/src/solution.c:970:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(path,"%s.stat",files[i]);
data/rtklib-2.4.3+dfsg1/src/solution.c:1000:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s%s%14.4f%s%14.4f%s%14.4f%s%3d%s%3d%s%8.4f%s%8.4f%s%8.4f%s%8.4f%s%8.4f%s%8.4f%s%6.2f%s%6.1f\n",
data/rtklib-2.4.3+dfsg1/src/solution.c:1026:12: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s%s%4.0f%s%02.0f%s%08.5f%s%4.0f%s%02.0f%s%08.5f",s,sep,
data/rtklib-2.4.3+dfsg1/src/solution.c:1030:13: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
else p+=sprintf(p,"%s%s%14.9f%s%14.9f",s,sep,pos[0]*R2D,sep,pos[1]*R2D);
data/rtklib-2.4.3+dfsg1/src/solution.c:1031:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s%10.4f%s%3d%s%3d%s%8.4f%s%8.4f%s%8.4f%s%8.4f%s%8.4f%s%8.4f%s%6.2f%s%6.1f\n",
data/rtklib-2.4.3+dfsg1/src/solution.c:1053:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s%s%14.4f%s%14.4f%s%14.4f%s%3d%s%3d%s%8.4f%s%8.4f%s%8.4f%s%8.4f%s%8.4f%s%8.4f%s%6.2f%s%6.1f\n",
data/rtklib-2.4.3+dfsg1/src/solution.c:1089:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"$GPRMC,%02.0f%02.0f%05.2f,A,%02.0f%010.7f,%s,%03.0f%010.7f,%s,%4.2f,%4.2f,%02.0f%02.0f%02d,%.1f,%s,%s",
data/rtklib-2.4.3+dfsg1/src/solution.c:1123:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"$GPGGA,%02.0f%02.0f%05.2f,%02.0f%010.7f,%s,%03.0f%010.7f,%s,%d,%02d,%.1f,%.3f,M,%.3f,M,%.1f,",
data/rtklib-2.4.3+dfsg1/src/solution.c:1329:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s pos mode : %s\n",COMMENTH,s1[opt->mode]);
data/rtklib-2.4.3+dfsg1/src/solution.c:1332:12: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s freqs : %s\n",COMMENTH,s2[opt->nf-1]);
data/rtklib-2.4.3+dfsg1/src/solution.c:1335:12: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s solution : %s\n",COMMENTH,s3[opt->soltype]);
data/rtklib-2.4.3+dfsg1/src/solution.c:1337:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s elev mask : %.1f deg\n",COMMENTH,opt->elmin*R2D);
data/rtklib-2.4.3+dfsg1/src/solution.c:1339:12: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s dynamics : %s\n",COMMENTH,opt->dynamics?"on":"off");
data/rtklib-2.4.3+dfsg1/src/solution.c:1340:12: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s tidecorr : %s\n",COMMENTH,opt->tidecorr?"on":"off");
data/rtklib-2.4.3+dfsg1/src/solution.c:1343:12: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s ionos opt : %s\n",COMMENTH,s4[opt->ionoopt]);
data/rtklib-2.4.3+dfsg1/src/solution.c:1345:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s tropo opt : %s\n",COMMENTH,s5[opt->tropopt]);
data/rtklib-2.4.3+dfsg1/src/solution.c:1346:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s ephemeris : %s\n",COMMENTH,s6[opt->sateph]);
data/rtklib-2.4.3+dfsg1/src/solution.c:1348:12: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s navi sys :",COMMENTH);
data/rtklib-2.4.3+dfsg1/src/solution.c:1350:40: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
if (opt->navsys&sys[i]) p+=sprintf(p," %s",s7[i]);
data/rtklib-2.4.3+dfsg1/src/solution.c:1355:12: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s amb res : %s\n",COMMENTH,s8[opt->modear]);
data/rtklib-2.4.3+dfsg1/src/solution.c:1357:16: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s amb glo : %s\n",COMMENTH,s9[opt->glomodear]);
data/rtklib-2.4.3+dfsg1/src/solution.c:1360:16: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s val thres : %.1f\n",COMMENTH,opt->thresar[0]);
data/rtklib-2.4.3+dfsg1/src/solution.c:1364:12: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s baseline : %.4f %.4f m\n",COMMENTH,
data/rtklib-2.4.3+dfsg1/src/solution.c:1369:12: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s antenna%d : %-21s (%7.4f %7.4f %7.4f)\n",COMMENTH,
data/rtklib-2.4.3+dfsg1/src/solution.c:1393:12: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s (",COMMENTH);
data/rtklib-2.4.3+dfsg1/src/solution.c:1396:17: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
else p+=sprintf(p,"lat/lon/height=%s/%s",s1[opt->datum],s2[opt->height]);
data/rtklib-2.4.3+dfsg1/src/solution.c:1399:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%s %-*s%s",COMMENTH,(opt->timef?16:8)+timeu+1,s3[opt->times],sep);
data/rtklib-2.4.3+dfsg1/src/solution.c:1403:16: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%16s%s%16s%s%10s%s%3s%s%3s%s%8s%s%8s%s%8s%s%8s%s%8s%s%8s%s%6s%s%6s\n",
data/rtklib-2.4.3+dfsg1/src/solution.c:1409:16: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%14s%s%14s%s%10s%s%3s%s%3s%s%8s%s%8s%s%8s%s%8s%s%8s%s%8s%s%6s%s%6s\n",
data/rtklib-2.4.3+dfsg1/src/solution.c:1416:12: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%14s%s%14s%s%14s%s%3s%s%3s%s%8s%s%8s%s%8s%s%8s%s%8s%s%8s%s%6s%s%6s\n",
data/rtklib-2.4.3+dfsg1/src/solution.c:1422:12: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"%14s%s%14s%s%14s%s%3s%s%3s%s%8s%s%8s%s%8s%s%8s%s%8s%s%8s%s%6s%s%6s\n",
data/rtklib-2.4.3+dfsg1/src/solution.c:1469:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(s,"%4d%s%*.*f",week,sep,6+(timeu<=0?0:timeu+1),timeu,gpst);
data/rtklib-2.4.3+dfsg1/src/stream.c:299:10: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
else strcpy(port,path);
data/rtklib-2.4.3+dfsg1/src/stream.c:311:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(dev,"\\\\.\\%s",port);
data/rtklib-2.4.3+dfsg1/src/stream.c:363:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(dev,"/dev/%s",port);
data/rtklib-2.4.3+dfsg1/src/stream.c:480:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(msg,"file open error: %s",file->openpath);
data/rtklib-2.4.3+dfsg1/src/stream.c:486:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(tagpath,"%s.tag",file->openpath);
data/rtklib-2.4.3+dfsg1/src/stream.c:491:13: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(msg,"tag open error: %s",tagpath);
data/rtklib-2.4.3+dfsg1/src/stream.c:510:13: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(tagh,"TIMETAG RTKLIB %s",VER_RTKLIB);
data/rtklib-2.4.3+dfsg1/src/stream.c:565:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(file->path,path);
data/rtklib-2.4.3+dfsg1/src/stream.c:782:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,path);
data/rtklib-2.4.3+dfsg1/src/stream.c:788:31: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
*q='\0'; if (str) strcpy(str,q+1);
data/rtklib-2.4.3+dfsg1/src/stream.c:790:30: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
*p='\0'; if (mntpnt) strcpy(mntpnt,p+1);
data/rtklib-2.4.3+dfsg1/src/stream.c:795:35: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
*q='\0'; if (passwd) strcpy(passwd,q+1);
data/rtklib-2.4.3+dfsg1/src/stream.c:797:19: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (user) strcpy(user,buff);
data/rtklib-2.4.3+dfsg1/src/stream.c:802:28: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
*q='\0'; if (port) strcpy(port,q+1);
data/rtklib-2.4.3+dfsg1/src/stream.c:804:15: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (addr) strcpy(addr,p);
data/rtklib-2.4.3+dfsg1/src/stream.c:945:13: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(msg,"address error (%s)",tcp->saddr);
data/rtklib-2.4.3+dfsg1/src/stream.c:982:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(msg,"port error: %s",port);
data/rtklib-2.4.3+dfsg1/src/stream.c:1028:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(saddr,tcpsvr->cli[i].saddr);
data/rtklib-2.4.3+dfsg1/src/stream.c:1037:15: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
if (n==1) sprintf(msg,"%s",saddr); else sprintf(msg,"%d clients",n);
data/rtklib-2.4.3+dfsg1/src/stream.c:1064:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(tcpsvr->cli[i].saddr,inet_ntoa(addr.sin_addr));
data/rtklib-2.4.3+dfsg1/src/stream.c:1065:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(msg,"%s",tcpsvr->cli[i].saddr);
data/rtklib-2.4.3+dfsg1/src/stream.c:1160:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(msg,"%s",tcpcli->svr.saddr);
data/rtklib-2.4.3+dfsg1/src/stream.c:1178:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(msg,"port error: %s",port);
data/rtklib-2.4.3+dfsg1/src/stream.c:1292:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"SOURCE %s %s\r\n",ntrip->passwd,ntrip->mntpnt);
data/rtklib-2.4.3+dfsg1/src/stream.c:1293:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"Source-Agent: NTRIP %s\r\n",NTRIP_AGENT);
data/rtklib-2.4.3+dfsg1/src/stream.c:1294:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"STR: %s\r\n",ntrip->str);
data/rtklib-2.4.3+dfsg1/src/stream.c:1311:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"GET %s/%s HTTP/1.0\r\n",ntrip->url,ntrip->mntpnt);
data/rtklib-2.4.3+dfsg1/src/stream.c:1312:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
p+=sprintf(p,"User-Agent: NTRIP %s\r\n",NTRIP_AGENT);
data/rtklib-2.4.3+dfsg1/src/stream.c:1319:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(user,"%s:%s",ntrip->user,ntrip->passwd);
data/rtklib-2.4.3+dfsg1/src/stream.c:1349:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(msg,"%s/%s",ntrip->tcp->svr.saddr,ntrip->mntpnt);
data/rtklib-2.4.3+dfsg1/src/stream.c:1389:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(msg,"%s/%s",ntrip->tcp->svr.saddr,ntrip->mntpnt);
data/rtklib-2.4.3+dfsg1/src/stream.c:1409:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(msg,p);
data/rtklib-2.4.3+dfsg1/src/stream.c:1484:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(tpath,"%s:%s",addr,port);
data/rtklib-2.4.3+dfsg1/src/stream.c:1488:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(ntrip->url,"http://%s",tpath);
data/rtklib-2.4.3+dfsg1/src/stream.c:1489:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(tpath,proxyaddr);
data/rtklib-2.4.3+dfsg1/src/stream.c:1552:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,path);
data/rtklib-2.4.3+dfsg1/src/stream.c:1559:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(file,p+1);
data/rtklib-2.4.3+dfsg1/src/stream.c:1567:35: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
*q='\0'; if (passwd) strcpy(passwd,q+1);
data/rtklib-2.4.3+dfsg1/src/stream.c:1569:19: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (user) strcpy(user,buff);
data/rtklib-2.4.3+dfsg1/src/stream.c:1573:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(addr,p);
data/rtklib-2.4.3+dfsg1/src/stream.c:1628:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(local,"%s%c%s",localdir,FILEPATHSEP,p);
data/rtklib-2.4.3+dfsg1/src/stream.c:1629:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(errfile,"%s.err",local);
data/rtklib-2.4.3+dfsg1/src/stream.c:1632:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(tmpfile,local);
data/rtklib-2.4.3+dfsg1/src/stream.c:1640:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ftp->local,tmpfile);
data/rtklib-2.4.3+dfsg1/src/stream.c:1648:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(env,"set %s_proxy=http://%s & ",proto,proxyaddr);
data/rtklib-2.4.3+dfsg1/src/stream.c:1653:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(opt,"--ftp-user=%s --ftp-password=%s --glob=off --passive-ftp %s-t 1 -T %d -O \"%s\"",
data/rtklib-2.4.3+dfsg1/src/stream.c:1655:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(cmd,"%s%s %s \"ftp://%s/%s\" 2> \"%s\"\n",env,FTP_CMD,opt,ftp->addr,
data/rtklib-2.4.3+dfsg1/src/stream.c:1659:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(opt,"%s-t 1 -T %d -O \"%s\"",proxyopt,FTP_TIMEOUT,local);
data/rtklib-2.4.3+dfsg1/src/stream.c:1660:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(cmd,"%s%s %s \"http://%s/%s\" 2> \"%s\"\n",env,FTP_CMD,opt,ftp->addr,
data/rtklib-2.4.3+dfsg1/src/stream.c:1680:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(local,tmpfile);
data/rtklib-2.4.3+dfsg1/src/stream.c:1689:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ftp->local,local);
data/rtklib-2.4.3+dfsg1/src/stream.c:1742:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(msg,"%s://%s",ftp->proto?"http":"ftp",ftp->addr);
data/rtklib-2.4.3+dfsg1/src/stream.c:1758:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(msg,"%s error (%d)",ftp->proto?"http":"ftp",ftp->error);
data/rtklib-2.4.3+dfsg1/src/stream.c:1860:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(stream->path,path);
data/rtklib-2.4.3+dfsg1/src/stream.c:2134:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(localdir,dir);
data/rtklib-2.4.3+dfsg1/src/stream.c:2145:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(proxyaddr,addr);
data/rtklib-2.4.3+dfsg1/src/stream.c:2208:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(path,str->path);
data/rtklib-2.4.3+dfsg1/src/stream.c:2214:34: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if ((q=strchr(p+1,':'))) strcpy(buff,q);
data/rtklib-2.4.3+dfsg1/src/stream.c:2215:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(p,":%d%s",brate,buff);
data/rtklib-2.4.3+dfsg1/src/streamsvr.c:68:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,msgs);
data/rtklib-2.4.3+dfsg1/src/streamsvr.c:96:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conv->rtcm.opt,"-EPHALL %s",opt);
data/rtklib-2.4.3+dfsg1/src/streamsvr.c:97:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conv->raw.opt ,"-EPHALL %s",opt);
data/rtklib-2.4.3+dfsg1/src/streamsvr.c:493:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(file1,paths[0]); if ((p=strstr(file1,"::"))) *p='\0';
data/rtklib-2.4.3+dfsg1/src/streamsvr.c:494:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(file2,paths[i]); if ((p=strstr(file2,"::"))) *p='\0';
data/rtklib-2.4.3+dfsg1/src/streamsvr.c:496:13: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(svr->stream[i].msg,"output path error: %s",file2);
data/rtklib-2.4.3+dfsg1/src/streamsvr.c:566:20: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
if (*s) p+=sprintf(p,"(%d) %s ",i,s);
data/rtklib-2.4.3+dfsg1/src/tle.c:425:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(data.name,buff);
data/rtklib-2.4.3+dfsg1/test/utest/t_corrperf.c:23:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf('sampling rate=%.3fMHz\n',f_s/1e6);
data/rtklib-2.4.3+dfsg1/util/geniono/gengrid.c:79:17: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(file,"%s/%c%4.0f_%c%5.0f.stec",dir,
data/rtklib-2.4.3+dfsg1/util/geniono/geniono.c:371:26: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (*sta.antdes) strcpy(ant,sta.antdes);
data/rtklib-2.4.3+dfsg1/util/geniono/genstec.c:370:26: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (*sta.antdes) strcpy(ant,sta.antdes);
data/rtklib-2.4.3+dfsg1/util/logfile/margelog.c:24:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(otagfile,"%s.tag",outfile);
data/rtklib-2.4.3+dfsg1/util/logfile/margelog.c:32:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(itagfile,"%s.tag",ifiles[i]);
data/rtklib-2.4.3+dfsg1/util/rnx2rtcm/rnx2rtcm.c:213:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buff,argv[++i]);
data/rtklib-2.4.3+dfsg1/util/simobs/simobs.c:240:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(rnxopt.prog,PROGNAME);
data/rtklib-2.4.3+dfsg1/app/appcmn/tcpoptdlg.cpp:130:10: [3] (shell) CreateProcess:
This causes a new process to execute and is difficult to use safely
(CWE-78). Specify the application path in the first argument, NOT as part
of the second, or embedded spaces could allow an attacker to force a
different program to run.
if (!CreateProcess(NULL,p,NULL,NULL,false,show?0:CREATE_NO_WINDOW,NULL,
data/rtklib-2.4.3+dfsg1/app/appcmn/tcpoptdlg.cpp:130:10: [3] (shell) CreateProcess:
This causes a new process to execute and is difficult to use safely
(CWE-78). Specify the application path in the first argument, NOT as part
of the second, or embedded spaces could allow an attacker to force a
different program to run.
if (!CreateProcess(NULL,p,NULL,NULL,false,show?0:CREATE_NO_WINDOW,NULL,
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:631:10: [3] (shell) CreateProcess:
This causes a new process to execute and is difficult to use safely
(CWE-78). Specify the application path in the first argument, NOT as part
of the second, or embedded spaces could allow an attacker to force a
different program to run.
if (!CreateProcess(NULL,p,NULL,NULL,false,0,NULL,NULL,&si,&info)) return 0;
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:631:10: [3] (shell) CreateProcess:
This causes a new process to execute and is difficult to use safely
(CWE-78). Specify the application path in the first argument, NOT as part
of the second, or embedded spaces could allow an attacker to force a
different program to run.
if (!CreateProcess(NULL,p,NULL,NULL,false,0,NULL,NULL,&si,&info)) return 0;
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:901:10: [3] (shell) CreateProcess:
This causes a new process to execute and is difficult to use safely
(CWE-78). Specify the application path in the first argument, NOT as part
of the second, or embedded spaces could allow an attacker to force a
different program to run.
if (!CreateProcess(NULL,p,NULL,NULL,false,0,NULL,NULL,&si,&info)) return 0;
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:901:10: [3] (shell) CreateProcess:
This causes a new process to execute and is difficult to use safely
(CWE-78). Specify the application path in the first argument, NOT as part
of the second, or embedded spaces could allow an attacker to force a
different program to run.
if (!CreateProcess(NULL,p,NULL,NULL,false,0,NULL,NULL,&si,&info)) return 0;
data/rtklib-2.4.3+dfsg1/app/rtklaunch/launchmain.cpp:168:10: [3] (shell) CreateProcess:
This causes a new process to execute and is difficult to use safely
(CWE-78). Specify the application path in the first argument, NOT as part
of the second, or embedded spaces could allow an attacker to force a
different program to run.
if (!CreateProcess(NULL,p,NULL,NULL,false,0,NULL,NULL,&si,&info)) return 0;
data/rtklib-2.4.3+dfsg1/app/rtklaunch/launchmain.cpp:168:10: [3] (shell) CreateProcess:
This causes a new process to execute and is difficult to use safely
(CWE-78). Specify the application path in the first argument, NOT as part
of the second, or embedded spaces could allow an attacker to force a
different program to run.
if (!CreateProcess(NULL,p,NULL,NULL,false,0,NULL,NULL,&si,&info)) return 0;
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:96:10: [3] (shell) CreateProcess:
This causes a new process to execute and is difficult to use safely
(CWE-78). Specify the application path in the first argument, NOT as part
of the second, or embedded spaces could allow an attacker to force a
different program to run.
if (!CreateProcess(NULL,p,NULL,NULL,false,show?0:CREATE_NO_WINDOW,NULL,
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:96:10: [3] (shell) CreateProcess:
This causes a new process to execute and is difficult to use safely
(CWE-78). Specify the application path in the first argument, NOT as part
of the second, or embedded spaces could allow an attacker to force a
different program to run.
if (!CreateProcess(NULL,p,NULL,NULL,false,show?0:CREATE_NO_WINDOW,NULL,
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotcmn.cpp:30:10: [3] (shell) CreateProcess:
This causes a new process to execute and is difficult to use safely
(CWE-78). Specify the application path in the first argument, NOT as part
of the second, or embedded spaces could allow an attacker to force a
different program to run.
if (!CreateProcess(NULL,p,NULL,NULL,false,CREATE_NO_WINDOW,NULL,NULL,&si,
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotcmn.cpp:30:10: [3] (shell) CreateProcess:
This causes a new process to execute and is difficult to use safely
(CWE-78). Specify the application path in the first argument, NOT as part
of the second, or embedded spaces could allow an attacker to force a
different program to run.
if (!CreateProcess(NULL,p,NULL,NULL,false,CREATE_NO_WINDOW,NULL,NULL,&si,
data/rtklib-2.4.3+dfsg1/app/rtkpost/kmzconv.cpp:149:7: [3] (shell) CreateProcess:
This causes a new process to execute and is difficult to use safely
(CWE-78). Specify the application path in the first argument, NOT as part
of the second, or embedded spaces could allow an attacker to force a
different program to run.
if (!CreateProcess(NULL,cmd,NULL,NULL,false,CREATE_NO_WINDOW,NULL,NULL,&si,
data/rtklib-2.4.3+dfsg1/app/rtkpost/kmzconv.cpp:149:7: [3] (shell) CreateProcess:
This causes a new process to execute and is difficult to use safely
(CWE-78). Specify the application path in the first argument, NOT as part
of the second, or embedded spaces could allow an attacker to force a
different program to run.
if (!CreateProcess(NULL,cmd,NULL,NULL,false,CREATE_NO_WINDOW,NULL,NULL,&si,
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:1020:10: [3] (shell) CreateProcess:
This causes a new process to execute and is difficult to use safely
(CWE-78). Specify the application path in the first argument, NOT as part
of the second, or embedded spaces could allow an attacker to force a
different program to run.
if (!CreateProcess(NULL,p,NULL,NULL,false,show?0:CREATE_NO_WINDOW,NULL,
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:1020:10: [3] (shell) CreateProcess:
This causes a new process to execute and is difficult to use safely
(CWE-78). Specify the application path in the first argument, NOT as part
of the second, or embedded spaces could allow an attacker to force a
different program to run.
if (!CreateProcess(NULL,p,NULL,NULL,false,show?0:CREATE_NO_WINDOW,NULL,
data/rtklib-2.4.3+dfsg1/src/download.c:84:22: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((env=getenv(var))) p+=sprintf(p,"%s",env)-1;
data/rtklib-2.4.3+dfsg1/src/rtklib.h:454:21: [3] (misc) InitializeCriticalSection:
Exceptions can be thrown in low-memory situations. Use
InitializeCriticalSectionAndSpinCount instead.
#define initlock(f) InitializeCriticalSection(f)
data/rtklib-2.4.3+dfsg1/src/rtklib.h:455:21: [3] (misc) EnterCriticalSection:
On some versions of Windows, exceptions can be thrown in low-memory
situations. Use InitializeCriticalSectionAndSpinCount instead.
#define lock(f) EnterCriticalSection(f)
data/rtklib-2.4.3+dfsg1/util/simobs/simobs.c:92:5: [3] (random) srand:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
srand(0);
data/rtklib-2.4.3+dfsg1/util/simobs/simobs.c:100:5: [3] (random) srand:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
srand(tickget());
data/rtklib-2.4.3+dfsg1/app/appcmn/cmdoptdlg.cpp:41:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024];
data/rtklib-2.4.3+dfsg1/app/appcmn/cmdoptdlg.cpp:45:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(OpenDialog_FileName.c_str(),"r"))) return;
data/rtklib-2.4.3+dfsg1/app/appcmn/cmdoptdlg.cpp:63:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(SaveDialog_FileName.c_str(),"w"))) return;
data/rtklib-2.4.3+dfsg1/app/appcmn/console.cpp:101:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[MAXLEN+16],*p=buff,c;
data/rtklib-2.4.3+dfsg1/app/appcmn/console.cpp:111:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"%c",msg[i]=='\n'||isprint(msg[i])?msg[i]:'.');
data/rtklib-2.4.3+dfsg1/app/appcmn/fileoptdlg.cpp:23:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024];
data/rtklib-2.4.3+dfsg1/app/appcmn/ftpoptdlg.cpp:23:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[2048],*p,*q;
data/rtklib-2.4.3+dfsg1/app/appcmn/ftpoptdlg.cpp:76:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
topts[3]=atoi(RetryInterval_Text.c_str());
data/rtklib-2.4.3+dfsg1/app/appcmn/gmview.cpp:109:5: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t func_w[1024]={0};
data/rtklib-2.4.3+dfsg1/app/appcmn/gmview.cpp:119:7: [2] (buffer) MultiByteToWideChar:
Requires maximum length in CHARACTERS, not bytes (CWE-120).
::MultiByteToWideChar(CP_UTF8,0,func.c_str(),-1,func_w,512);
data/rtklib-2.4.3+dfsg1/app/appcmn/graph.cpp:161:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[64];
data/rtklib-2.4.3+dfsg1/app/appcmn/graph.cpp:403:2: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t buff[1024]={0};
data/rtklib-2.4.3+dfsg1/app/appcmn/graph.cpp:404:4: [2] (buffer) MultiByteToWideChar:
Requires maximum length in CHARACTERS, not bytes (CWE-120).
::MultiByteToWideChar(CP_UTF8,0,str.c_str(),-1,buff,2048);
data/rtklib-2.4.3+dfsg1/app/appcmn/refdlg.cpp:113:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[256]="",code[256],name[256],*p;
data/rtklib-2.4.3+dfsg1/app/appcmn/refdlg.cpp:118:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(StaPosFile.c_str(),"r"))) return;
data/rtklib-2.4.3+dfsg1/app/appcmn/refdlg.cpp:127:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(StaPosFile.c_str(),"r"))) return;
data/rtklib-2.4.3+dfsg1/app/appcmn/refdlg.cpp:147:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[256],code[256],*p;
data/rtklib-2.4.3+dfsg1/app/appcmn/refdlg.cpp:149:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(StaPosFile.c_str(),"r"))) return;
data/rtklib-2.4.3+dfsg1/app/appcmn/serioptdlg.cpp:24:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *p,*q,path[1024];
data/rtklib-2.4.3+dfsg1/app/appcmn/serioptdlg.cpp:68:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char port[64];
data/rtklib-2.4.3+dfsg1/app/appcmn/serioptdlg.cpp:72:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(port,"\\\\.\\COM%d",i);
data/rtklib-2.4.3+dfsg1/app/appcmn/tcpoptdlg.cpp:19:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buff[MAXSRCTBL];
data/rtklib-2.4.3+dfsg1/app/appcmn/tcpoptdlg.cpp:29:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[2048],*p,*q;
data/rtklib-2.4.3+dfsg1/app/appcmn/timedlg.cpp:21:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[1024],s1[64],s2[64],*p=msg;
data/rtklib-2.4.3+dfsg1/app/appcmn/timedlg.cpp:29:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"GPS Week: %d\n",week);
data/rtklib-2.4.3+dfsg1/app/appcmn/timedlg.cpp:30:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"GPS Time: %.0f s\n",tow);
data/rtklib-2.4.3+dfsg1/app/appcmn/timedlg.cpp:31:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"Day of Year: %03d\n",(int)floor(doy));
data/rtklib-2.4.3+dfsg1/app/appcmn/timedlg.cpp:32:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"Day of Week: %d\n",(int)floor(tow/86400.0));
data/rtklib-2.4.3+dfsg1/app/appcmn/timedlg.cpp:33:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"Time of Day: %.0f s\n",fmod(tow,86400.0));
data/rtklib-2.4.3+dfsg1/app/appcmn/timedlg.cpp:34:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(p,"Leap Seconds: %.0f s\n",timediff(Time,utc));
data/rtklib-2.4.3+dfsg1/app/appcmn/tspandlg.cpp:32:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ts[64],te[64];
data/rtklib-2.4.3+dfsg1/app/appcmn/viewer.cpp:94:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[256],*path[]={s};
data/rtklib-2.4.3+dfsg1/app/appcmn/viewer.cpp:118:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024];
data/rtklib-2.4.3+dfsg1/app/appcmn/viewer.cpp:119:2: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t wbuff[1024];
data/rtklib-2.4.3+dfsg1/app/appcmn/viewer.cpp:123:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file.c_str(),"r"))) return;
data/rtklib-2.4.3+dfsg1/app/appcmn/viewer.cpp:126:5: [2] (buffer) MultiByteToWideChar:
Requires maximum length in CHARACTERS, not bytes (CWE-120).
::MultiByteToWideChar(CP_UTF8,0,buff,-1,wbuff,1024);
data/rtklib-2.4.3+dfsg1/app/appcmn_qt/cmdoptdlg.cpp:65:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f.open(QIODevice::ReadOnly);
data/rtklib-2.4.3+dfsg1/app/appcmn_qt/cmdoptdlg.cpp:87:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!fp.open(QIODevice::WriteOnly)) return;
data/rtklib-2.4.3+dfsg1/app/appcmn_qt/console.cpp:61:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[MAXLEN+16],*p=buff;
data/rtklib-2.4.3+dfsg1/app/appcmn_qt/console.cpp:73:24: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"%c",msg[i]=='\n'||isprint(msg[i])?msg[i]:'.');
data/rtklib-2.4.3+dfsg1/app/appcmn_qt/gmview.cpp:92:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
webchannel.open(QIODevice::ReadOnly);
data/rtklib-2.4.3+dfsg1/app/appcmn_qt/graph.cpp:169:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[64];
data/rtklib-2.4.3+dfsg1/app/appcmn_qt/refdlg.cpp:107:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!fp.open(QIODevice::ReadOnly)) return;
data/rtklib-2.4.3+dfsg1/app/appcmn_qt/refdlg.cpp:145:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!file.open(QIODevice::ReadOnly)) return;
data/rtklib-2.4.3+dfsg1/app/appcmn_qt/timedlg.cpp:23:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s1[64],s2[64];
data/rtklib-2.4.3+dfsg1/app/appcmn_qt/viewer.cpp:97:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[256],*p[]={file};
data/rtklib-2.4.3+dfsg1/app/appcmn_qt/viewer.cpp:102:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!f.open(QIODevice::ReadOnly)) return false;
data/rtklib-2.4.3+dfsg1/app/appcmn_qt/viewer.cpp:118:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!f.open(QIODevice::WriteOnly)) return false;
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:170:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char work[1024],ofile_[7][1024],*ofile[7],*p;
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:180:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(ofile[0],"%r%n0.%yO");
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:184:40: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
if ((p=strrchr(ofile[0],'.'))) strcpy(p,".obs");
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:185:14: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
else strcat(ofile[0],".obs");
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:189:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(ofile[1],"%r%n0.%y");
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:194:40: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
if ((p=strrchr(ofile[1],'.'))) strcpy(p,".nav");
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:195:14: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
else strcat(ofile[1],".nav");
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:199:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(ofile[2],"%r%n0.%yG");
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:203:40: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
if ((p=strrchr(ofile[2],'.'))) strcpy(p,".gnav");
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:204:14: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
else strcat(ofile[2],".gnav");
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:208:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(ofile[3],"%r%n0.%yH");
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:212:40: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
if ((p=strrchr(ofile[3],'.'))) strcpy(p,".hnav");
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:213:14: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
else strcat(ofile[3],".hnav");
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:217:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(ofile[4],"%r%n0.%yQ");
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:221:40: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
if ((p=strrchr(ofile[4],'.'))) strcpy(p,".qnav");
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:222:14: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
else strcat(ofile[4],".qnav");
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:226:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(ofile[5],"%r%n0.%yL");
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:230:40: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
if ((p=strrchr(ofile[5],'.'))) strcpy(p,".lnav");
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:231:14: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
else strcat(ofile[5],".qnav");
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:235:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(ofile[6],"%r%n0_%y.");
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:270:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024],*p;
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:332:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
nf=atoi(argv[++i]);
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:425:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*trace=atoi(argv[++i]);
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:497:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(opt.comment[0],"log: %-55.55s",ifile);
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:500:9: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(opt.comment[1],", option: ");
data/rtklib-2.4.3+dfsg1/app/pos2kml/pos2kml.c:55:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *infile[32],*outfile="";
data/rtklib-2.4.3+dfsg1/app/pos2kml/pos2kml.c:71:58: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if (!strcmp(argv[i],"-c")&&i+1<argc) tcolor=atoi(argv[++i]);
data/rtklib-2.4.3+dfsg1/app/pos2kml/pos2kml.c:72:58: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if (!strcmp(argv[i],"-p")&&i+1<argc) pcolor=atoi(argv[++i]);
data/rtklib-2.4.3+dfsg1/app/pos2kml/pos2kml.c:81:56: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if (!strcmp(argv[i],"-q")&&i+i<argc) qflg=atoi(argv[++i]);
data/rtklib-2.4.3+dfsg1/app/rnx2rtkp/rnx2rtkp.c:102:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *infile[MAXFILE],*outfile="";
data/rtklib-2.4.3+dfsg1/app/rnx2rtkp/rnx2rtkp.c:134:63: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if (!strcmp(argv[i],"-p")&&i+1<argc) prcopt.mode=atoi(argv[++i]);
data/rtklib-2.4.3+dfsg1/app/rnx2rtkp/rnx2rtkp.c:135:61: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if (!strcmp(argv[i],"-f")&&i+1<argc) prcopt.nf=atoi(argv[++i]);
data/rtklib-2.4.3+dfsg1/app/rnx2rtkp/rnx2rtkp.c:139:64: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if (!strcmp(argv[i],"-d")&&i+1<argc) solopt.timeu=atoi(argv[++i]);
data/rtklib-2.4.3+dfsg1/app/rnx2rtkp/rnx2rtkp.c:162:64: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if (!strcmp(argv[i],"-y")&&i+1<argc) solopt.sstat=atoi(argv[++i]);
data/rtklib-2.4.3+dfsg1/app/rnx2rtkp/rnx2rtkp.c:163:64: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if (!strcmp(argv[i],"-x")&&i+1<argc) solopt.trace=atoi(argv[++i]);
data/rtklib-2.4.3+dfsg1/app/rtkconv/codeopt.cpp:20:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mask[6][64]={""};
data/rtklib-2.4.3+dfsg1/app/rtkconv/codeopt.cpp:103:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mask[6][64]={""};
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:55:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024];
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:68:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[1024]="rtkconv.exe",*p;
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:72:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(p,".ini");
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:97:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *p,*argv[32],buff[1024];
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:137:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *ifile,ofile[8][1024],*code,*p;
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:187:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *p,str[1024];
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:620:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[1024];
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:696:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[1024]="",*ofile[7],ofile_[7][1024]={""},msg[256],*p;
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:697:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[256],tstr[32];
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:771:30: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!*ofile[i]||!(fp=fopen(ofile[i],"r"))) continue;
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:795:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(p,"log: %-53.53s",file);
data/rtklib-2.4.3+dfsg1/app/rtkconv/startdlg.cpp:20:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64];
data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/codeopt.cpp:23:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mask[6][64]={""};
data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/codeopt.cpp:106:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mask[6][64]={""};
data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/convmain.cpp:58:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024];
data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/convmain.cpp:618:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[1024];
data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/convmain.cpp:774:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(p,"log: %-53.53s",conversionThread->ifile);
data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/convmain.h:28:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ifile[1024],*ofile[7];
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:53:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024],buff2[10224],*p,*q;
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:94:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *p,*argv[32],buff[1024],file[1024]="rtkget.exe";
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:99:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(p,".ini");
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:151:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[1024]=".";
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:178:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *stas[MAX_STA],*dir="";
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:192:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(TEST_FILE,"w"))) return;
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:254:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *stas[MAX_STA],*dir="",msg[1024],path[1024];
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:290:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen(path,LogAppend?"a":"w");
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:405:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[1024];
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:539:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[8192],*p;
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:586:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[8192]="",*p;
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:681:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[4096],*p;
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:683:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file.c_str(),"r"))) return;
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:702:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char unit[32]="";
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:724:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *types[MAX_URL_SEL];
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:764:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[256],*p,*type,*subtype;
data/rtklib-2.4.3+dfsg1/app/rtkget/staoptdlg.cpp:39:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024],*p;
data/rtklib-2.4.3+dfsg1/app/rtkget/staoptdlg.cpp:45:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file.c_str(),"r"))) return;
data/rtklib-2.4.3+dfsg1/app/rtkget_qt/getmain.cpp:65:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024],*p;
data/rtklib-2.4.3+dfsg1/app/rtkget_qt/getmain.cpp:96:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *stas[MAX_STA],dir[1024],msg[1024],path[1024];
data/rtklib-2.4.3+dfsg1/app/rtkget_qt/getmain.cpp:122:16: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen(path,append?"a":"w");
data/rtklib-2.4.3+dfsg1/app/rtkget_qt/getmain.cpp:247:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[1024]=".";
data/rtklib-2.4.3+dfsg1/app/rtkget_qt/getmain.cpp:680:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!f.open(QIODevice::ReadOnly)) return;
data/rtklib-2.4.3+dfsg1/app/rtkget_qt/getmain.cpp:723:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *types[MAX_URL_SEL];
data/rtklib-2.4.3+dfsg1/app/rtkget_qt/staoptdlg.cpp:52:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!fp.open(QIODevice::ReadOnly)) return;
data/rtklib-2.4.3+dfsg1/app/rtkget_qt/staoptdlg.cpp:73:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!fp.open(QIODevice::WriteOnly)) return;
data/rtklib-2.4.3+dfsg1/app/rtklaunch/launchmain.cpp:35:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[1024]="rtklaunch.exe",buff[1024],*argv[32],*p;
data/rtklib-2.4.3+dfsg1/app/rtklaunch/launchmain.cpp:40:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(p,".ini");
data/rtklib-2.4.3+dfsg1/app/rtknavi/instrdlg.cpp:132:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *p,*q,buff[1024];
data/rtklib-2.4.3+dfsg1/app/rtknavi/logstrdlg.cpp:141:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *p,*q,buff[1024];
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:188:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[256];
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:198:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(msg,rtksvr.pbuf[index],len);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:205:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(msg,rtksvr.sbuf[index-3],len);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:212:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(msg,rtksvr.rtk.errbuf,len);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:261:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[MAXLEN+16],*p=buff;
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:270:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"%c",msg[i]=='\n'||isprint(msg[i])?msg[i]:'.');
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:366:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64],*ant,id[32],s1[64]="-",s2[64]="-",s3[64]="-";
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:367:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[1024]="";
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:701:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[32];
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:802:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64];
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:813:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(x ,rtksvr.rtk.x ,sizeof(double)*nx);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:814:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(P ,rtksvr.rtk.P ,sizeof(double)*nx*nx);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:815:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(xa,rtksvr.rtk.xa,sizeof(double)*na);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:816:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(Pa,rtksvr.rtk.Pa,sizeof(double)*na*na);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:865:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64];
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:873:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(x ,rtksvr.rtk.x ,sizeof(double)*nx);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:874:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(P ,rtksvr.rtk.P ,sizeof(double)*nx*nx);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:958:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64],id[32],*code;
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1031:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64],id[32];
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1127:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64],id[32];
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1208:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64],id[32];
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1286:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64];
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1394:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[MAXSTRPATH]="",*p,*q,*pp;
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1472:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[256],*p;
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1490:25: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
for (k=0;k<29;k++) p+=sprintf(p,"%02X",msg[i].msg[k]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1521:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64],id[32];
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1574:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64];
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1623:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64],id[32];
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1672:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64]="-",mstr1[1024]="",mstr2[1024]="",*p1=mstr1,*p2=mstr2;
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1803:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64],id[32];
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1856:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64],id[32],buff[256]="",*p;
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1928:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64]="-",mstr[2048]="",*p;
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:2007:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64],health[16],id[32],*p;
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:2031:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"%d",(lexeph[i].health>>(4-k))&1);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:2083:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64]="-";
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:143:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *p,*argv[32],buff[1024],file[1024]="rtknavi.exe";
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:150:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(p,".ini");
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:559:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff1[1024],buff2[1024],*p;
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:567:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(buff1,"r"))) return 1; // file not exists
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:886:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *paths[8],*cmds[3]={0},*rcvopts[3]={0},buff[1024],*p;
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:887:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[1024],*type;
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1064:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *cmds[3]={0};
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1112:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buff[8];
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1231:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64];
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1239:41: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
if (!(t=localtime(&time.time))) strcpy(tstr,"2000/01/01 00:00:00.0");
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1240:14: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else sprintf(tstr,"%04d/%02d/%02d %02d:%02d:%02d.%d",t->tm_year+1900,
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1245:36: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
tow=time2gpst(time,&week); sprintf(tstr,"week %04d %8.1f s",week,tow);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1344:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[MAXSTRMSG]="";
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1368:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[16];
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1496:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[16],sys[]="GREJCS",*q;
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1552:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(id,"%c",sys[i]);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1567:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[16],sys[]="GREJCS",*q;
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1734:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[64];
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1742:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(path,":%d",port+i);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1794:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[1024];
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1799:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(file,"rtk_%04.0f%02.0f%02.0f%02.0f%02.0f%02.0f.txt",
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1803:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(SaveDialog_FileName.c_str(),"wt"))) {
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1829:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[2049],id[32],*p;
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1893:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[32];
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:29:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char strpath[8][MAXSTR]={""}; /* stream paths */
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:42:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char proxyaddr[MAXSTR]=""; /* proxy address */
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:648:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024]="",*p,id[32];
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:811:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024],*p,id[32],comment[256],s[64];
data/rtklib-2.4.3+dfsg1/app/rtknavi/outstrdlg.cpp:112:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *p,*q,buff[1024];
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:111:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c[2]="\n";
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:214:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(msg,rtksvr.pbuf[index],len);
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:221:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(msg,rtksvr.sbuf[index-3],len);
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:228:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(msg,rtksvr.rtk.errbuf,len);
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:273:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[MAXLEN+16],*p=buff;
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:284:24: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"%c",msg[i]=='\n'||isprint(msg[i])?msg[i]:'.');
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:356:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64],id[32],s1[64]="-",s2[64]="-",s3[64]="-";
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:357:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[1024]="";
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:688:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[32];
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:791:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64];
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:802:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(x ,rtksvr.rtk.x ,sizeof(double)*nx);
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:803:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(P ,rtksvr.rtk.P ,sizeof(double)*nx*nx);
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:804:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(xa,rtksvr.rtk.xa,sizeof(double)*na);
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:805:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(Pa,rtksvr.rtk.Pa,sizeof(double)*na*na);
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:855:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64];
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:863:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(x ,rtksvr.rtk.x ,sizeof(double)*nx);
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:864:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(P ,rtksvr.rtk.P ,sizeof(double)*nx*nx);
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:942:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64],id[32],*code;
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:1015:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64],id[32];
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:1112:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64],id[32];
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:1191:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64],id[32];
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:1272:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64];
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:1382:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[MAXSTRPATH]="",*p,*q;
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:1459:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[64];
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:1508:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64],id[32];
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:1562:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64];
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:1614:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64],id[32];
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:1665:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64]="-";
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:1795:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64],id[32];
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:1848:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64],id[32];
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:1912:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64]="-";
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:1987:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64],health[16],id[32],*p;
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:2013:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"%d",(lexeph[i].health>>(4-k))&1);
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:2064:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64]="-";
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:566:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[1024];
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:635:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[1024];
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:867:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *paths[8],*cmds[3]={0},*rcvopts[3]={0};
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:868:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024],*p;
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:1052:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *cmds[3]={0};
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:1142:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[1];
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:1228:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64];
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:1342:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[MAXSTRMSG]="";
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:1377:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[16];
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:1504:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[16],sys[]="GREJCS",*q;
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:1560:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(id,"%c",sys[i]);
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:1575:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[16],sys[]="GREJCS",*q;
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:1745:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[64];
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:1753:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(path,":%d",port+i);
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:1815:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!file.open(QIODevice::WriteOnly)) {
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:1846:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[2049],*p;
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:1910:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[32];
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/naviopt.cpp:25:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char strpath[8][MAXSTR]={""}; /* stream paths */
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/naviopt.cpp:38:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char proxyaddr[MAXSTR]=""; /* proxy address */
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/naviopt.cpp:688:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[32];
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/naviopt.cpp:851:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024],*p,comment[256],s[64];
data/rtklib-2.4.3+dfsg1/app/rtkplot/geview.cpp:420:5: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t func_w[256]={0};
data/rtklib-2.4.3+dfsg1/app/rtkplot/geview.cpp:430:7: [2] (buffer) MultiByteToWideChar:
Requires maximum length in CHARACTERS, not bytes (CWE-120).
::MultiByteToWideChar(CP_UTF8,0,func.c_str(),-1,func_w,512);
data/rtklib-2.4.3+dfsg1/app/rtkplot/gmview.cpp:154:5: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t func_w[1024]={0};
data/rtklib-2.4.3+dfsg1/app/rtkplot/gmview.cpp:164:7: [2] (buffer) MultiByteToWideChar:
Requires maximum length in CHARACTERS, not bytes (CWE-120).
::MultiByteToWideChar(CP_UTF8,0,func.c_str(),-1,func_w,512);
data/rtklib-2.4.3+dfsg1/app/rtkplot/mapdlg.cpp:39:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fp=fopen(file.c_str(),"r"))) {
data/rtklib-2.4.3+dfsg1/app/rtkplot/mapdlg.cpp:45:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file.c_str(),"w"))) return;
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotcmn.cpp:408:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64],*label="";
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotcmn.cpp:414:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(tstr,"%4d/%*.*fs",week,(n>0?6:5)+n,n,tow);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotcmn.cpp:426:41: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
if (!(t=localtime(&time.time))) strcpy(tstr,"2000/01/01 00:00:00.0");
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotcmn.cpp:427:14: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else sprintf(tstr,"%04d/%02d/%02d %02d:%02d:%02d.%0*d",t->tm_year+1900,
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotcmn.cpp:462:5: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t buff[256]={0};
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotcmn.cpp:463:7: [2] (buffer) MultiByteToWideChar:
Requires maximum length in CHARACTERS, not bytes (CWE-120).
::MultiByteToWideChar(CP_UTF8,0,str.c_str(),-1,buff,512);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:9:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char path_str[MAXNFILE][1024];
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:24:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *paths[MAXNFILE];
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:99:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *paths[MAXNFILE],id[32];
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:126:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[1024];
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:182:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char obsfile[1024],navfile[1024]="",*p,*q,*opt=RnxOpts.c_str();
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:208:13: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(p,".nav" ); readrnxt(navfile,1,ts,te,tint,opt,NULL,nav,NULL);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:209:13: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(p,".gnav"); readrnxt(navfile,1,ts,te,tint,opt,NULL,nav,NULL);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:210:13: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(p,".hnav"); readrnxt(navfile,1,ts,te,tint,opt,NULL,nav,NULL);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:211:13: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(p,".qnav"); readrnxt(navfile,1,ts,te,tint,opt,NULL,nav,NULL);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:212:13: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(p,".lnav"); readrnxt(navfile,1,ts,te,tint,opt,NULL,nav,NULL);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:228:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(q+1,"BRDC",4);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:246:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char navfile[1024],*opt=RnxOpts.c_str();
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:290:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[256];
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:296:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file.c_str(),"r"))) {
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:323:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[16];
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:558:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024],*p;
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:562:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file.c_str(),"r"))) return;
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:635:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024],*p;
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:641:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file.c_str(),"r"))) return;
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:664:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024];
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:667:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file.c_str(),"r"))) return;
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:690:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[256],code[256],name[256];
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:694:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file,"r"))) return;
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:726:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64],*tlabel;
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:730:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file.c_str(),"w"))) return;
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:754:13: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(tstr,"%4d %8.1f ",week,tow);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:777:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sat[32],mp[32],tstr[64],*tlabel,*code=ObsTypeText.c_str()+1;
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:782:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file.c_str(),"w"))) return;
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:806:17: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(tstr,"%4d %9.1f ",week,tow);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:832:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file.c_str(),"w"))) return;
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:849:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *cmd,*path,buff[MAXSTRPATH],*name[2]={"",""},*p;
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:907:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *cmd,caption[1024];
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:956:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[128],name[16];
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:793:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[16];
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:1044:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[16];
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdraw.cpp:1824:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[32];
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:34:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64];
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:87:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64];
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:139:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s1[64],s2[64];
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:183:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s1[64],s2[64];
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:280:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[8];
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:321:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *codes[MAXCODE+1],freqs[]="125678";
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:357:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64];
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:74:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[1024]="rtkplot.exe",*p;
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:78:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(p,".ini");
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:189:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *p,*argv[32],buff[1024],*path1="",*path2="";
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:219:58: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if (!strcmp(argv[i],"-x" )&&i+1<argc) Trace=atoi(argv[++i]);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:291:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024],file[1024],*ext;
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:434:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[1024],*ext;
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:660:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[1024],tmpfile[1024];
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:660:21: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
char file[1024],tmpfile[1024];
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:668:27: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
cstat=uncompress(file,tmpfile);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:673:30: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
viewer->Read(!cstat?file:tmpfile);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:674:23: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
if (cstat) remove(tmpfile);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:690:23: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
cmdexec=cmd+" > "+tmpfile;
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:697:31: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
viewer->Read(stat?errfile:tmpfile);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:699:12: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
remove(tmpfile.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:714:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[1024];
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:1042:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[1024];
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:1664:21: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char buff[16384];
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:1670:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[MAXSTRMSG]="",tstr[32];
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:1918:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[1024],sta[16]="",*p;
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:1988:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[256],*p;
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:2009:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[16];
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:2391:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rangelist[64];
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotopt.cpp:30:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s1[64],s2[64];
data/rtklib-2.4.3+dfsg1/app/rtkplot/pntdlg.cpp:108:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[256],name[256];
data/rtklib-2.4.3+dfsg1/app/rtkplot/pntdlg.cpp:112:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(OpenDialog_FileName.c_str(),"r"))) return;
data/rtklib-2.4.3+dfsg1/app/rtkplot/pntdlg.cpp:135:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(SaveDialog_FileName.c_str(),"w"))) return;
data/rtklib-2.4.3+dfsg1/app/rtkplot/skydlg.cpp:40:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fp=fopen(file.c_str(),"r"))) {
data/rtklib-2.4.3+dfsg1/app/rtkplot/skydlg.cpp:46:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file.c_str(),"w"))) return;
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/geview.cpp:141:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
webchannel.open(QIODevice::ReadOnly);
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/mapdlg.cpp:48:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp.open(QIODevice::WriteOnly))) return;
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotcmn.cpp:300:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char code[16];
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotcmn.cpp:419:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64];
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotcmn.cpp:439:41: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
if (!(t=localtime(&time.time))) strcpy(tstr,"2000/01/01 00:00:00.0");
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:16:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char path_str[MAXNFILE][1024];
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:30:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *paths[MAXNFILE];
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:108:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *paths[MAXNFILE];
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:196:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char obsfile[1024],navfile[1024]="",*p,*q,opt[2048];
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:225:13: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(p,".nav" ); readrnxt(navfile,1,ts,te,tint,opt,NULL,nav,NULL);
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:226:13: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(p,".gnav"); readrnxt(navfile,1,ts,te,tint,opt,NULL,nav,NULL);
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:227:13: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(p,".hnav"); readrnxt(navfile,1,ts,te,tint,opt,NULL,nav,NULL);
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:228:13: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(p,".qnav"); readrnxt(navfile,1,ts,te,tint,opt,NULL,nav,NULL);
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:229:13: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(p,".lnav"); readrnxt(navfile,1,ts,te,tint,opt,NULL,nav,NULL);
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:245:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(q+1,"BRDC",4);
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:263:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char navfile[1024],opt[2048];
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:318:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!fp.open(QIODevice::ReadOnly)) {
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:349:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[16];
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:583:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!fp.open(QIODevice::ReadOnly)) return;
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:656:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp.open(QIODevice::ReadOnly))) return;
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:683:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp.open(QIODevice::ReadOnly))) return;
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:713:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp.open(QIODevice::ReadOnly))) return;
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:750:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64];
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:755:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp.open(QIODevice::WriteOnly))) return;
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:780:13: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(tstr,"%4d %8.1f ",week,tow);
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:803:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sat[32],tstr[64],code[64];
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:810:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp.open(QIODevice::WriteOnly))) return;
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:835:17: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(tstr,"%4d %9.1f ",week,tow);
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:862:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp.open(QIODevice::WriteOnly))) return;
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:878:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[1024],path[1024],buff[MAXSTRPATH],*name[2]={"",""},*p;
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:935:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[1024];
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:985:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[128],name[16];
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdraw.cpp:792:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[16];
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdraw.cpp:891:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char code[32];
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdraw.cpp:1041:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char code[32];
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdraw.cpp:1042:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[16];
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdraw.cpp:1420:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char code[32];
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdraw.cpp:1561:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char code[32];
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdraw.cpp:1703:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char code[32];
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdraw.cpp:1704:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[32];
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdraw.cpp:1830:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[32];
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotinfo.cpp:288:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[8];
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotinfo.cpp:328:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *codes[MAXCODE+1],freqs[]="125678";
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotmain.cpp:798:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[1024],tmpfile[1024];
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotmain.cpp:798:21: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
char file[1024],tmpfile[1024];
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotmain.cpp:806:31: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
cstat=rtk_uncompress(file,tmpfile);
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotmain.cpp:811:30: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
viewer->Read(!cstat?file:tmpfile);
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotmain.cpp:812:23: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
if (cstat) remove(tmpfile);
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotmain.cpp:828:23: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
cmdexec=cmd+" > "+tmpfile;
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotmain.cpp:835:31: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
viewer->Read(stat?errfile:tmpfile);
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotmain.cpp:837:23: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
remove(qPrintable(tmpfile));
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotmain.cpp:854:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[1024];
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotmain.cpp:1157:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[1024];
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotmain.cpp:1685:21: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char buff[16384];
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotmain.cpp:1691:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[MAXSTRMSG]="";
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotmain.cpp:1942:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[1024],sta[16]="",*p;
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotmain.cpp:2012:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[256],*p;
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotmain.cpp:2033:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[16];
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotmain.cpp:2380:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rangelist[64];
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/pntdlg.cpp:112:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!file.open(QIODevice::ReadOnly)) return;
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/pntdlg.cpp:139:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!file.open(QIODevice::WriteOnly)) return;
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/skydlg.cpp:51:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!fp.open(QIODevice::WriteOnly)) return;
data/rtklib-2.4.3+dfsg1/app/rtkpost/kmzconv.cpp:63:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[1024];
data/rtklib-2.4.3+dfsg1/app/rtkpost/kmzconv.cpp:74:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[1024],file[1024],kmlfile[1024],*p;
data/rtklib-2.4.3+dfsg1/app/rtkpost/kmzconv.cpp:97:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(p,".kml");
data/rtklib-2.4.3+dfsg1/app/rtkpost/kmzconv.cpp:172:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[256],*p;
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:62:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char rov_ [256]=""; // rover name
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:63:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char base_[256]=""; // base-station name
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:71:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024];
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:111:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[1024]="rtkpost.exe",*p;
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:116:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(p,".ini");
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:144:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *p,*argv[32],buff[1024];
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:212:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *p,file[1024];
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:375:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[1024],*p;
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:455:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char f[1024];
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:487:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp=fopen(file.c_str(),"r");
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:496:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp=fopen(file.c_str(),"r");
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:511:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char navfile[1024];
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:541:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char navfile[1024],gnavfile[1024];
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:682:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *p,ofile[1024],ifile[1024];
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:714:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char infile_[6][1024]={""},*infile[6],outfile[1024];
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:753:17: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fp=fopen(outfile,"r"))) {
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:800:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024],id[32],*p;
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:941:33: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
else if (!strcmp(p,".obs")) strcpy(p,".*nav");
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:942:33: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
else if (!strcmp(p,".OBS")) strcpy(p,".*NAV");
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:957:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rov[256]="",base[256]="",path[1024],*p,*q;
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:1031:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpfile[1024];
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:1031:10: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
char tmpfile[1024];
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:1035:35: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
cstat=uncompress(file.c_str(),tmpfile);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:1036:27: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
f=!cstat?file.c_str():tmpfile;
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:1042:26: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
if (cstat==1) remove(tmpfile);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:591:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024]="",*p,id[32];
data/rtklib-2.4.3+dfsg1/app/rtkpost/postopt.cpp:736:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024],*p,id[32],comment[256],s[64];
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/kmzconv.cpp:93:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[1024],kmlfile[1024],*p;
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/kmzconv.cpp:114:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(p,".kml");
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postmain.cpp:87:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024];
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postmain.cpp:901:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024],*p;
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postmain.cpp:1059:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rov[256]="",base[256]="",path[1024];
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postmain.cpp:1120:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpfile[1024];
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postmain.cpp:1120:10: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
char tmpfile[1024];
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postmain.cpp:1124:43: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
cstat=rtk_uncompress(qPrintable(file),tmpfile);
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postmain.cpp:1125:19: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
f=!cstat?file:tmpfile;
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postmain.cpp:1130:26: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
if (cstat==1) remove(tmpfile);
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postmain.h:33:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *infile[6],outfile[1024];
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postopt.cpp:656:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[32];
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postopt.cpp:803:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024],*p,comment[256],s[64];
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:68:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char passwd[MAXSTR]="admin"; /* login password */
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:75:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char strpath[8][MAXSTR]={""}; /* stream paths */
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:85:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char proxyaddr[256]=""; /* http/ntrip proxy */
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:88:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char rcvcmds[3][MAXSTR]={""}; /* receiver commands files */
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:89:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char startcmd[MAXSTR]=""; /* start command */
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:90:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char stopcmd [MAXSTR]=""; /* stop command */
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:96:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char sta_name[256]=""; /* station name */
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:226:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[64];
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:230:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(path,":%d",port);
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:255:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[MAXSTR],*p;
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:259:26: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!vt->state||!(fp=fopen(buff,"r"))) return 1; /* no existing file */
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:268:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[256];
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:287:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[MAXSTR],*p=cmd;
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:292:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file,"r"))) return 0;
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:344:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[3][MAXRCVCMD]={"","",""},*cmds[]={NULL,NULL,NULL};
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:424:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[3][MAXRCVCMD]={"","",""},*cmds[]={NULL,NULL,NULL};
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:454:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64]="";
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:463:36: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
tow=time2gpst(time,&week); sprintf(tstr," %04d %8.1f",week,tow);
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:576:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64],s[1024],*p;
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:705:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[32];
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:749:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64],id[32];
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:789:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[32],s1[64],s2[64],s3[64];
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:1030:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[MAXSTR],*p;
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:1063:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[MAXSTR];
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:1106:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[MAXSTR]="";
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:1132:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[MAXSTR]="",comment[256],s[64];
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:1196:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[MAXSTR];
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:1220:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[MAXCMD],*args[MAXARG],*p;
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:1388:56: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if (!strcmp(argv[i],"-p")&&i+1<argc) port=atoi(argv[++i]);
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:1389:60: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if (!strcmp(argv[i],"-m")&&i+1<argc) moniport=atoi(argv[++i]);
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:1392:59: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if (!strcmp(argv[i],"-r")&&i+1<argc) outstat=atoi(argv[++i]);
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:1393:57: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if (!strcmp(argv[i],"-t")&&i+1<argc) trace=atoi(argv[++i]);
data/rtklib-2.4.3+dfsg1/app/rtkrcv/vt.c:116:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd=open(dev,O_RDWR))<0||tcgetattr(fd,&tio)<0) {
data/rtklib-2.4.3+dfsg1/app/rtkrcv/vt.c:151:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[MAXBUFF*3],*p=buff;
data/rtklib-2.4.3+dfsg1/app/rtkrcv/vt.c:162:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[MAXBUFF*3],*p=buff;
data/rtklib-2.4.3+dfsg1/app/rtkrcv/vt.c:235:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[3]={C_IAC};
data/rtklib-2.4.3+dfsg1/app/rtkrcv/vt.c:396:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[MAXBUFF+1];
data/rtklib-2.4.3+dfsg1/app/rtkrcv/vt.c:421:33: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!vt->state||!(vt->logfp=fopen(file,"w"))) return 0;
data/rtklib-2.4.3+dfsg1/app/rtkrcv/vt.h:27:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[MAXBUFF]; /* line buffer */
data/rtklib-2.4.3+dfsg1/app/rtkrcv/vt.h:28:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char esc[8]; /* escape buffer */
data/rtklib-2.4.3+dfsg1/app/rtkrcv/vt.h:29:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *hist[MAXHIST]; /* history buffer */
data/rtklib-2.4.3+dfsg1/app/srctblbrows/browsmain.cpp:24:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buff[MAXSRCTBL]; // source table buffer
data/rtklib-2.4.3+dfsg1/app/srctblbrows/browsmain.cpp:74:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[1024]="srctblbrows.exe",*p;
data/rtklib-2.4.3+dfsg1/app/srctblbrows/browsmain.cpp:78:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(p,".ini");
data/rtklib-2.4.3+dfsg1/app/srctblbrows/browsmain.cpp:94:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *p,*q,buff[8192],*argv[32];
data/rtklib-2.4.3+dfsg1/app/srctblbrows/browsmain.cpp:128:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
Table0->ColWidths[i]=atoi(p)*FontScale/96;
data/rtklib-2.4.3+dfsg1/app/srctblbrows/browsmain.cpp:133:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
Table1->ColWidths[i]=atoi(p)*FontScale/96;
data/rtklib-2.4.3+dfsg1/app/srctblbrows/browsmain.cpp:138:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
Table2->ColWidths[i]=atoi(p)*FontScale/96;
data/rtklib-2.4.3+dfsg1/app/srctblbrows/browsmain.cpp:158:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[8192]="",*p;
data/rtklib-2.4.3+dfsg1/app/srctblbrows/browsmain.cpp:196:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[2048];
data/rtklib-2.4.3+dfsg1/app/srctblbrows/browsmain.cpp:199:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(OpenDialog_FileName.c_str(),"rb"))) return;
data/rtklib-2.4.3+dfsg1/app/srctblbrows/browsmain.cpp:214:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(SaveDialog_FileName.c_str(),"wb"))) return;
data/rtklib-2.4.3+dfsg1/app/srctblbrows/browsmain.cpp:364:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[MAXLINE],*p,*q,*r,*srctbl,*addr=NTRIP_HOME;
data/rtklib-2.4.3+dfsg1/app/srctblbrows/browsmain.cpp:412:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[MAXLINE],*p,*q,*r,*s;
data/rtklib-2.4.3+dfsg1/app/srctblbrows/staoptdlg.cpp:40:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024],*p;
data/rtklib-2.4.3+dfsg1/app/srctblbrows/staoptdlg.cpp:46:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file.c_str(),"r"))) return;
data/rtklib-2.4.3+dfsg1/app/srctblbrows_qt/browsmain.cpp:27:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buff[MAXSRCTBL]; // source table buffer
data/rtklib-2.4.3+dfsg1/app/srctblbrows_qt/browsmain.cpp:251:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!fp.open(QIODevice::ReadOnly)) return;
data/rtklib-2.4.3+dfsg1/app/srctblbrows_qt/browsmain.cpp:266:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!fp.open(QIODevice::WriteOnly)) return;
data/rtklib-2.4.3+dfsg1/app/srctblbrows_qt/staoptdlg.cpp:52:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!fp.open(QIODevice::ReadOnly)) return;
data/rtklib-2.4.3+dfsg1/app/srctblbrows_qt/staoptdlg.cpp:73:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!fp.open(QIODevice::WriteOnly)) return;
data/rtklib-2.4.3+dfsg1/app/str2str/str2str.c:143:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024],*p;
data/rtklib-2.4.3+dfsg1/app/str2str/str2str.c:173:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[MAXSTR],*p=cmd;
data/rtklib-2.4.3+dfsg1/app/str2str/str2str.c:178:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file,"r"))) return;
data/rtklib-2.4.3+dfsg1/app/str2str/str2str.c:191:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char cmd[MAXRCVCMD]="";
data/rtklib-2.4.3+dfsg1/app/str2str/str2str.c:195:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *paths[MAXSTR],s[MAXSTR][MAXSTRPATH]={{0}},*cmdfile="";
data/rtklib-2.4.3+dfsg1/app/str2str/str2str.c:197:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char strmsg[MAXSTRMSG]="",*antinfo="",*rcvinfo="";
data/rtklib-2.4.3+dfsg1/app/str2str/str2str.c:231:57: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if (!strcmp(argv[i],"-sta")&&i+1<argc) sta=atoi(argv[++i]);
data/rtklib-2.4.3+dfsg1/app/str2str/str2str.c:232:61: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if (!strcmp(argv[i],"-d" )&&i+1<argc) dispint=atoi(argv[++i]);
data/rtklib-2.4.3+dfsg1/app/str2str/str2str.c:233:61: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if (!strcmp(argv[i],"-s" )&&i+1<argc) opts[0]=atoi(argv[++i]);
data/rtklib-2.4.3+dfsg1/app/str2str/str2str.c:234:61: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if (!strcmp(argv[i],"-r" )&&i+1<argc) opts[1]=atoi(argv[++i]);
data/rtklib-2.4.3+dfsg1/app/str2str/str2str.c:235:61: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if (!strcmp(argv[i],"-n" )&&i+1<argc) opts[5]=atoi(argv[++i]);
data/rtklib-2.4.3+dfsg1/app/str2str/str2str.c:236:61: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if (!strcmp(argv[i],"-f" )&&i+1<argc) opts[6]=atoi(argv[++i]);
data/rtklib-2.4.3+dfsg1/app/str2str/str2str.c:242:61: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if (!strcmp(argv[i],"-t" )&&i+1<argc) trlevel=atoi(argv[++i]);
data/rtklib-2.4.3+dfsg1/app/str2str/str2str.c:265:35: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
conv[i]->out.sta.antsetup=atoi(ant[2]);
data/rtklib-2.4.3+dfsg1/app/str2str/str2str.c:303:42: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
for (i=0,p=buff;i<MAXSTR;i++) p+=sprintf(p,"%c",ss[stat[i]+1]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:57:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[256],*p=buff,*q=str;
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:59:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
n=sprintf(buff,"%u",(unsigned int)num);
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:70:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[1024]="strsvr.exe",*p;
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:74:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(p,".ini");
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:84:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *p,*argv[32],buff[1024];
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:390:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[MAXSTRMSG*4]="",s1[256],s2[256];
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:429:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char str[4][1024];
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:437:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *paths[4],*cmd=NULL,filepath[1024],buff[1024];
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:438:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *ant[3]={"","",""},*rcv[3]={"","",""},*p;
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:474:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(filepath,"r"))) continue;
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:490:35: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
conv[i]->out.sta.antsetup=atoi(ant[2]);
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:552:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(msg,strsvr.pbuf,len);
data/rtklib-2.4.3+dfsg1/app/strsvr_qt/svrmain.cpp:61:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[256],*p=buff,*q=str;
data/rtklib-2.4.3+dfsg1/app/strsvr_qt/svrmain.cpp:63:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
n=sprintf(buff,"%u",(unsigned int)num);
data/rtklib-2.4.3+dfsg1/app/strsvr_qt/svrmain.cpp:489:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[MAXSTRMSG*4]="",s1[256],s2[256];
data/rtklib-2.4.3+dfsg1/app/strsvr_qt/svrmain.cpp:528:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char str[4][1024];
data/rtklib-2.4.3+dfsg1/app/strsvr_qt/svrmain.cpp:536:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *paths[4],filepath[1024],buff[1024];
data/rtklib-2.4.3+dfsg1/app/strsvr_qt/svrmain.cpp:537:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[1024];
data/rtklib-2.4.3+dfsg1/app/strsvr_qt/svrmain.cpp:538:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *ant[3]={"","",""},*rcv[3]={"","",""},*p;
data/rtklib-2.4.3+dfsg1/app/strsvr_qt/svrmain.cpp:574:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(filepath,"r"))) continue;
data/rtklib-2.4.3+dfsg1/app/strsvr_qt/svrmain.cpp:589:35: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
conv[i]->out.sta.antsetup=atoi(ant[2]);
data/rtklib-2.4.3+dfsg1/app/strsvr_qt/svrmain.cpp:615:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[1024];
data/rtklib-2.4.3+dfsg1/app/strsvr_qt/svrmain.cpp:651:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(msg,strsvr.pbuf,len);
data/rtklib-2.4.3+dfsg1/src/convkml.c:66:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[256]="";
data/rtklib-2.4.3+dfsg1/src/convkml.c:76:13: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(str,"%02.0f:%02.0f:%02.0f",ep[3],ep[4],ep[5]);
data/rtklib-2.4.3+dfsg1/src/convkml.c:79:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(str,"%04.0f-%02.0f-%02.0fT%02.0f:%02.0f:%05.2fZ",
data/rtklib-2.4.3+dfsg1/src/convkml.c:104:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file,"w"))) {
data/rtklib-2.4.3+dfsg1/src/convkml.c:165:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *p,file[1024];
data/rtklib-2.4.3+dfsg1/src/convkml.c:172:13: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(file+(p-infile),".kml");
data/rtklib-2.4.3+dfsg1/src/convrnx.c:83:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type,"P1");
data/rtklib-2.4.3+dfsg1/src/convrnx.c:87:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type,"P2");
data/rtklib-2.4.3+dfsg1/src/convrnx.c:144:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(opt->comment[1]+strlen(opt->comment[1]),", station ID: %d",
data/rtklib-2.4.3+dfsg1/src/convrnx.c:157:13: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(opt->ant[2],"%d",rtcm->sta.antsetup);
data/rtklib-2.4.3+dfsg1/src/convrnx.c:286:23: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(str->fp=fopen(file,"rb"))) {
data/rtklib-2.4.3+dfsg1/src/convrnx.c:292:23: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(str->fp=fopen(file,"rb"))) {
data/rtklib-2.4.3+dfsg1/src/convrnx.c:305:23: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(str->fp=fopen(file,"r"))) {
data/rtklib-2.4.3+dfsg1/src/convrnx.c:353:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char type[16],*id;
data/rtklib-2.4.3+dfsg1/src/convrnx.c:401:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char codes[6][33]={{0}};
data/rtklib-2.4.3+dfsg1/src/convrnx.c:402:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char types[6][33]={{0}};
data/rtklib-2.4.3+dfsg1/src/convrnx.c:403:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[128];
data/rtklib-2.4.3+dfsg1/src/convrnx.c:484:20: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const unsigned char codes_rtcm2[6][8]={
data/rtklib-2.4.3+dfsg1/src/convrnx.c:489:20: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const unsigned char codes_rtcm3[6][8]={
data/rtklib-2.4.3+dfsg1/src/convrnx.c:498:20: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const unsigned char codes_oem3[6][8]={
data/rtklib-2.4.3+dfsg1/src/convrnx.c:502:20: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const unsigned char codes_oem4[6][8]={
data/rtklib-2.4.3+dfsg1/src/convrnx.c:510:20: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const unsigned char codes_cres[6][8]={
data/rtklib-2.4.3+dfsg1/src/convrnx.c:516:20: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const unsigned char codes_javad[6][8]={
data/rtklib-2.4.3+dfsg1/src/convrnx.c:525:20: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const unsigned char codes_rinex[6][32]={
data/rtklib-2.4.3+dfsg1/src/convrnx.c:540:20: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const unsigned char codes_rt17[6][8]={
data/rtklib-2.4.3+dfsg1/src/convrnx.c:544:20: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const unsigned char codes_other[6][8]={
data/rtklib-2.4.3+dfsg1/src/convrnx.c:592:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[1024];
data/rtklib-2.4.3+dfsg1/src/convrnx.c:609:22: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(ofp[i]=fopen(path,"w"))) {
data/rtklib-2.4.3+dfsg1/src/convrnx.c:845:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[128];
data/rtklib-2.4.3+dfsg1/src/convrnx.c:861:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[1024]="",*p=msg,s[64];
data/rtklib-2.4.3+dfsg1/src/convrnx.c:865:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"(%d) ",sess);
data/rtklib-2.4.3+dfsg1/src/convrnx.c:875:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,": ");
data/rtklib-2.4.3+dfsg1/src/convrnx.c:890:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char slips[MAXSAT][NFREQ+NEXOBS]={{0}};
data/rtklib-2.4.3+dfsg1/src/convrnx.c:892:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[1024],*paths[NOUTFILE],s[NOUTFILE][1024];
data/rtklib-2.4.3+dfsg1/src/convrnx.c:893:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *epath[MAXEXFILE]={0},*staid=*opt->staid?opt->staid:"0000";
data/rtklib-2.4.3+dfsg1/src/datum.c:75:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[256];
data/rtklib-2.4.3+dfsg1/src/datum.c:79:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file,"r"))) {
data/rtklib-2.4.3+dfsg1/src/download.c:48:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmds[4096];
data/rtklib-2.4.3+dfsg1/src/download.c:70:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024],*p,*q,*r,*env,var[1024]="";
data/rtklib-2.4.3+dfsg1/src/download.c:71:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char l_name[1024]="",u_name[1024]="";
data/rtklib-2.4.3+dfsg1/src/download.c:80:30: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else if (*q=='N') p+=sprintf(p,"%d",seqno)-1;
data/rtklib-2.4.3+dfsg1/src/download.c:109:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s1[35],s2[35],*p,*q;
data/rtklib-2.4.3+dfsg1/src/download.c:143:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024],*p;
data/rtklib-2.4.3+dfsg1/src/download.c:178:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char local[1024];
data/rtklib-2.4.3+dfsg1/src/download.c:208:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char remot[1024],remot_p[1024],dir_t[1024];
data/rtklib-2.4.3+dfsg1/src/download.c:275:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pdir[1024],*p;
data/rtklib-2.4.3+dfsg1/src/download.c:305:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(pdir,"r"))) {
data/rtklib-2.4.3+dfsg1/src/download.c:321:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[4096],env[1024]="",remot[1024],*opt="",*opt2="",*p;
data/rtklib-2.4.3+dfsg1/src/download.c:331:33: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
if ((p=strrchr(remot,'/'))) strcpy(p+1,"__REQUEST_LIST__"); else return 0;
data/rtklib-2.4.3+dfsg1/src/download.c:343:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(FTP_LISTING,"r"))) return 0;
data/rtklib-2.4.3+dfsg1/src/download.c:351:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024],*file,*list,*p;
data/rtklib-2.4.3+dfsg1/src/download.c:354:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(FTP_LISTING,"r"))) return 1;
data/rtklib-2.4.3+dfsg1/src/download.c:387:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dir[1024],errfile[1024],tmpfile[1024],cmd[4096],env[1024]="";
data/rtklib-2.4.3+dfsg1/src/download.c:387:34: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
char dir[1024],errfile[1024],tmpfile[1024],cmd[4096],env[1024]="";
data/rtklib-2.4.3+dfsg1/src/download.c:388:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char opt[1024]="",*opt2="",*p;
data/rtklib-2.4.3+dfsg1/src/download.c:440:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(opt," --proxy=on ");
data/rtklib-2.4.3+dfsg1/src/download.c:487:40: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
if (rtk_uncompress(path->local,tmpfile)) {
data/rtklib-2.4.3+dfsg1/src/download.c:509:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char remot[1024],remot_p[1024],dir_t[1024],local[1024],str[1024];
data/rtklib-2.4.3+dfsg1/src/download.c:620:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[2048],type[32],path[1024],dir[1024],*p;
data/rtklib-2.4.3+dfsg1/src/download.c:623:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file,"r"))) {
data/rtklib-2.4.3+dfsg1/src/download.c:663:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[4096],*p;
data/rtklib-2.4.3+dfsg1/src/download.c:666:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file,"r"))) {
data/rtklib-2.4.3+dfsg1/src/download.c:716:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[2048],remot_p[1024]="";
data/rtklib-2.4.3+dfsg1/src/download.c:737:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg,"no download data");
data/rtklib-2.4.3+dfsg1/src/download.c:754:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg,"OK=%d No_File=%d Skip=%d Error=%d (Time=%.1f s)",n[0],n[1],n[2],
data/rtklib-2.4.3+dfsg1/src/download.c:781:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char year[32],date[32],date_p[32];
data/rtklib-2.4.3+dfsg1/src/geoid.c:54:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char v[2];
data/rtklib-2.4.3+dfsg1/src/geoid.c:143:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[16]="";
data/rtklib-2.4.3+dfsg1/src/geoid.c:212:20: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp_geoid=fopen(file,"rb"))) {
data/rtklib-2.4.3+dfsg1/src/ionex.c:97:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024],id[32],*label;
data/rtklib-2.4.3+dfsg1/src/ionex.c:126:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024],*label;
data/rtklib-2.4.3+dfsg1/src/ionex.c:177:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024],*label=buff+60;
data/rtklib-2.4.3+dfsg1/src/ionex.c:286:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *efiles[MAXEXFILE];
data/rtklib-2.4.3+dfsg1/src/ionex.c:304:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(efiles[i],"r"))) {
data/rtklib-2.4.3+dfsg1/src/lambda.c:35:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(A,Q,sizeof(double)*n*n);
data/rtklib-2.4.3+dfsg1/src/options.c:36:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char exsats_[1024];
data/rtklib-2.4.3+dfsg1/src/options.c:37:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char snrmask_[NFREQ][1024];
data/rtklib-2.4.3+dfsg1/src/options.c:190:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[32],*p,*q;
data/rtklib-2.4.3+dfsg1/src/options.c:193:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
n=sprintf(str,"%d:",val);
data/rtklib-2.4.3+dfsg1/src/options.c:195:16: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
return sprintf(s,"%d",val);
data/rtklib-2.4.3+dfsg1/src/options.c:208:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[32];
data/rtklib-2.4.3+dfsg1/src/options.c:216:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(s,"%30.30s:",str);
data/rtklib-2.4.3+dfsg1/src/options.c:249:37: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
case 0: *(int *)opt->var=atoi(str); break;
data/rtklib-2.4.3+dfsg1/src/options.c:270:20: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case 0: p+=sprintf(p,"%d" ,*(int *)opt->var); break;
data/rtklib-2.4.3+dfsg1/src/options.c:271:20: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case 1: p+=sprintf(p,"%.15g",*(double*)opt->var); break;
data/rtklib-2.4.3+dfsg1/src/options.c:309:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[2048],*p;
data/rtklib-2.4.3+dfsg1/src/options.c:314:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file,"r"))) {
data/rtklib-2.4.3+dfsg1/src/options.c:354:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[2048];
data/rtklib-2.4.3+dfsg1/src/options.c:359:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file,mode))) {
data/rtklib-2.4.3+dfsg1/src/options.c:376:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024],*p,*id;
data/rtklib-2.4.3+dfsg1/src/options.c:430:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[32],*p;
data/rtklib-2.4.3+dfsg1/src/pntpos.c:291:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg,"chi-square error nv=%d vv=%.1f cs=%.1f",nv,vv,chisqr[nv-nx-1]);
data/rtklib-2.4.3+dfsg1/src/pntpos.c:303:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg,"gdop error nv=%d gdop=%.1f",nv,dop[0]);
data/rtklib-2.4.3+dfsg1/src/pntpos.c:330:13: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg,"lack of valid sats ns=%d",nv);
data/rtklib-2.4.3+dfsg1/src/pntpos.c:341:13: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg,"lsq error info=%d",info);
data/rtklib-2.4.3+dfsg1/src/pntpos.c:370:20: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (i>=MAXITR) sprintf(msg,"iteration divergent i=%d",i);
data/rtklib-2.4.3+dfsg1/src/pntpos.c:384:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[32],name[16],msg_e[128];
data/rtklib-2.4.3+dfsg1/src/pntpos.c:549:16: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
if (n<=0) {strcpy(msg,"no observation data"); return 0;}
data/rtklib-2.4.3+dfsg1/src/postpos.c:71:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char proc_rov [64]=""; /* rover for current processing */
data/rtklib-2.4.3+dfsg1/src/postpos.c:72:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char proc_base[64]=""; /* base station for current processing */
data/rtklib-2.4.3+dfsg1/src/postpos.c:73:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char rtcm_file[1024]=""; /* rtcm data file */
data/rtklib-2.4.3+dfsg1/src/postpos.c:74:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char rtcm_path[1024]=""; /* rtcm data path */
data/rtklib-2.4.3+dfsg1/src/postpos.c:82:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024],*p=buff;
data/rtklib-2.4.3+dfsg1/src/postpos.c:126:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s2[32],s3[32];
data/rtklib-2.4.3+dfsg1/src/postpos.c:198:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[1024];
data/rtklib-2.4.3+dfsg1/src/postpos.c:208:17: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp_rtcm=fopen(path,"rb");
data/rtklib-2.4.3+dfsg1/src/postpos.c:428:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[32];
data/rtklib-2.4.3+dfsg1/src/postpos.c:706:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[128];
data/rtklib-2.4.3+dfsg1/src/postpos.c:737:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[256],sname[256],*p,*q;
data/rtklib-2.4.3+dfsg1/src/postpos.c:742:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file,"r"))) {
data/rtklib-2.4.3+dfsg1/src/postpos.c:875:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[64];
data/rtklib-2.4.3+dfsg1/src/postpos.c:930:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(outfile,"w"))) {
data/rtklib-2.4.3+dfsg1/src/postpos.c:947:29: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
return !*outfile?stdout:fopen(outfile,"a");
data/rtklib-2.4.3+dfsg1/src/postpos.c:956:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tracefile[1024],statfile[1024],path[1024],*ext;
data/rtklib-2.4.3+dfsg1/src/postpos.c:964:13: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(tracefile,".trace");
data/rtklib-2.4.3+dfsg1/src/postpos.c:1022:9: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(statfile,".stat");
data/rtklib-2.4.3+dfsg1/src/postpos.c:1083:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *ifile[MAXINFILE],ofile[1024],*rov_,*p,*q,s[64]="";
data/rtklib-2.4.3+dfsg1/src/postpos.c:1133:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *ifile[MAXINFILE],ofile[1024],*base_,*p,*q,s[64];
data/rtklib-2.4.3+dfsg1/src/postpos.c:1236:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *ifile[MAXINFILE],ofile[1024],*ext;
data/rtklib-2.4.3+dfsg1/src/ppp.c:129:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[32],*p=buff;
data/rtklib-2.4.3+dfsg1/src/ppp.c:140:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"$POS,%d,%.3f,%d,%.4f,%.4f,%.4f,%.4f,%.4f,%.4f\n",week,tow,
data/rtklib-2.4.3+dfsg1/src/ppp.c:148:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"$VELACC,%d,%.3f,%d,%.4f,%.4f,%.4f,%.5f,%.5f,%.5f,%.4f,%.4f,"
data/rtklib-2.4.3+dfsg1/src/ppp.c:154:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"$CLK,%d,%.3f,%d,%d,%.3f,%.3f,%.3f,%.3f\n",
data/rtklib-2.4.3+dfsg1/src/ppp.c:161:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"$TROP,%d,%.3f,%d,%d,%.4f,%.4f\n",week,tow,rtk->sol.stat,
data/rtklib-2.4.3+dfsg1/src/ppp.c:166:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"$TRPG,%d,%.3f,%d,%d,%.5f,%.5f,%.5f,%.5f\n",week,tow,
data/rtklib-2.4.3+dfsg1/src/ppp.c:1073:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[32];
data/rtklib-2.4.3+dfsg1/src/ppp.c:1288:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[32];
data/rtklib-2.4.3+dfsg1/src/ppp_ar.c:319:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024],s[32],*p=buff;
data/rtklib-2.4.3+dfsg1/src/ppp_ar.c:333:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"L%c ",freq[frq[i]]);
data/rtklib-2.4.3+dfsg1/src/ppp_ar.c:338:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"%3d: ",na-i);
data/rtklib-2.4.3+dfsg1/src/ppp_ar.c:339:31: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
for (j=0;j<na;j++) p+=sprintf(p,"%3.0f ",Z[j+i*na]);
data/rtklib-2.4.3+dfsg1/src/ppp_ar.c:340:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"%14.3f %7.3f",a[i],sqrt(Q[i+i*na]));
data/rtklib-2.4.3+dfsg1/src/ppp_ar.c:351:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024],*p=buff;
data/rtklib-2.4.3+dfsg1/src/ppp_corr.c:142:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024],sat[64],sta[64]="",sys,*p;
data/rtklib-2.4.3+dfsg1/src/ppp_corr.c:153:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file,"r"))) {
data/rtklib-2.4.3+dfsg1/src/ppp_corr.c:168:13: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(sat,"%c%02d",sys,prn);
data/rtklib-2.4.3+dfsg1/src/ppp_corr.c:193:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024],sat[64],sta[64],*p;
data/rtklib-2.4.3+dfsg1/src/ppp_corr.c:198:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file,"r"))) {
data/rtklib-2.4.3+dfsg1/src/ppp_corr.c:226:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024],sta[64];
data/rtklib-2.4.3+dfsg1/src/ppp_corr.c:231:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file,"r"))) {
data/rtklib-2.4.3+dfsg1/src/ppp_corr.c:279:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *efiles[MAXEXFILE]={0},*ext;
data/rtklib-2.4.3+dfsg1/src/preceph.c:71:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024];
data/rtklib-2.4.3+dfsg1/src/preceph.c:127:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024];
data/rtklib-2.4.3+dfsg1/src/preceph.c:261:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *efiles[MAXEXFILE],*ext,type=' ',tsys[4]="";
data/rtklib-2.4.3+dfsg1/src/preceph.c:280:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(efiles[i],"r"))) {
data/rtklib-2.4.3+dfsg1/src/preceph.c:327:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[256],str1[32],str2[32]="";
data/rtklib-2.4.3+dfsg1/src/preceph.c:332:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file,"r"))) {
data/rtklib-2.4.3+dfsg1/src/preceph.c:375:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *efiles[MAXEXFILE]={0};
data/rtklib-2.4.3+dfsg1/src/preceph.c:436:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024],str[32],*p;
data/rtklib-2.4.3+dfsg1/src/preceph.c:441:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file,"r"))) {
data/rtklib-2.4.3+dfsg1/src/preceph.c:479:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *efiles[MAXEXFILE]={0};
data/rtklib-2.4.3+dfsg1/src/qzslex.c:51:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s1[64],s2[64];
data/rtklib-2.4.3+dfsg1/src/qzslex.c:293:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buff[1200];
data/rtklib-2.4.3+dfsg1/src/qzslex.c:411:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024],*p;
data/rtklib-2.4.3+dfsg1/src/qzslex.c:418:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file,"r"))) {
data/rtklib-2.4.3+dfsg1/src/qzslex.c:487:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buff[LEXHEADLEN+LEXFRMLEN/8];
data/rtklib-2.4.3+dfsg1/src/qzslex.c:493:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(ifp=fopen(infile,"rb"))) {
data/rtklib-2.4.3+dfsg1/src/qzslex.c:497:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(ofp=fopen(outfile,"w"))) {
data/rtklib-2.4.3+dfsg1/src/rcv/binex.c:787:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg," subrec=%02X prn=%d",srec,prn);
data/rtklib-2.4.3+dfsg1/src/rcv/binex.c:858:20: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const unsigned char codes_gps[32]={
data/rtklib-2.4.3+dfsg1/src/rcv/binex.c:865:20: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const unsigned char codes_glo[32]={
data/rtklib-2.4.3+dfsg1/src/rcv/binex.c:870:20: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const unsigned char codes_gal[32]={
data/rtklib-2.4.3+dfsg1/src/rcv/binex.c:876:20: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const unsigned char codes_sbs[32]={
data/rtklib-2.4.3+dfsg1/src/rcv/binex.c:880:20: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const unsigned char codes_cmp[32]={
data/rtklib-2.4.3+dfsg1/src/rcv/binex.c:885:20: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const unsigned char codes_qzs[32]={
data/rtklib-2.4.3+dfsg1/src/rcv/binex.c:896:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char flag,flags[4];
data/rtklib-2.4.3+dfsg1/src/rcv/binex.c:1093:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg," nsat=%2d",nsat);
data/rtklib-2.4.3+dfsg1/src/rcv/binex.c:1151:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(raw->msgtype,"BINEX 0x%02X (%4d)",rec,raw->len);
data/rtklib-2.4.3+dfsg1/src/rcv/crescent.c:47:63: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static unsigned short U2(unsigned char *p) {unsigned short u; memcpy(&u,p,2); return u;}
data/rtklib-2.4.3+dfsg1/src/rcv/crescent.c:48:63: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static unsigned int U4(unsigned char *p) {unsigned int u; memcpy(&u,p,4); return u;}
data/rtklib-2.4.3+dfsg1/src/rcv/crescent.c:49:63: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static short I2(unsigned char *p) {short i; memcpy(&i,p,2); return i;}
data/rtklib-2.4.3+dfsg1/src/rcv/crescent.c:50:63: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static int I4(unsigned char *p) {int i; memcpy(&i,p,4); return i;}
data/rtklib-2.4.3+dfsg1/src/rcv/crescent.c:51:63: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static float R4(unsigned char *p) {float r; memcpy(&r,p,4); return r;}
data/rtklib-2.4.3+dfsg1/src/rcv/crescent.c:52:63: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static double R8(unsigned char *p) {double r; memcpy(&r,p,8); return r;}
data/rtklib-2.4.3+dfsg1/src/rcv/crescent.c:71:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[64];
data/rtklib-2.4.3+dfsg1/src/rcv/crescent.c:502:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(raw->subfrm[sat-1]+10*i,str,10);
data/rtklib-2.4.3+dfsg1/src/rcv/crescent.c:528:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(raw->msgtype,"HEMIS %2d (%4d):",type,raw->len);
data/rtklib-2.4.3+dfsg1/src/rcv/gw10.c:351:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(raw->msgtype,"GW10 0x%02X (%4d):",type,raw->len);
data/rtklib-2.4.3+dfsg1/src/rcv/javad.c:46:63: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static unsigned short U2(unsigned char *p) {unsigned short u; memcpy(&u,p,2); return u;}
data/rtklib-2.4.3+dfsg1/src/rcv/javad.c:47:63: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static unsigned int U4(unsigned char *p) {unsigned int u; memcpy(&u,p,4); return u;}
data/rtklib-2.4.3+dfsg1/src/rcv/javad.c:48:63: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static short I2(unsigned char *p) {short i; memcpy(&i,p,2); return i;}
data/rtklib-2.4.3+dfsg1/src/rcv/javad.c:49:63: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static int I4(unsigned char *p) {int i; memcpy(&i,p,4); return i;}
data/rtklib-2.4.3+dfsg1/src/rcv/javad.c:85:20: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const unsigned char types[6][6]={ /* ref [5] table 3-7 */
data/rtklib-2.4.3+dfsg1/src/rcv/javad.c:195:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s1[64],s2[64];
data/rtklib-2.4.3+dfsg1/src/rcv/javad.c:313:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg," %04.0f/%02.0f/%02.0f base=%d",ep[0],ep[1],ep[2],raw->tbase);
data/rtklib-2.4.3+dfsg1/src/rcv/javad.c:363:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg," nsat=%2d",raw->obuf.n);
data/rtklib-2.4.3+dfsg1/src/rcv/javad.c:390:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg," nsat=%2d",ns);
data/rtklib-2.4.3+dfsg1/src/rcv/javad.c:473:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg," prn=%3d iode=%3d iodc=%3d toes=%6.0f",prn,eph.iode,
data/rtklib-2.4.3+dfsg1/src/rcv/javad.c:597:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg," prn=%2d frq=%2d tk=%6d tb=%4d",prn,geph.frq,tk,tb);
data/rtklib-2.4.3+dfsg1/src/rcv/javad.c:672:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg," prn=%3d tod=%6d",prn,tod);
data/rtklib-2.4.3+dfsg1/src/rcv/javad.c:848:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char msg[1024]={0};
data/rtklib-2.4.3+dfsg1/src/rcv/javad.c:875:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char msg[1024]={0};
data/rtklib-2.4.3+dfsg1/src/rcv/javad.c:958:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg," prn=%3d time=%7d type=%d",prn,time,type);
data/rtklib-2.4.3+dfsg1/src/rcv/javad.c:1008:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg," prn=%2d frq=%2d time=%7d type=%d",prn,frq,time,type);
data/rtklib-2.4.3+dfsg1/src/rcv/javad.c:1061:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg," prn=%3d tow=%6d",prn,tow);
data/rtklib-2.4.3+dfsg1/src/rcv/javad.c:1590:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(raw->msgtype,"JAVAD %2.2s (%4d)",p,raw->len);
data/rtklib-2.4.3+dfsg1/src/rcv/novatel.c:104:63: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static unsigned short U2(unsigned char *p) {unsigned short u; memcpy(&u,p,2); return u;}
data/rtklib-2.4.3+dfsg1/src/rcv/novatel.c:105:63: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static unsigned int U4(unsigned char *p) {unsigned int u; memcpy(&u,p,4); return u;}
data/rtklib-2.4.3+dfsg1/src/rcv/novatel.c:106:63: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static int I4(unsigned char *p) {int i; memcpy(&i,p,4); return i;}
data/rtklib-2.4.3+dfsg1/src/rcv/novatel.c:107:63: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static float R4(unsigned char *p) {float r; memcpy(&r,p,4); return r;}
data/rtklib-2.4.3+dfsg1/src/rcv/novatel.c:108:63: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static double R8(unsigned char *p) {double r; memcpy(&r,p,8); return r;}
data/rtklib-2.4.3+dfsg1/src/rcv/novatel.c:304:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg," nobs=%2d",nobs);
data/rtklib-2.4.3+dfsg1/src/rcv/novatel.c:395:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg," nobs=%2d",nobs);
data/rtklib-2.4.3+dfsg1/src/rcv/novatel.c:571:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg," prn=%3d",prn);
data/rtklib-2.4.3+dfsg1/src/rcv/novatel.c:630:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg," prn=%3d id=%d",prn,id);
data/rtklib-2.4.3+dfsg1/src/rcv/novatel.c:675:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg," prn=%3d",prn);
data/rtklib-2.4.3+dfsg1/src/rcv/novatel.c:780:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg," prn=%3d iod=%3d toes=%6.0f",prn,eph.iode,eph.toes);
data/rtklib-2.4.3+dfsg1/src/rcv/novatel.c:910:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buff[27];
data/rtklib-2.4.3+dfsg1/src/rcv/novatel.c:935:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buff[16];
data/rtklib-2.4.3+dfsg1/src/rcv/novatel.c:974:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buff[38];
data/rtklib-2.4.3+dfsg1/src/rcv/novatel.c:1043:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg," prn=%3d iod=%3d toes=%6.0f",prn,eph.iode,eph.toes);
data/rtklib-2.4.3+dfsg1/src/rcv/novatel.c:1335:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(raw->msgtype,"OEM3 %4d (%4d):",type,raw->len);
data/rtklib-2.4.3+dfsg1/src/rcv/nvs.c:44:63: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static unsigned short U2(unsigned char *p) {unsigned short u; memcpy(&u,p,2); return u;}
data/rtklib-2.4.3+dfsg1/src/rcv/nvs.c:45:63: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static unsigned int U4(unsigned char *p) {unsigned int u; memcpy(&u,p,4); return u;}
data/rtklib-2.4.3+dfsg1/src/rcv/nvs.c:46:63: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static short I2(unsigned char *p) {short i; memcpy(&i,p,2); return i;}
data/rtklib-2.4.3+dfsg1/src/rcv/nvs.c:47:63: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static int I4(unsigned char *p) {int i; memcpy(&i,p,4); return i;}
data/rtklib-2.4.3+dfsg1/src/rcv/nvs.c:48:63: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static float R4(unsigned char *p) {float r; memcpy(&r,p,4); return r;}
data/rtklib-2.4.3+dfsg1/src/rcv/nvs.c:49:63: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static double R8(unsigned char *p) {double r; memcpy(&r,p,8); return r;}
data/rtklib-2.4.3+dfsg1/src/rcv/nvs.c:74:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *q,tstr[32],flag;
data/rtklib-2.4.3+dfsg1/src/rcv/nvs.c:431:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(raw->msgtype,"NVS: type=%2d len=%3d",type,raw->len);
data/rtklib-2.4.3+dfsg1/src/rcv/nvs.c:566:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mbuff[1024],*args[32],*p;
data/rtklib-2.4.3+dfsg1/src/rcv/nvs.c:583:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
iRate = atoi(args[1]);
data/rtklib-2.4.3+dfsg1/src/rcv/nvs.c:590:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
iRate = atoi(args[1]);
data/rtklib-2.4.3+dfsg1/src/rcv/rcvlex.c:39:40: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
union {unsigned short u2; unsigned char b[2];} buff;
data/rtklib-2.4.3+dfsg1/src/rcv/rcvlex.c:45:38: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
union {unsigned int u4; unsigned char b[4];} buff;
data/rtklib-2.4.3+dfsg1/src/rcv/rcvlex.c:51:32: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
union {double r8; unsigned char b[8];} buff;
data/rtklib-2.4.3+dfsg1/src/rcv/rcvlex.c:238:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(raw->msgtype,"LEXR 0x%04X (%4d): stat=%08X week=%d tow=%10.3f",
data/rtklib-2.4.3+dfsg1/src/rcv/rcvlex.c:357:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *args[32],mbuff[1024],*p;
data/rtklib-2.4.3+dfsg1/src/rcv/rcvlex.c:358:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char data[32]={0},*q=data;
data/rtklib-2.4.3+dfsg1/src/rcv/rcvlex.c:376:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
id=(unsigned short)atoi(args[1])+0xC000;
data/rtklib-2.4.3+dfsg1/src/rcv/rcvlex.c:383:41: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (narg>1) *q++=(unsigned char)atoi(args[1]);
data/rtklib-2.4.3+dfsg1/src/rcv/rcvlex.c:384:41: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (narg>2) *q++=(unsigned char)atoi(args[2]);
data/rtklib-2.4.3+dfsg1/src/rcv/rcvlex.c:385:41: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (narg>3) *q =(unsigned char)atoi(args[3]);
data/rtklib-2.4.3+dfsg1/src/rcv/rt17.c:301:44: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef union {unsigned short u2; unsigned char c[2];} ENDIAN_TEST;
data/rtklib-2.4.3+dfsg1/src/rcv/rt17.c:471:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(raw->msgtype,"RT17 0x%02X (%4d)",raw->pbuff[2],raw->plen);
data/rtklib-2.4.3+dfsg1/src/rcv/rt17.c:535:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(raw->buff + raw->nbyte, raw->pbuff, raw->pbyte);
data/rtklib-2.4.3+dfsg1/src/rcv/rt17.c:603:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(raw->buff + raw->nbyte, raw->pbuff, raw->pbyte);
data/rtklib-2.4.3+dfsg1/src/rcv/rt17.c:2019:34: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
union I2 {short i2; unsigned char c[2];} u;
data/rtklib-2.4.3+dfsg1/src/rcv/rt17.c:2063:32: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
union i4 {int i4; unsigned char c[4];} u;
data/rtklib-2.4.3+dfsg1/src/rcv/rt17.c:2144:34: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
union R8 {double d; unsigned char c[8];} u;
data/rtklib-2.4.3+dfsg1/src/rcv/rt17.c:2191:43: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
union U2 {unsigned short u2; unsigned char c[2];} u;
data/rtklib-2.4.3+dfsg1/src/rcv/rt17.c:2235:41: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
union U4 {unsigned int u4; unsigned char c[4];} u;
data/rtklib-2.4.3+dfsg1/src/rcv/septentrio.c:46:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char locktime[255][32];
data/rtklib-2.4.3+dfsg1/src/rcv/septentrio.c:133:63: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static unsigned short U2(unsigned char *p) {unsigned short u; memcpy(&u,p,2); return u;}
data/rtklib-2.4.3+dfsg1/src/rcv/septentrio.c:134:63: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static unsigned int U4(unsigned char *p) {unsigned int u; memcpy(&u,p,4); return u;}
data/rtklib-2.4.3+dfsg1/src/rcv/septentrio.c:135:63: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static float R4(unsigned char *p) {float r; memcpy(&r,p,4); return r;}
data/rtklib-2.4.3+dfsg1/src/rcv/septentrio.c:136:63: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static double R8(unsigned char *p) {double r; memcpy(&r,p,8); return r;}
data/rtklib-2.4.3+dfsg1/src/rcv/septentrio.c:137:63: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static signed int I4(unsigned char *p) {signed int u; memcpy(&u,p,4); return u;}
data/rtklib-2.4.3+dfsg1/src/rcv/septentrio.c:138:63: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static short I2(unsigned char *p) {short i; memcpy(&i,p,2); return i;}
data/rtklib-2.4.3+dfsg1/src/rcv/septentrio.c:1202:6: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(raw->subfrm[sat-1]+(id-1)*30,_buf,30);
data/rtklib-2.4.3+dfsg1/src/rcv/septentrio.c:1441:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(raw->subfrm[sat-1]+(m-1)*10,buff,10);
data/rtklib-2.4.3+dfsg1/src/rcv/septentrio.c:1980:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(raw->msgtype,"SBF 0x%04X (%4d):",type, raw->len);
data/rtklib-2.4.3+dfsg1/src/rcv/skytraq.c:459:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(raw->msgtype,"SKYTRAQ 0x%02x (%4d):",type,raw->len);
data/rtklib-2.4.3+dfsg1/src/rcv/skytraq.c:568:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mbuff[1024],*args[32],*p;
data/rtklib-2.4.3+dfsg1/src/rcv/skytraq.c:583:36: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*q++=narg>2?(unsigned char)atoi(args[1]):0;
data/rtklib-2.4.3+dfsg1/src/rcv/skytraq.c:590:56: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
for (i=1;i<4;i++) *q++=narg>i+1?(unsigned char)atoi(args[i]):0;
data/rtklib-2.4.3+dfsg1/src/rcv/skytraq.c:596:56: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
for (i=1;i<3;i++) *q++=narg>i+1?(unsigned char)atoi(args[i]):0;
data/rtklib-2.4.3+dfsg1/src/rcv/skytraq.c:604:58: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (*hz[i]) *q++=i; else *q++=(unsigned char)atoi(args[1]);
data/rtklib-2.4.3+dfsg1/src/rcv/skytraq.c:607:56: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
for (i=2;i<8;i++) *q++=narg>i+1?(unsigned char)atoi(args[i]):0;
data/rtklib-2.4.3+dfsg1/src/rcv/skytraq.c:615:58: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (*hz[i]) *q++=i; else *q++=(unsigned char)atoi(args[1]);
data/rtklib-2.4.3+dfsg1/src/rcv/skytraq.c:618:56: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
for (i=2;i<8;i++) *q++=narg>i+1?(unsigned char)atoi(args[i]):0;
data/rtklib-2.4.3+dfsg1/src/rcv/skytraq.c:624:37: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*q++=narg>=2?(unsigned char)atoi(args[1]):0;
data/rtklib-2.4.3+dfsg1/src/rcv/ss2.c:32:63: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static unsigned short U2(unsigned char *p) {unsigned short u; memcpy(&u,p,2); return u;}
data/rtklib-2.4.3+dfsg1/src/rcv/ss2.c:33:63: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static unsigned int U4(unsigned char *p) {unsigned int u; memcpy(&u,p,4); return u;}
data/rtklib-2.4.3+dfsg1/src/rcv/ss2.c:34:63: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static double R8(unsigned char *p) {double r; memcpy(&r,p,8); return r;}
data/rtklib-2.4.3+dfsg1/src/rcv/ss2.c:229:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(raw->msgtype,"SS2 %2d (%4d):",type,raw->len);
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:80:63: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static unsigned short U2(unsigned char *p) {unsigned short u; memcpy(&u,p,2); return u;}
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:81:63: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static unsigned int U4(unsigned char *p) {unsigned int u; memcpy(&u,p,4); return u;}
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:82:63: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static int I4(unsigned char *p) {int u; memcpy(&u,p,4); return u;}
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:83:63: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static float R4(unsigned char *p) {float r; memcpy(&r,p,4); return r;}
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:84:63: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static double R8(unsigned char *p) {double r; memcpy(&r,p,8); return r;}
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:90:56: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static void setU2(unsigned char *p, unsigned short u) {memcpy(p,&u,2);}
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:91:56: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static void setU4(unsigned char *p, unsigned int u) {memcpy(p,&u,4);}
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:93:56: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static void setI2(unsigned char *p, short i) {memcpy(p,&i,2);}
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:94:56: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static void setI4(unsigned char *p, int i) {memcpy(p,&i,4);}
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:95:56: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static void setR4(unsigned char *p, float r) {memcpy(p,&r,4);}
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:96:56: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static void setR8(unsigned char *p, double r) {memcpy(p,&r,8);}
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:156:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(raw->msgtype,"UBX RXM-RAW (%4d): nsat=%d",raw->len,U1(p+6));
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:372:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(raw->msgtype,"UBX RXM-SFRB (%4d): prn=%2d",raw->len,U1(p+1));
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:407:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(raw->msgtype,"UBX NAV-SOL (%4d):",raw->len);
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:426:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(raw->msgtype,"UBX NAV-TIME (%4d):",raw->len);
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:448:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(raw->msgtype,"UBX TRK-MEAS (%4d):",raw->len);
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:563:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(raw->msgtype,"UBX TRK-D5 (%4d):",raw->len);
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:839:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fid,buff+12,2); /* save frame-id */
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:841:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(raw->subfrm[sat-1]+(m-1)*10,buff,10);
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:875:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(raw->sbsmsg.msg,buff,29);
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:888:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(raw->msgtype,"UBX RXM-SFRBX (%4d): sys=%d prn=%3d",raw->len,
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:919:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(raw->msgtype,"UBX TRK-SFRBX (%4d): sys=%d prn=%3d",raw->len,
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:965:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(raw->msgtype,"UBX 0x%02X 0x%02X (%4d)",type>>8,type&0xF,
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:1157:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mbuff[1024],*args[32],*p;
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:1180:49: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
case FU1 : setU1(q,j<narg?(unsigned char )atoi(args[j]):0); q+=1; break;
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:1180:55: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
case FU1 : setU1(q,j<narg?(unsigned char )atoi(args[j]):0); q+=1; break;
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:1181:55: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
case FU2 : setU2(q,j<narg?(unsigned short)atoi(args[j]):0); q+=2; break;
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:1182:55: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
case FU4 : setU4(q,j<narg?(unsigned int )atoi(args[j]):0); q+=4; break;
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:1183:40: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
case FI1 : setI1(q,j<narg?(char )atoi(args[j]):0); q+=1; break;
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:1183:55: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
case FI1 : setI1(q,j<narg?(char )atoi(args[j]):0); q+=1; break;
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:1184:55: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
case FI2 : setI2(q,j<narg?(short )atoi(args[j]):0); q+=2; break;
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:1185:55: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
case FI4 : setI4(q,j<narg?(int )atoi(args[j]):0); q+=4; break;
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:1188:24: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case FS32: sprintf((char *)q,"%-32.32s",j<narg?args[j]:""); q+=32; break;
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:1189:49: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
default : setU1(q,j<narg?(unsigned char )atoi(args[j]):0); q+=1; break;
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:1189:55: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
default : setU1(q,j<narg?(unsigned char )atoi(args[j]):0); q+=1; break;
data/rtklib-2.4.3+dfsg1/src/rcvraw.c:400:27: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char xor_8bit[256]={ /* xor of 8 bits */
data/rtklib-2.4.3+dfsg1/src/rinex.c:118:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char pri [MAXOBSTYPE]; /* signal priority (15-0) */
data/rtklib-2.4.3+dfsg1/src/rinex.c:119:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char type[MAXOBSTYPE]; /* type (0:C,1:L,2:D,3:S) */
data/rtklib-2.4.3+dfsg1/src/rinex.c:120:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char code[MAXOBSTYPE]; /* obs code (CODE_L??) */
data/rtklib-2.4.3+dfsg1/src/rinex.c:157:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(str,"%04.0f%02.0f%02.0f %02.0f%02.0f%02.0f UTC",ep[0],ep[1],ep[2],
data/rtklib-2.4.3+dfsg1/src/rinex.c:165:23: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case SYS_GPS: sprintf(code,"G%2d",prn-MINPRNGPS+1); break;
data/rtklib-2.4.3+dfsg1/src/rinex.c:166:23: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case SYS_GLO: sprintf(code,"R%2d",prn-MINPRNGLO+1); break;
data/rtklib-2.4.3+dfsg1/src/rinex.c:167:23: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case SYS_GAL: sprintf(code,"E%2d",prn-MINPRNGAL+1); break;
data/rtklib-2.4.3+dfsg1/src/rinex.c:168:23: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case SYS_SBS: sprintf(code,"S%2d",prn-100); break;
data/rtklib-2.4.3+dfsg1/src/rinex.c:169:23: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case SYS_QZS: sprintf(code,"J%2d",prn-MINPRNQZS+1); break;
data/rtklib-2.4.3+dfsg1/src/rinex.c:170:23: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case SYS_CMP: sprintf(code,"C%2d",prn-MINPRNCMP+1); break;
data/rtklib-2.4.3+dfsg1/src/rinex.c:210:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(type," ");
data/rtklib-2.4.3+dfsg1/src/rinex.c:213:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (sys==SYS_GPS) sprintf(type,"%c1W",'C');
data/rtklib-2.4.3+dfsg1/src/rinex.c:214:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else if (sys==SYS_GLO) sprintf(type,"%c1P",'C');
data/rtklib-2.4.3+dfsg1/src/rinex.c:217:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (sys==SYS_GPS) sprintf(type,"%c2W",'C');
data/rtklib-2.4.3+dfsg1/src/rinex.c:218:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else if (sys==SYS_GLO) sprintf(type,"%c2P",'C');
data/rtklib-2.4.3+dfsg1/src/rinex.c:222:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else if (sys==SYS_GPS) sprintf(type,"%c1C",'C');
data/rtklib-2.4.3+dfsg1/src/rinex.c:223:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else if (sys==SYS_GLO) sprintf(type,"%c1C",'C');
data/rtklib-2.4.3+dfsg1/src/rinex.c:224:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else if (sys==SYS_GAL) sprintf(type,"%c1X",'C'); /* ver.2.12 */
data/rtklib-2.4.3+dfsg1/src/rinex.c:225:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else if (sys==SYS_QZS) sprintf(type,"%c1C",'C');
data/rtklib-2.4.3+dfsg1/src/rinex.c:226:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else if (sys==SYS_SBS) sprintf(type,"%c1C",'C');
data/rtklib-2.4.3+dfsg1/src/rinex.c:230:28: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (ver>=2.12) sprintf(type,"%c2W",'C'); /* L2P(Y) */
data/rtklib-2.4.3+dfsg1/src/rinex.c:231:28: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else sprintf(type,"%c2X",'C'); /* L2C */
data/rtklib-2.4.3+dfsg1/src/rinex.c:233:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else if (sys==SYS_GLO) sprintf(type,"%c2C",'C');
data/rtklib-2.4.3+dfsg1/src/rinex.c:234:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else if (sys==SYS_QZS) sprintf(type,"%c2X",'C');
data/rtklib-2.4.3+dfsg1/src/rinex.c:235:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else if (sys==SYS_CMP) sprintf(type,"%c1X",'C'); /* ver.2.12 B1 */
data/rtklib-2.4.3+dfsg1/src/rinex.c:238:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (sys==SYS_GPS) sprintf(type,"%c1C",str[0]);
data/rtklib-2.4.3+dfsg1/src/rinex.c:239:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else if (sys==SYS_GLO) sprintf(type,"%c1C",str[0]);
data/rtklib-2.4.3+dfsg1/src/rinex.c:240:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else if (sys==SYS_QZS) sprintf(type,"%c1C",str[0]);
data/rtklib-2.4.3+dfsg1/src/rinex.c:241:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else if (sys==SYS_SBS) sprintf(type,"%c1C",str[0]);
data/rtklib-2.4.3+dfsg1/src/rinex.c:244:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (sys==SYS_GPS) sprintf(type,"%c1X",str[0]);
data/rtklib-2.4.3+dfsg1/src/rinex.c:245:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else if (sys==SYS_QZS) sprintf(type,"%c1X",str[0]);
data/rtklib-2.4.3+dfsg1/src/rinex.c:248:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (sys==SYS_GPS) sprintf(type,"%c2X",str[0]);
data/rtklib-2.4.3+dfsg1/src/rinex.c:249:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else if (sys==SYS_QZS) sprintf(type,"%c2X",str[0]);
data/rtklib-2.4.3+dfsg1/src/rinex.c:252:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (sys==SYS_GLO) sprintf(type,"%c2C",str[0]);
data/rtklib-2.4.3+dfsg1/src/rinex.c:255:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (sys==SYS_GPS) sprintf(type,"%c1W",str[0]);
data/rtklib-2.4.3+dfsg1/src/rinex.c:256:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else if (sys==SYS_GLO) sprintf(type,"%c1P",str[0]);
data/rtklib-2.4.3+dfsg1/src/rinex.c:257:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else if (sys==SYS_GAL) sprintf(type,"%c1X",str[0]); /* tentative */
data/rtklib-2.4.3+dfsg1/src/rinex.c:258:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else if (sys==SYS_CMP) sprintf(type,"%c1X",str[0]); /* extension */
data/rtklib-2.4.3+dfsg1/src/rinex.c:261:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (sys==SYS_GPS) sprintf(type,"%c1C",str[0]);
data/rtklib-2.4.3+dfsg1/src/rinex.c:262:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else if (sys==SYS_GLO) sprintf(type,"%c1C",str[0]);
data/rtklib-2.4.3+dfsg1/src/rinex.c:263:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else if (sys==SYS_GAL) sprintf(type,"%c1X",str[0]); /* tentative */
data/rtklib-2.4.3+dfsg1/src/rinex.c:264:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else if (sys==SYS_QZS) sprintf(type,"%c1C",str[0]);
data/rtklib-2.4.3+dfsg1/src/rinex.c:265:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else if (sys==SYS_SBS) sprintf(type,"%c1C",str[0]);
data/rtklib-2.4.3+dfsg1/src/rinex.c:268:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (sys==SYS_GPS) sprintf(type,"%c2W",str[0]);
data/rtklib-2.4.3+dfsg1/src/rinex.c:269:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else if (sys==SYS_GLO) sprintf(type,"%c2P",str[0]);
data/rtklib-2.4.3+dfsg1/src/rinex.c:270:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else if (sys==SYS_QZS) sprintf(type,"%c2X",str[0]);
data/rtklib-2.4.3+dfsg1/src/rinex.c:271:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else if (sys==SYS_CMP) sprintf(type,"%c1X",str[0]); /* ver.2.12 B1 */
data/rtklib-2.4.3+dfsg1/src/rinex.c:274:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (sys==SYS_GPS) sprintf(type,"%c5X",str[0]);
data/rtklib-2.4.3+dfsg1/src/rinex.c:275:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else if (sys==SYS_GAL) sprintf(type,"%c5X",str[0]);
data/rtklib-2.4.3+dfsg1/src/rinex.c:276:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else if (sys==SYS_QZS) sprintf(type,"%c5X",str[0]);
data/rtklib-2.4.3+dfsg1/src/rinex.c:277:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else if (sys==SYS_SBS) sprintf(type,"%c5X",str[0]);
data/rtklib-2.4.3+dfsg1/src/rinex.c:280:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (sys==SYS_GAL) sprintf(type,"%c6X",str[0]);
data/rtklib-2.4.3+dfsg1/src/rinex.c:281:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else if (sys==SYS_QZS) sprintf(type,"%c6X",str[0]);
data/rtklib-2.4.3+dfsg1/src/rinex.c:282:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else if (sys==SYS_CMP) sprintf(type,"%c6X",str[0]); /* ver.2.12 B3 */
data/rtklib-2.4.3+dfsg1/src/rinex.c:285:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (sys==SYS_GAL) sprintf(type,"%c7X",str[0]);
data/rtklib-2.4.3+dfsg1/src/rinex.c:286:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else if (sys==SYS_CMP) sprintf(type,"%c7X",str[0]); /* ver.2.12 B2 */
data/rtklib-2.4.3+dfsg1/src/rinex.c:289:32: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (sys==SYS_GAL) sprintf(type,"%c8X",str[0]);
data/rtklib-2.4.3+dfsg1/src/rinex.c:564:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[MAXRNXLEN],*label=buff+60;
data/rtklib-2.4.3+dfsg1/src/rinex.c:636:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char satid[8]="";
data/rtklib-2.4.3+dfsg1/src/rinex.c:684:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char lli[MAXOBSTYPE]={0};
data/rtklib-2.4.3+dfsg1/src/rinex.c:685:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char satid[8]="";
data/rtklib-2.4.3+dfsg1/src/rinex.c:841:50: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static void set_index(double ver, int sys, const char *opt,
data/rtklib-2.4.3+dfsg1/src/rinex.c:842:23: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tobs[MAXOBSTYPE][4], sigind_t *ind)
data/rtklib-2.4.3+dfsg1/src/rinex.c:845:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[8],*optstr="";
data/rtklib-2.4.3+dfsg1/src/rinex.c:923:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[MAXRNXLEN];
data/rtklib-2.4.3+dfsg1/src/rinex.c:964:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char slips[MAXSAT][NFREQ]={{0}};
data/rtklib-2.4.3+dfsg1/src/rinex.c:1193:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[MAXRNXLEN],id[8]="",*p;
data/rtklib-2.4.3+dfsg1/src/rinex.c:1344:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[MAXRNXLEN],satid[8]="";
data/rtklib-2.4.3+dfsg1/src/rinex.c:1398:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tobs[NUMSYS][MAXOBSTYPE][4]={{""}};
data/rtklib-2.4.3+dfsg1/src/rinex.c:1428:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpfile[1024];
data/rtklib-2.4.3+dfsg1/src/rinex.c:1428:10: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
char tmpfile[1024];
data/rtklib-2.4.3+dfsg1/src/rinex.c:1435:36: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
if ((cstat=rtk_uncompress(file,tmpfile))<0) {
data/rtklib-2.4.3+dfsg1/src/rinex.c:1439:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(cstat?tmpfile:file,"r"))) {
data/rtklib-2.4.3+dfsg1/src/rinex.c:1439:26: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
if (!(fp=fopen(cstat?tmpfile:file,"r"))) {
data/rtklib-2.4.3+dfsg1/src/rinex.c:1440:53: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
trace(2,"rinex file open error: %s\n",cstat?tmpfile:file);
data/rtklib-2.4.3+dfsg1/src/rinex.c:1449:23: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
if (cstat) remove(tmpfile);
data/rtklib-2.4.3+dfsg1/src/rinex.c:1583:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *files[MAXEXFILE]={0},type;
data/rtklib-2.4.3+dfsg1/src/rinex.c:1683:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char type,tobs[6][MAXOBSTYPE][4]={{""}};
data/rtklib-2.4.3+dfsg1/src/rinex.c:1827:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char date[32],*sys,*tsys="GPS";
data/rtklib-2.4.3+dfsg1/src/rinex.c:2004:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sats[MAXOBS][4]={""};
data/rtklib-2.4.3+dfsg1/src/rinex.c:2092:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char date[64],*sys;
data/rtklib-2.4.3+dfsg1/src/rinex.c:2209:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char code[32],*sep;
data/rtklib-2.4.3+dfsg1/src/rinex.c:2313:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char date[64];
data/rtklib-2.4.3+dfsg1/src/rinex.c:2348:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char code[32],*sep;
data/rtklib-2.4.3+dfsg1/src/rinex.c:2405:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char date[64];
data/rtklib-2.4.3+dfsg1/src/rinex.c:2439:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char code[32],*sep;
data/rtklib-2.4.3+dfsg1/src/rinex.c:2492:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char date[64];
data/rtklib-2.4.3+dfsg1/src/rinex.c:2520:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char date[64];
data/rtklib-2.4.3+dfsg1/src/rinex.c:2548:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char date[64];
data/rtklib-2.4.3+dfsg1/src/rtcm2.c:394:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(rtcm->msgtype,"RTCM %2d (%4d) zcnt=%7.1f staid=%3d seqno=%d",
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:60:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char sats[64]; /* satellites */
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:61:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char sigs[32]; /* signals */
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:62:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char cellmask[64]; /* cell mask */
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:66:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *msm_sig_gps[32]={
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:72:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *msm_sig_glo[32]={
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:78:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *msm_sig_gal[32]={
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:84:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *msm_sig_qzs[32]={
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:90:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *msm_sig_sbs[32]={
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:96:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *msm_sig_cmp[32]={
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:394:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg," staid=%4d",staid);
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:429:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg," staid=%4d",staid);
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:446:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char des[32]="";
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:465:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg," staid=%4d",staid);
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:478:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char des[32]="",sno[32]="";
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:501:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg," staid=%4d",staid);
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:713:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg," prn=%2d iode=%3d iodc=%3d week=%d toe=%6.0f toc=%6.0f svh=%02X",
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:773:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg," prn=%2d tk=%02.0f:%02.0f:%02.0f frq=%2d bn=%d tb=%d",
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:862:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char des[32]="",sno[32]="",rec[32]="",ver[32]="",rsn[32]="";
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:900:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg," staid=%4d",staid);
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:992:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg," prn=%3d iode=%3d iodc=%3d week=%d toe=%6.0f toc=%6.0f svh=%02X",
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:1059:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg," prn=%2d iode=%3d week=%d toe=%6.0f toc=%6.0f hs=%d dvs=%d",
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:1127:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg," prn=%2d iode=%3d week=%d toe=%6.0f toc=%6.0f hs=%d dvs=%d",
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:1197:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg," prn=%2d iode=%3d iodc=%3d week=%d toe=%6.0f toc=%6.0f svh=%02X",
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:1263:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg," prn=%2d iode=%3d iodc=%3d week=%d toe=%6.0f toc=%6.0f svh=%02X",
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:1811:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *sig[32];
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:1813:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char code[32];
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:2253:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(rtcm->msgtype,"RTCM %4d (%4d):",type,rtcm->len);
data/rtklib-2.4.3+dfsg1/src/rtcm3e.c:56:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern const char *msm_sig_gps[32];
data/rtklib-2.4.3+dfsg1/src/rtcm3e.c:57:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern const char *msm_sig_glo[32];
data/rtklib-2.4.3+dfsg1/src/rtcm3e.c:58:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern const char *msm_sig_gal[32];
data/rtklib-2.4.3+dfsg1/src/rtcm3e.c:59:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern const char *msm_sig_qzs[32];
data/rtklib-2.4.3+dfsg1/src/rtcm3e.c:60:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern const char *msm_sig_sbs[32];
data/rtklib-2.4.3+dfsg1/src/rtcm3e.c:61:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern const char *msm_sig_cmp[32];
data/rtklib-2.4.3+dfsg1/src/rtcm3e.c:1873:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char sat_ind[64]={0},sig_ind[32]={0},cell_ind[32*64]={0};
data/rtklib-2.4.3+dfsg1/src/rtcm3e.c:2197:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char half[64];
data/rtklib-2.4.3+dfsg1/src/rtcm3e.c:2222:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char half[64];
data/rtklib-2.4.3+dfsg1/src/rtcm3e.c:2249:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char half[64];
data/rtklib-2.4.3+dfsg1/src/rtcm3e.c:2277:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char info[64],half[64];
data/rtklib-2.4.3+dfsg1/src/rtcm3e.c:2308:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char half[64];
data/rtklib-2.4.3+dfsg1/src/rtcm3e.c:2336:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char info[64],half[64];
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:244:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char codepris[6][MAXFREQ][16]={ /* code priority table */
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:350:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[1024];
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:478:23: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case SYS_GPS: sprintf(id,"G%02d",prn-MINPRNGPS+1); return;
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:479:23: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case SYS_GLO: sprintf(id,"R%02d",prn-MINPRNGLO+1); return;
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:480:23: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case SYS_GAL: sprintf(id,"E%02d",prn-MINPRNGAL+1); return;
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:481:23: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case SYS_QZS: sprintf(id,"J%02d",prn-MINPRNQZS+1); return;
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:482:23: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case SYS_CMP: sprintf(id,"C%02d",prn-MINPRNCMP+1); return;
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:483:23: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case SYS_LEO: sprintf(id,"L%02d",prn-MINPRNLEO+1); return;
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:484:23: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case SYS_SBS: sprintf(id,"%03d" ,prn); return;
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:602:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *obs,str[8]="";
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:875:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(A,B,sizeof(double)*n*m);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:1190:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[256],*p=str;
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:1206:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[256],*p=str;
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:1421:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[256],*p;
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:1442:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[256],month[32],ls[MAXLEAPS][7]={{0}};
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:1479:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file,"r"))) return 0;
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:1589:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(s,"%04.0f/%02.0f/%02.0f %02.0f:%02.0f:%0*.*f",ep[0],ep[1],ep[2],
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:1601:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buff[64];
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2078:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[256];
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2080:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file,"r"))) {
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2125:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[256];
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2129:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file,"r"))) {
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2231:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[MAXANT],*types[2],*p;
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2279:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char stas[2048][16];
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2282:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[256],str[256];
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2286:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file,"r"))) {
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2310:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[256];
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2332:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[256],staname[32]="",name[32],*p;
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2338:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file,"r"))) {
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2370:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[256];
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2374:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file,"r"))) {
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2656:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[4096],*p;
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2661:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file,"r"))) return 0;
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2700:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[32];
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2704:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file,"w"))) return 0;
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2766:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char file_trace[1024]; /* trace file */
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2775:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[1024];
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2792:20: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp_trace=fopen(path,"w"))) {
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2800:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[1024];
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2803:28: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!*path||!(fp_trace=fopen(path,"w"))) fp_trace=stderr;
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2850:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[64],id[16];
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2866:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s1[64],s2[64],id[16];
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2886:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s1[64],s2[64],id[16];
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2900:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s1[64],s2[64],id[16];
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2914:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[64],id[16];
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2934:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[64],id[16];
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2984:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmds[1024];
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3014:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[1024];
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3018:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dir[1024]="",*p;
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3039:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dir[1024]="",s1[1024],s2[1024],*p,*q,*r;
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3083:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024],*p;
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3101:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024],*p,*q,*r;
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3147:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rep[64];
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3162:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(rep,"%02d", ((int)ep[3]/3)*3); stat|=repstr(rpath,"%ha",rep);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3163:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(rep,"%02d", ((int)ep[3]/6)*6); stat|=repstr(rpath,"%hb",rep);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3164:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(rep,"%02d", ((int)ep[3]/12)*12); stat|=repstr(rpath,"%hc",rep);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3165:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(rep,"%04.0f",ep[0]); stat|=repstr(rpath,"%Y",rep);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3166:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(rep,"%02.0f",fmod(ep[0],100.0)); stat|=repstr(rpath,"%y",rep);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3167:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(rep,"%02.0f",ep[1]); stat|=repstr(rpath,"%m",rep);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3168:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(rep,"%02.0f",ep[2]); stat|=repstr(rpath,"%d",rep);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3169:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(rep,"%02.0f",ep[3]); stat|=repstr(rpath,"%h",rep);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3170:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(rep,"%02.0f",ep[4]); stat|=repstr(rpath,"%M",rep);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3171:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(rep,"%02.0f",floor(ep[5])); stat|=repstr(rpath,"%S",rep);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3172:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(rep,"%03d", doy); stat|=repstr(rpath,"%n",rep);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3173:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(rep,"%04d", week); stat|=repstr(rpath,"%W",rep);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3174:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(rep,"%d", dow); stat|=repstr(rpath,"%D",rep);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3175:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(rep,"%c", 'a'+(int)ep[3]); stat|=repstr(rpath,"%H",rep);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3176:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(rep,"%02d", ((int)ep[4]/15)*15); stat|=repstr(rpath,"%t",rep);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3732:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *p,cmd[2048]="",tmpfile[1024]="",buff[1024],*fname,*dir="";
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3732:26: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
char *p,cmd[2048]="",tmpfile[1024]="",buff[1024],*fname,*dir="";
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3736:12: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
strcpy(tmpfile,file);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3737:21: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
if (!(p=strrchr(tmpfile,'.'))) return 0;
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3744:24: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
strcpy(uncfile,tmpfile); uncfile[p-tmpfile]='\0';
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3744:44: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
strcpy(uncfile,tmpfile); uncfile[p-tmpfile]='\0';
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3745:53: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
sprintf(cmd,"gzip -f -d -c \"%s\" > \"%s\"",tmpfile,uncfile);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3751:16: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
strcpy(tmpfile,uncfile);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3755:20: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
if ((p=strrchr(tmpfile,'.'))&&!strcmp(p,".tar")) {
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3757:24: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
strcpy(uncfile,tmpfile); uncfile[p-tmpfile]='\0';
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3757:44: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
strcpy(uncfile,tmpfile); uncfile[p-tmpfile]='\0';
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3758:21: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
strcpy(buff,tmpfile);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3770:52: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
sprintf(cmd,"tar -C \"%s\" -xf \"%s\"",dir,tmpfile);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3773:30: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
if (stat) remove(tmpfile);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3776:26: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
if (stat) remove(tmpfile);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3780:25: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
else if ((p=strrchr(tmpfile,'.'))&&strlen(p)>3&&(*(p+3)=='d'||*(p+3)=='D')) {
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3782:24: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
strcpy(uncfile,tmpfile);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3784:49: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
sprintf(cmd,"crx2rnx < \"%s\" > \"%s\"",tmpfile,uncfile);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3788:30: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
if (stat) remove(tmpfile);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3791:26: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
if (stat) remove(tmpfile);
data/rtklib-2.4.3+dfsg1/src/rtklib.h:477:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char SNR [NFREQ+NEXOBS]; /* signal strength (0.25 dBHz) */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:478:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char LLI [NFREQ+NEXOBS]; /* loss of lock indicator */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:479:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char code[NFREQ+NEXOBS]; /* code indicator (CODE_???) */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:505:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char type[MAXANT]; /* antenna type */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:506:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char code[MAXANT]; /* serial number or satellite code */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:597:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name [32]; /* common name */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:598:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char alias[32]; /* alias name */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:599:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char satno[16]; /* satellilte catalog number */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:601:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char desig[16]; /* international designator */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:642:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char msg[29]; /* SBAS message (226bit) padded by 0 */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:735:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char msg[212]; /* LEX message data part 1695 bits */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:782:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char stas[MAXSTA][8]; /* station names */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:824:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char glo_fcn[MAXPRNGLO+1]; /* glonass frequency channel number + 8 */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:836:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name [MAXANT]; /* marker name */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:837:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char marker [MAXANT]; /* marker number */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:838:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char antdes [MAXANT]; /* antenna descriptor */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:839:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char antsno [MAXANT]; /* antenna serial number */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:840:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rectype[MAXANT]; /* receiver type descriptor */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:841:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char recver [MAXANT]; /* receiver firmware version */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:842:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char recsno [MAXANT]; /* receiver serial number */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:874:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buff[MAXSOLMSG+1]; /* message buffer */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:910:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[128]; /* special message */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:911:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msgtype[256]; /* last message type */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:912:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msmtype[6][128]; /* msm signal types */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:916:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char lock[MAXSAT][NFREQ+NEXOBS]; /* lock time */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:917:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char loss[MAXSAT][NFREQ+NEXOBS]; /* loss of lock count */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:922:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buff[1200]; /* message buffer */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:926:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char opt[256]; /* RTCM dependent options */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:935:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tobs[6][MAXOBSTYPE][4]; /* rinex obs types */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:940:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char opt[256]; /* rinex dependent options */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:944:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char type[32]; /* data type */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:945:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[1024]; /* url path */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:946:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dir [1024]; /* local directory */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1016:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char anttype[2][MAXANT]; /* antenna types {rover,base} */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1019:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char exsats[MAXSAT]; /* excluded satellites (1:excluded,2:included) */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1020:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rnxopt[2][256]; /* rinex options {rover,base} */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1026:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pppopt[256]; /* ppp option */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1045:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sep[64]; /* field separator */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1046:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char prog[64]; /* program name */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1050:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char satantp[MAXSTRPATH]; /* satellite antenna parameters file */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1051:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rcvantp[MAXSTRPATH]; /* receiver antenna parameters file */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1052:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char stapos [MAXSTRPATH]; /* station positions file */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1053:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char geoid [MAXSTRPATH]; /* external geoid data file */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1054:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char iono [MAXSTRPATH]; /* ionosphere data file */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1055:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dcb [MAXSTRPATH]; /* dcb data file */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1056:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char eop [MAXSTRPATH]; /* eop data file */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1057:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char blq [MAXSTRPATH]; /* ocean tide loading blq file */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1058:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tempdir[MAXSTRPATH]; /* ftp/http temporaly directory */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1059:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char geexe [MAXSTRPATH]; /* google earth exec file */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1060:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char solstat[MAXSTRPATH]; /* solution statistics file */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1061:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char trace [MAXSTRPATH]; /* debug trace file */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1072:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mask[6][64]; /* code mask {GPS,GLO,GAL,QZS,SBS,CMP} */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1073:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char staid [32]; /* station id for rinex file name */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1074:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char prog [32]; /* program */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1075:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char runby [32]; /* run-by */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1076:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char marker[64]; /* marker name */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1077:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char markerno[32]; /* marker number */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1078:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char markertype[32]; /* marker type (ver.3) */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1079:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[2][32]; /* observer/agency */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1080:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rec [3][32]; /* receiver #/type/vers */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1081:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ant [3][32]; /* antenna #/type */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1084:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char comment[MAXCOMMENT][64]; /* comments */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1085:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rcvopt[256]; /* receiver dependent options */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1086:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char exsats[MAXSAT]; /* excluded satellites */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1095:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tobs[6][MAXOBSTYPE][4]; /* obs types {GPS,GLO,GAL,QZS,SBS,CMP} */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1105:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char vsat[NFREQ]; /* valid satellite flag */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1106:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char snr [NFREQ]; /* signal strength (0.25 dBHz) */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1107:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char fix [NFREQ]; /* ambiguity fix flag (1:fix,2:float,3:hold) */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1108:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char slip[NFREQ]; /* cycle-slip flag */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1127:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char flags[MAXSAT]; /* fix flags */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1141:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[MAXERRMSG]; /* error message buffer */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1154:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msgtype[256]; /* last message type */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1155:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char subfrm[MAXSAT][380]; /* subframe buffer */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1160:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char halfc[MAXSAT][NFREQ+NEXOBS]; /* half-cycle add flag */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1161:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char freqn[MAXOBS]; /* frequency number for javad */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1169:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buff[MAXRAWLEN]; /* message buffer */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1170:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char opt[256]; /* receiver dependent options */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1177:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char pbuff[255+4+2]; /* RT17: Packet buffer */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1190:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[MAXSTRPATH]; /* stream path */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1191:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg [MAXSTRMSG]; /* stream message */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1240:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char *buff[3]; /* input buffers {rov,base,corr} */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1241:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char *sbuf[2]; /* output buffers {sol1,sol2} */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1242:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char *pbuf[3]; /* peek buffers {rov,base,corr} */
data/rtklib-2.4.3+dfsg1/src/rtklib.h:1248:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char files[3][MAXSTRPATH]; /* download paths {rov,base,corr} */
data/rtklib-2.4.3+dfsg1/src/rtkpos.c:104:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char file_stat[1024]=""; /* rtk status file original path */
data/rtklib-2.4.3+dfsg1/src/rtkpos.c:179:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[1024];
data/rtklib-2.4.3+dfsg1/src/rtkpos.c:187:19: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp_stat=fopen(path,"w"))) {
data/rtklib-2.4.3+dfsg1/src/rtkpos.c:216:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[32],*p=buff;
data/rtklib-2.4.3+dfsg1/src/rtkpos.c:229:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"$POS,%d,%.3f,%d,%.4f,%.4f,%.4f,%.4f,%.4f,%.4f\n",week,tow,
data/rtklib-2.4.3+dfsg1/src/rtkpos.c:234:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"$POS,%d,%.3f,%d,%.4f,%.4f,%.4f,%.4f,%.4f,%.4f\n",week,tow,
data/rtklib-2.4.3+dfsg1/src/rtkpos.c:245:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"$VELACC,%d,%.3f,%d,%.4f,%.4f,%.4f,%.5f,%.5f,%.5f,%.4f,%.4f,%.4f,%.5f,%.5f,%.5f\n",
data/rtklib-2.4.3+dfsg1/src/rtkpos.c:252:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"$VELACC,%d,%.3f,%d,%.4f,%.4f,%.4f,%.5f,%.5f,%.5f,%.4f,%.4f,%.4f,%.5f,%.5f,%.5f\n",
data/rtklib-2.4.3+dfsg1/src/rtkpos.c:257:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"$CLK,%d,%.3f,%d,%d,%.3f,%.3f,%.3f,%.3f\n",
data/rtklib-2.4.3+dfsg1/src/rtkpos.c:279:16: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"$TROP,%d,%.3f,%d,%d,%.4f,%.4f\n",week,tow,
data/rtklib-2.4.3+dfsg1/src/rtkpos.c:288:16: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"$HWBIAS,%d,%.3f,%d,%d,%.4f,%.4f\n",week,tow,
data/rtklib-2.4.3+dfsg1/src/rtkpos.c:298:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[1024];
data/rtklib-2.4.3+dfsg1/src/rtkpos.c:311:19: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp_stat=fopen(path,"w"))) {
data/rtklib-2.4.3+dfsg1/src/rtkpos.c:322:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[MAXSOLMSG+1],id[32];
data/rtklib-2.4.3+dfsg1/src/rtkpos.c:359:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[256],tstr[32];
data/rtklib-2.4.3+dfsg1/src/rtkpos.c:368:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rtk->errbuf+rtk->neb,buff,n);
data/rtklib-2.4.3+dfsg1/src/rtkpos.c:1806:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[128]="";
data/rtklib-2.4.3+dfsg1/src/rtksvr.c:39:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buff[1024];
data/rtklib-2.4.3+dfsg1/src/rtksvr.c:51:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(svr->sbuf[index]+svr->nsb[index],buff,n);
data/rtklib-2.4.3+dfsg1/src/rtksvr.c:60:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buff[MAXSOLMSG+1];
data/rtklib-2.4.3+dfsg1/src/rtksvr.c:336:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[1024];
data/rtklib-2.4.3+dfsg1/src/rtksvr.c:445:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(svr->pbuf[i]+svr->npb[i],p,n);
data/rtklib-2.4.3+dfsg1/src/rtksvr.c:912:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[MAXSTRMSG],*p=msg;
data/rtklib-2.4.3+dfsg1/src/sbas.c:461:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[256],*p;
data/rtklib-2.4.3+dfsg1/src/sbas.c:467:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file,"r"))) {
data/rtklib-2.4.3+dfsg1/src/sbas.c:548:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *efiles[MAXEXFILE]={0},*ext;
data/rtklib-2.4.3+dfsg1/src/sbas.c:900:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char f[29];
data/rtklib-2.4.3+dfsg1/src/solution.c:218:27: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
case 5: solq=atoi(val[i]); break; /* fix quality */
data/rtklib-2.4.3+dfsg1/src/solution.c:219:27: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
case 6: nrcv=atoi(val[i]); break; /* # of satellite tracked */
data/rtklib-2.4.3+dfsg1/src/solution.c:270:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *p,*q,*val[MAXFIELD];
data/rtklib-2.4.3+dfsg1/src/solution.c:297:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *p,*q,s[64]=" ";
data/rtklib-2.4.3+dfsg1/src/solution.c:594:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[MAXSOLMSG+1];
data/rtklib-2.4.3+dfsg1/src/solution.c:717:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(files[i],"rb"))) {
data/rtklib-2.4.3+dfsg1/src/solution.c:871:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[32]="",*p;
data/rtklib-2.4.3+dfsg1/src/solution.c:931:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[MAXSOLMSG+1];
data/rtklib-2.4.3+dfsg1/src/solution.c:961:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[1024];
data/rtklib-2.4.3+dfsg1/src/solution.c:971:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(path,"r"))) {
data/rtklib-2.4.3+dfsg1/src/solution.c:1070:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"$GPRMC,,,,,,,,,,,,");
data/rtklib-2.4.3+dfsg1/src/solution.c:1072:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"*%02X%c%c",sum,0x0D,0x0A);
data/rtklib-2.4.3+dfsg1/src/solution.c:1095:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"*%02X%c%c",sum,0x0D,0x0A);
data/rtklib-2.4.3+dfsg1/src/solution.c:1109:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"$GPGGA,,,,,,,,,,,,,,");
data/rtklib-2.4.3+dfsg1/src/solution.c:1111:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"*%02X%c%c",sum,0x0D,0x0A);
data/rtklib-2.4.3+dfsg1/src/solution.c:1128:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"*%02X%c%c",sum,0x0D,0x0A);
data/rtklib-2.4.3+dfsg1/src/solution.c:1142:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"$GPGSA,A,1,,,,,,,,,,,,,,,");
data/rtklib-2.4.3+dfsg1/src/solution.c:1144:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"*%02X%c%c",sum,0x0D,0x0A);
data/rtklib-2.4.3+dfsg1/src/solution.c:1158:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"$GPGSA,A,%d",sol->stat<=0?1:3);
data/rtklib-2.4.3+dfsg1/src/solution.c:1160:28: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (i<nsat) p+=sprintf(p,",%02d",prn[i]);
data/rtklib-2.4.3+dfsg1/src/solution.c:1164:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,",%3.1f,%3.1f,%3.1f,1",dop[1],dop[2],dop[3]);
data/rtklib-2.4.3+dfsg1/src/solution.c:1166:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"*%02X%c%c",sum,0x0D,0x0A);
data/rtklib-2.4.3+dfsg1/src/solution.c:1177:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"$GLGSA,A,%d",sol->stat<=0?1:3);
data/rtklib-2.4.3+dfsg1/src/solution.c:1179:28: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (i<nsat) p+=sprintf(p,",%02d",prn[i]+64);
data/rtklib-2.4.3+dfsg1/src/solution.c:1183:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,",%3.1f,%3.1f,%3.1f,2",dop[1],dop[2],dop[3]);
data/rtklib-2.4.3+dfsg1/src/solution.c:1185:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"*%02X%c%c",sum,0x0D,0x0A);
data/rtklib-2.4.3+dfsg1/src/solution.c:1196:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"$GAGSA,A,%d",sol->stat<=0?1:3);
data/rtklib-2.4.3+dfsg1/src/solution.c:1198:28: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (i<nsat) p+=sprintf(p,",%02d",prn[i]);
data/rtklib-2.4.3+dfsg1/src/solution.c:1202:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,",%3.1f,%3.1f,%3.1f,3",dop[1],dop[2],dop[3]);
data/rtklib-2.4.3+dfsg1/src/solution.c:1204:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"*%02X%c%c",sum,0x0D,0x0A);
data/rtklib-2.4.3+dfsg1/src/solution.c:1219:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"$GPGSV,1,1,0,,,,,,,,,,,,,,,,");
data/rtklib-2.4.3+dfsg1/src/solution.c:1221:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"*%02X%c%c",sum,0x0D,0x0A);
data/rtklib-2.4.3+dfsg1/src/solution.c:1234:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"$GPGSV,%d,%d,%02d",nmsg,i+1,n);
data/rtklib-2.4.3+dfsg1/src/solution.c:1242:20: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,",%02d,%02.0f,%03.0f,%02.0f",prn,el,az,snr);
data/rtklib-2.4.3+dfsg1/src/solution.c:1244:21: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else p+=sprintf(p,",,,,");
data/rtklib-2.4.3+dfsg1/src/solution.c:1246:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,",1"); /* L1C/A */
data/rtklib-2.4.3+dfsg1/src/solution.c:1248:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"*%02X%c%c",sum,0x0D,0x0A);
data/rtklib-2.4.3+dfsg1/src/solution.c:1259:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"$GLGSV,%d,%d,%02d",nmsg,i+1,n);
data/rtklib-2.4.3+dfsg1/src/solution.c:1267:20: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,",%02d,%02.0f,%03.0f,%02.0f",prn,el,az,snr);
data/rtklib-2.4.3+dfsg1/src/solution.c:1269:21: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else p+=sprintf(p,",,,,");
data/rtklib-2.4.3+dfsg1/src/solution.c:1271:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,",1"); /* L1C/A */
data/rtklib-2.4.3+dfsg1/src/solution.c:1273:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"*%02X%c%c",sum,0x0D,0x0A);
data/rtklib-2.4.3+dfsg1/src/solution.c:1284:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"$GAGSV,%d,%d,%02d",nmsg,i+1,n);
data/rtklib-2.4.3+dfsg1/src/solution.c:1292:20: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,",%02d,%02.0f,%03.0f,%02.0f",prn,el,az,snr);
data/rtklib-2.4.3+dfsg1/src/solution.c:1294:21: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else p+=sprintf(p,",,,,");
data/rtklib-2.4.3+dfsg1/src/solution.c:1296:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,",7"); /* L1BC */
data/rtklib-2.4.3+dfsg1/src/solution.c:1298:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"*%02X%c%c",sum,0x0D,0x0A);
data/rtklib-2.4.3+dfsg1/src/solution.c:1394:42: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (opt->posf==SOLF_XYZ) p+=sprintf(p,"x/y/z-ecef=WGS84");
data/rtklib-2.4.3+dfsg1/src/solution.c:1395:42: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else if (opt->posf==SOLF_ENU) p+=sprintf(p,"e/n/u-baseline=WGS84");
data/rtklib-2.4.3+dfsg1/src/solution.c:1397:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,",Q=1:fix,2:float,3:sbas,4:dgps,5:single,6:ppp,ns=# of satellites)\n");
data/rtklib-2.4.3+dfsg1/src/solution.c:1444:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[64];
data/rtklib-2.4.3+dfsg1/src/solution.c:1515:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buff[MAXSOLMSG+1];
data/rtklib-2.4.3+dfsg1/src/solution.c:1532:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buff[MAXSOLMSG+1];
data/rtklib-2.4.3+dfsg1/src/solution.c:1552:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buff[MAXSOLMSG+1];
data/rtklib-2.4.3+dfsg1/src/solution.c:1573:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buff[MAXSOLMSG+1];
data/rtklib-2.4.3+dfsg1/src/stream.c:126:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[MAXSTRPATH]; /* file path */
data/rtklib-2.4.3+dfsg1/src/stream.c:127:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char openpath[MAXSTRPATH]; /* open file path */
data/rtklib-2.4.3+dfsg1/src/stream.c:145:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char saddr[256]; /* address string */
data/rtklib-2.4.3+dfsg1/src/stream.c:169:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char url[256]; /* url for proxy */
data/rtklib-2.4.3+dfsg1/src/stream.c:170:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mntpnt[256]; /* mountpoint */
data/rtklib-2.4.3+dfsg1/src/stream.c:171:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char user[256]; /* user */
data/rtklib-2.4.3+dfsg1/src/stream.c:172:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char passwd[256]; /* password */
data/rtklib-2.4.3+dfsg1/src/stream.c:173:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[NTRIP_MAXSTR]; /* mountpoint string for server */
data/rtklib-2.4.3+dfsg1/src/stream.c:174:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buff[NTRIP_MAXRSP]; /* response buffer */
data/rtklib-2.4.3+dfsg1/src/stream.c:183:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char addr[1024]; /* download address */
data/rtklib-2.4.3+dfsg1/src/stream.c:184:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[1024]; /* download file path */
data/rtklib-2.4.3+dfsg1/src/stream.c:185:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char user[256]; /* user for ftp */
data/rtklib-2.4.3+dfsg1/src/stream.c:186:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char passwd[256]; /* password for ftp */
data/rtklib-2.4.3+dfsg1/src/stream.c:187:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char local[1024]; /* local file path */
data/rtklib-2.4.3+dfsg1/src/stream.c:199:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char localdir[1024]=""; /* local directory for ftp/http */
data/rtklib-2.4.3+dfsg1/src/stream.c:200:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char proxyaddr[256]=""; /* http/ntrip/ftp proxy address */
data/rtklib-2.4.3+dfsg1/src/stream.c:248:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buff[128];
data/rtklib-2.4.3+dfsg1/src/stream.c:283:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dcb[64]="";
data/rtklib-2.4.3+dfsg1/src/stream.c:303:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg,"bitrate error (%d)",brate);
data/rtklib-2.4.3+dfsg1/src/stream.c:317:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg,"device open error (%d)",(int)GetLastError());
data/rtklib-2.4.3+dfsg1/src/stream.c:323:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg,"getconfig error (%d)",(int)GetLastError());
data/rtklib-2.4.3+dfsg1/src/stream.c:329:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(dcb,"baud=%d parity=%c data=%d stop=%d",brate,parity,bsize,stopb);
data/rtklib-2.4.3+dfsg1/src/stream.c:331:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg,"buiddcb error (%d)",(int)GetLastError());
data/rtklib-2.4.3+dfsg1/src/stream.c:355:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg,"serial thread error (%d)",(int)GetLastError());
data/rtklib-2.4.3+dfsg1/src/stream.c:369:22: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((serial->dev=open(dev,rw|O_NOCTTY|O_NONBLOCK))<0) {
data/rtklib-2.4.3+dfsg1/src/stream.c:370:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg,"device open error (%d)",errno);
data/rtklib-2.4.3+dfsg1/src/stream.c:456:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *rw,tagpath[MAXSTRPATH+4]="";
data/rtklib-2.4.3+dfsg1/src/stream.c:457:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tagh[TIMETAGH_LEN+1]="";
data/rtklib-2.4.3+dfsg1/src/stream.c:479:20: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(file->fp=fopen(file->openpath,rw))) {
data/rtklib-2.4.3+dfsg1/src/stream.c:490:28: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(file->fp_tag=fopen(tagpath,rw))) {
data/rtklib-2.4.3+dfsg1/src/stream.c:511:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tagh+TIMETAGH_LEN-4,&file->tick_f,sizeof(file->tick_f));
data/rtklib-2.4.3+dfsg1/src/stream.c:521:17: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fp=fopen(tagpath,"rb"))) {
data/rtklib-2.4.3+dfsg1/src/stream.c:601:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char openpath[MAXSTRPATH];
data/rtklib-2.4.3+dfsg1/src/stream.c:670:17: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg,"end");
data/rtklib-2.4.3+dfsg1/src/stream.c:678:13: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg,"T%+.1fs",(int)tick<0?0.0:(int)tick/1000.0);
data/rtklib-2.4.3+dfsg1/src/stream.c:696:20: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (nr<=0) sprintf(msg,"end");
data/rtklib-2.4.3+dfsg1/src/stream.c:772:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[MAXSTRPATH],*p,*q;
data/rtklib-2.4.3+dfsg1/src/stream.c:826:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg,"sockopt error: notimeo");
data/rtklib-2.4.3+dfsg1/src/stream.c:834:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg,"sockopt error: bufsiz");
data/rtklib-2.4.3+dfsg1/src/stream.c:838:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg,"sockopt error: nodelay");
data/rtklib-2.4.3+dfsg1/src/stream.c:914:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg,"socket error (%d)",errsock());
data/rtklib-2.4.3+dfsg1/src/stream.c:935:13: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg,"bind error (%d) : %d",errsock(),tcp->port);
data/rtklib-2.4.3+dfsg1/src/stream.c:953:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&tcp->addr.sin_addr,hp->h_addr,hp->h_length);
data/rtklib-2.4.3+dfsg1/src/stream.c:974:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char port[256]="";
data/rtklib-2.4.3+dfsg1/src/stream.c:1010:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char saddr[256]="";
data/rtklib-2.4.3+dfsg1/src/stream.c:1033:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg,"waiting...");
data/rtklib-2.4.3+dfsg1/src/stream.c:1037:45: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (n==1) sprintf(msg,"%s",saddr); else sprintf(msg,"%d clients",n);
data/rtklib-2.4.3+dfsg1/src/stream.c:1054:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg,"accept error (%d)",err);
data/rtklib-2.4.3+dfsg1/src/stream.c:1063:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&tcpsvr->cli[i].addr,&addr,sizeof(addr));
data/rtklib-2.4.3+dfsg1/src/stream.c:1095:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg,"recv error (%d)",err);
data/rtklib-2.4.3+dfsg1/src/stream.c:1119:13: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg,"send error (%d)",err);
data/rtklib-2.4.3+dfsg1/src/stream.c:1150:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg,"connect error (%d)",err);
data/rtklib-2.4.3+dfsg1/src/stream.c:1157:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg,"connecting...");
data/rtklib-2.4.3+dfsg1/src/stream.c:1170:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char port[256]="";
data/rtklib-2.4.3+dfsg1/src/stream.c:1212:13: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg,"timeout");
data/rtklib-2.4.3+dfsg1/src/stream.c:1232:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg,"recv error (%d)",err);
data/rtklib-2.4.3+dfsg1/src/stream.c:1252:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg,"send error (%d)",err);
data/rtklib-2.4.3+dfsg1/src/stream.c:1288:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[256+NTRIP_MAXSTR],*p=buff;
data/rtklib-2.4.3+dfsg1/src/stream.c:1295:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"\r\n");
data/rtklib-2.4.3+dfsg1/src/stream.c:1307:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024],user[512],*p=buff;
data/rtklib-2.4.3+dfsg1/src/stream.c:1315:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"Accept: */*\r\n");
data/rtklib-2.4.3+dfsg1/src/stream.c:1316:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"Connection: close\r\n");
data/rtklib-2.4.3+dfsg1/src/stream.c:1320:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"Authorization: Basic ");
data/rtklib-2.4.3+dfsg1/src/stream.c:1322:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"\r\n");
data/rtklib-2.4.3+dfsg1/src/stream.c:1324:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf(p,"\r\n");
data/rtklib-2.4.3+dfsg1/src/stream.c:1363:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg,"response overflow");
data/rtklib-2.4.3+dfsg1/src/stream.c:1396:13: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg,"source table received");
data/rtklib-2.4.3+dfsg1/src/stream.c:1400:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg,"no mountp. reconnect...");
data/rtklib-2.4.3+dfsg1/src/stream.c:1417:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(msg,"response overflow");
data/rtklib-2.4.3+dfsg1/src/stream.c:1463:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char addr[256]="",port[256]="",tpath[MAXSTRPATH];
data/rtklib-2.4.3+dfsg1/src/stream.c:1482:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(port,"%d",type?NTRIP_CLI_PORT:NTRIP_SVR_PORT);
data/rtklib-2.4.3+dfsg1/src/stream.c:1517:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buff,ntrip->buff+ntrip->nb-nb,nb);
data/rtklib-2.4.3+dfsg1/src/stream.c:1540:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[MAXSTRPATH],*p,*q;
data/rtklib-2.4.3+dfsg1/src/stream.c:1611:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char remote[1024],local[1024],tmpfile[1024],errfile[1024],*p;
data/rtklib-2.4.3+dfsg1/src/stream.c:1611:35: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
char remote[1024],local[1024],tmpfile[1024],errfile[1024],*p;
data/rtklib-2.4.3+dfsg1/src/stream.c:1612:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[2048],env[1024]="",opt[1024],*proxyopt="",*proto;
data/rtklib-2.4.3+dfsg1/src/stream.c:1632:12: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
strcpy(tmpfile,local);
data/rtklib-2.4.3+dfsg1/src/stream.c:1633:20: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
if ((p=strrchr(tmpfile,'.'))&&
data/rtklib-2.4.3+dfsg1/src/stream.c:1638:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fp=fopen(tmpfile,"rb"))) {
data/rtklib-2.4.3+dfsg1/src/stream.c:1638:19: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
if ((fp=fopen(tmpfile,"rb"))) {
data/rtklib-2.4.3+dfsg1/src/stream.c:1640:27: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
strcpy(ftp->local,tmpfile);
data/rtklib-2.4.3+dfsg1/src/stream.c:1678:34: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
if (rtk_uncompress(local,tmpfile)) {
data/rtklib-2.4.3+dfsg1/src/stream.c:1680:26: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
strcpy(local,tmpfile);
data/rtklib-2.4.3+dfsg1/src/stream.c:1751:13: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(msg,"ftp thread error");
data/rtklib-2.4.3+dfsg1/src/stream.c:1769:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p+=sprintf((char *)p,"\r\n");
data/rtklib-2.4.3+dfsg1/src/stream.c:2170:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buff[1024];
data/rtklib-2.4.3+dfsg1/src/stream.c:2185:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mbuff[1024]="",*args[256],*p;
data/rtklib-2.4.3+dfsg1/src/stream.c:2203:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[1024],buff[1024]="",*p,*q;
data/rtklib-2.4.3+dfsg1/src/stream.c:2211:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(path+strlen(path),":%d",brate);
data/rtklib-2.4.3+dfsg1/src/stream.c:2228:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buff[1024];
data/rtklib-2.4.3+dfsg1/src/stream.c:2230:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[1024],cmdend[]="\r\n";
data/rtklib-2.4.3+dfsg1/src/streamsvr.c:62:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[1024],*p;
data/rtklib-2.4.3+dfsg1/src/streamsvr.c:468:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file1[MAXSTRPATH],file2[MAXSTRPATH],*p;
data/rtklib-2.4.3+dfsg1/src/streamsvr.c:552:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[MAXSTRMSG]="",*p=msg;
data/rtklib-2.4.3+dfsg1/src/streamsvr.c:585:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buff,svr->pbuf,n);
data/rtklib-2.4.3+dfsg1/src/tle.c:329:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char satno[16];
data/rtklib-2.4.3+dfsg1/src/tle.c:391:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *p,buff[256];
data/rtklib-2.4.3+dfsg1/src/tle.c:394:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file,"r"))) {
data/rtklib-2.4.3+dfsg1/src/tle.c:457:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *p,buff[256],name[256],satno[256],desig[256];
data/rtklib-2.4.3+dfsg1/src/tle.c:460:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file,"r"))) {
data/rtklib-2.4.3+dfsg1/test/utest/t_gloeph.c:10:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s1[64],s2[64];
data/rtklib-2.4.3+dfsg1/test/utest/t_gloeph.c:181:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen(outfile,"w");
data/rtklib-2.4.3+dfsg1/test/utest/t_ionex.c:11:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[64];
data/rtklib-2.4.3+dfsg1/test/utest/t_ionex.c:152:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen("testionex3.m","w");
data/rtklib-2.4.3+dfsg1/test/utest/t_ionex.c:172:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen("testionex3.m","a");
data/rtklib-2.4.3+dfsg1/test/utest/t_ionex.c:209:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen("testionex4.m","w");
data/rtklib-2.4.3+dfsg1/test/utest/t_matrix.c:121:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(C,B,sizeof(double)*4);
data/rtklib-2.4.3+dfsg1/test/utest/t_misc.c:11:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[32][256],*paths[32];
data/rtklib-2.4.3+dfsg1/test/utest/t_misc.c:51:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rpath[1024];
data/rtklib-2.4.3+dfsg1/test/utest/t_misc.c:101:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *paths[100];
data/rtklib-2.4.3+dfsg1/test/utest/t_misc.c:155:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buff[1024]={0};
data/rtklib-2.4.3+dfsg1/test/utest/t_preceph.c:10:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[64];
data/rtklib-2.4.3+dfsg1/test/utest/t_preceph.c:24:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[64];
data/rtklib-2.4.3+dfsg1/test/utest/t_preceph.c:140:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen("testpeph1.out","w");
data/rtklib-2.4.3+dfsg1/test/utest/t_preceph.c:186:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen("testpeph2.out","w");
data/rtklib-2.4.3+dfsg1/test/utest/t_rinex.c:12:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[64];
data/rtklib-2.4.3+dfsg1/test/utest/t_rinex.c:29:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[64],s1[64],s2[64];
data/rtklib-2.4.3+dfsg1/test/utest/t_time.c:13:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s1[30]="123456789012345678901234567890";
data/rtklib-2.4.3+dfsg1/test/utest/t_time.c:14:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s2[30]="....3D45......................";
data/rtklib-2.4.3+dfsg1/test/utest/t_time.c:15:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s3[30]="... 3456.789 ................";
data/rtklib-2.4.3+dfsg1/test/utest/t_time.c:31:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s1[30]="....2004 1 1 0 1 2.345........";
data/rtklib-2.4.3+dfsg1/test/utest/t_time.c:32:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s2[30]=".... 00 2 3 23 59 59.999.....";
data/rtklib-2.4.3+dfsg1/test/utest/t_time.c:33:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s3[30]=".... 80 10 30 6 58 9.........";
data/rtklib-2.4.3+dfsg1/test/utest/t_time.c:34:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s4[30]=".... 37 12 31 1 2 3 .........";
data/rtklib-2.4.3+dfsg1/test/utest/t_time.c:212:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[128];
data/rtklib-2.4.3+dfsg1/test/utest/t_time.c:244:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s1[64],s2[64];
data/rtklib-2.4.3+dfsg1/test/utest/t_tle.c:100:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sat[32];
data/rtklib-2.4.3+dfsg1/util/geniono/estiono.c:166:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[64];
data/rtklib-2.4.3+dfsg1/util/geniono/estiono.c:219:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *ifile[32],*ofile="";
data/rtklib-2.4.3+dfsg1/util/geniono/estiono.c:232:22: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (*ofile&&!(fp=fopen(ofile,"w"))) {
data/rtklib-2.4.3+dfsg1/util/geniono/gengrid.c:41:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[64];
data/rtklib-2.4.3+dfsg1/util/geniono/gengrid.c:57:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[1024];
data/rtklib-2.4.3+dfsg1/util/geniono/gengrid.c:83:26: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file,"w"))) {
data/rtklib-2.4.3+dfsg1/util/geniono/geniono.c:254:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[64];
data/rtklib-2.4.3+dfsg1/util/geniono/geniono.c:334:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *ifile[32],*ofile="",*afile="",*dfile="",ant[64]="";
data/rtklib-2.4.3+dfsg1/util/geniono/geniono.c:358:22: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (*ofile&&!(fp=fopen(ofile,"w"))) {
data/rtklib-2.4.3+dfsg1/util/geniono/genstec.c:253:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[64];
data/rtklib-2.4.3+dfsg1/util/geniono/genstec.c:333:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *ifile[32],*ofile="",*afile="",*dfile="",ant[64]="";
data/rtklib-2.4.3+dfsg1/util/geniono/genstec.c:357:22: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (*ofile&&!(fp=fopen(ofile,"w"))) {
data/rtklib-2.4.3+dfsg1/util/geniono/rcvdcb.c:231:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[64];
data/rtklib-2.4.3+dfsg1/util/geniono/rcvdcb.c:288:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *rfile[32],*ifile="";
data/rtklib-2.4.3+dfsg1/util/logfile/margelog.c:14:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ifiles[32]={},*ofile="";
data/rtklib-2.4.3+dfsg1/util/logfile/margelog.c:15:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char itagfile[1024],otagfile[1024];
data/rtklib-2.4.3+dfsg1/util/logfile/margelog.c:18:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buff[4096],tagbuff[64];
data/rtklib-2.4.3+dfsg1/util/logfile/margelog.c:26:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(ofp =fopen(ofile ,"wb"))||
data/rtklib-2.4.3+dfsg1/util/logfile/margelog.c:27:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
!(otagfp=fopen(otagfile,"wb")) {
data/rtklib-2.4.3+dfsg1/util/logfile/margelog.c:34:16: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(ifp =fopen(ifiles[i],"rb"))||
data/rtklib-2.4.3+dfsg1/util/logfile/margelog.c:35:16: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
!(itagfp=fopen(itagfile ,"rb")) {
data/rtklib-2.4.3+dfsg1/util/rnx2rtcm/rnx2rtcm.c:146:24: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (*outfile&&!(fp=fopen(outfile,"wb"))) {
data/rtklib-2.4.3+dfsg1/util/rnx2rtcm/rnx2rtcm.c:197:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *infile[16]={0},*outfile="",buff[1024],*p;
data/rtklib-2.4.3+dfsg1/util/rnx2rtcm/rnx2rtcm.c:210:59: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if (!strcmp(argv[i],"-sta")&&i+1<argc) staid=atoi(argv[++i]);
data/rtklib-2.4.3+dfsg1/util/rnx2rtcm/rnx2rtcm.c:214:69: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
for (p=strtok(buff,",");p;p=strtok(NULL,",")) type[m++]=atoi(p);
data/rtklib-2.4.3+dfsg1/util/rnx2rtcm/rnx2rtcm.c:216:61: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if (!strcmp(argv[i],"-x" )&&i+1<argc) trlevel=atoi(argv[++i]);
data/rtklib-2.4.3+dfsg1/util/simobs/simobs.c:82:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[64];
data/rtklib-2.4.3+dfsg1/util/simobs/simobs.c:191:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *infile[16]={0},*outfile="";
data/rtklib-2.4.3+dfsg1/util/simobs/simobs.c:235:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(outfile,"w"))) {
data/rtklib-2.4.3+dfsg1/util/simobs/simobs.c:241:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(rnxopt.comment[0],"SIMULATED OBS DATA");
data/rtklib-2.4.3+dfsg1/util/testeph/diffeph.c:42:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s1[32],s2[32];
data/rtklib-2.4.3+dfsg1/util/testeph/diffeph.c:74:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[32];
data/rtklib-2.4.3+dfsg1/util/testeph/diffeph.c:134:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *files[32],*ext;
data/rtklib-2.4.3+dfsg1/util/testeph/diffeph.c:142:57: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (!strcmp(argv[i],"-s" )&&i+1<argc) sat =atoi(argv[++i]);
data/rtklib-2.4.3+dfsg1/util/testeph/diffeph.c:143:57: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if (!strcmp(argv[i],"-1" )&&i+1<argc) eph1 =atoi(argv[++i]);
data/rtklib-2.4.3+dfsg1/util/testeph/diffeph.c:144:57: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if (!strcmp(argv[i],"-2" )&&i+1<argc) eph2 =atoi(argv[++i]);
data/rtklib-2.4.3+dfsg1/util/testeph/diffeph.c:145:57: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if (!strcmp(argv[i],"-x" )&&i+1<argc) trl =atoi(argv[++i]);
data/rtklib-2.4.3+dfsg1/util/testeph/diffeph.c:192:21: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(files[i],"rb"))) {
data/rtklib-2.4.3+dfsg1/util/testeph/dumpssr.c:35:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[32],id[16];
data/rtklib-2.4.3+dfsg1/util/testeph/dumpssr.c:105:55: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if (!strcmp(argv[i],"-s")&&i+1<argc) sat=atoi(argv[++i]);
data/rtklib-2.4.3+dfsg1/util/testeph/dumpssr.c:106:55: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if (!strcmp(argv[i],"-x")&&i+1<argc) trl=atoi(argv[++i]);
data/rtklib-2.4.3+dfsg1/util/testeph/dumpssr.c:115:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file,"rb"))) {
data/rtklib-2.4.3+dfsg1/util/testlex/convlex.c:18:56: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if (!strcmp(argv[i],"-t")&&i+1<argc) type=atoi(argv[++i]);
data/rtklib-2.4.3+dfsg1/util/testlex/dumplex.c:19:55: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (!strcmp(argv[i],"-s")&&i+1<argc) sat=atoi(argv[++i]);
data/rtklib-2.4.3+dfsg1/util/testlex/dumplex.c:20:55: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if (!strcmp(argv[i],"-x")&&i+1<argc) trl=atoi(argv[++i]);
data/rtklib-2.4.3+dfsg1/util/testlex/dumpssr.c:35:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tstr[32],id[16];
data/rtklib-2.4.3+dfsg1/util/testlex/dumpssr.c:105:55: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if (!strcmp(argv[i],"-s")&&i+1<argc) sat=atoi(argv[++i]);
data/rtklib-2.4.3+dfsg1/util/testlex/dumpssr.c:106:55: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if (!strcmp(argv[i],"-x")&&i+1<argc) trl=atoi(argv[++i]);
data/rtklib-2.4.3+dfsg1/util/testlex/dumpssr.c:115:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(file,"rb"))) {
data/rtklib-2.4.3+dfsg1/util/testlex/outlexion.c:88:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
nlat=atoi(argv[++i]);
data/rtklib-2.4.3+dfsg1/util/testlex/outlexion.c:89:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
nlon=atoi(argv[++i]);
data/rtklib-2.4.3+dfsg1/util/testlex/outlexion.c:106:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!(fp=fopen(ofile,"w"))) {
data/rtklib-2.4.3+dfsg1/app/appcmn/cmdoptdlg.cpp:50:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (buff[strlen(buff)-1]=='\n') buff[strlen(buff)-1]='\0';
data/rtklib-2.4.3+dfsg1/app/appcmn/cmdoptdlg.cpp:50:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (buff[strlen(buff)-1]=='\n') buff[strlen(buff)-1]='\0';
data/rtklib-2.4.3+dfsg1/app/appcmn/console.cpp:115:23: [1] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source is a constant character.
if (p-buff>=67) p+=sprintf(p,"\n");
data/rtklib-2.4.3+dfsg1/app/appcmn/console.cpp:117:26: [1] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source is a constant character.
if (p-buff>=MAXLEN) p+=sprintf(p,"\n");
data/rtklib-2.4.3+dfsg1/app/appcmn/refdlg.cpp:154:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!sol||strlen(buff)<68) continue;
data/rtklib-2.4.3+dfsg1/app/appcmn/refdlg.cpp:157:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(code,buff+14,4); code[4]='\0';
data/rtklib-2.4.3+dfsg1/app/appcmn/viewer.cpp:79:19: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
Text->SelLength=wcslen(str);
data/rtklib-2.4.3+dfsg1/app/appcmn/viewer.cpp:127:7: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len=wcslen(wbuff);
data/rtklib-2.4.3+dfsg1/app/appcmn_qt/console.cpp:77:40: [1] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source is a constant character.
if (p-buff>=67) p+=sprintf(p,"\n");
data/rtklib-2.4.3+dfsg1/app/appcmn_qt/console.cpp:79:36: [1] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source is a constant character.
if (p-buff>=MAXLEN) p+=sprintf(p,"\n");
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:240:40: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
if ((p=strrchr(ofile[6],'.'))) strcpy(p,".");
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:241:14: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
else strcat(ofile[6],".");
data/rtklib-2.4.3+dfsg1/app/convbin/convbin.c:275:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(p)<4||p[1]!='L') continue;
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:71:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!(p=strrchr(file,'.'))) p=file+strlen(file);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:180:40: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
if (!strcmp(ofile[i+1],ifile)) strcat(ofile[i+1],"_");
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:422:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!*ext||strlen(ext)<4) return;
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:777:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(rnxopt.staid,RnxCode.c_str(),31);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:779:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(rnxopt.runby,RunBy.c_str(),31);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:780:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(rnxopt.marker,Marker.c_str(),63);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:781:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(rnxopt.markerno,MarkerNo.c_str(),31);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:782:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(rnxopt.markertype,MarkerType.c_str(),31);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:783:23: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
for (i=0;i<2;i++) strncpy(rnxopt.name[i],Name[i].c_str(),31);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:784:23: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
for (i=0;i<3;i++) strncpy(rnxopt.rec [i],Rec [i].c_str(),31);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:785:23: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
for (i=0;i<3;i++) strncpy(rnxopt.ant [i],Ant [i].c_str(),31);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:790:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(rnxopt.rcvopt,RcvOption.c_str(),255);
data/rtklib-2.4.3+dfsg1/app/rtkconv/convmain.cpp:799:23: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
for (i=0;i<2;i++) strncpy(rnxopt.comment[i+2],Comment[i].c_str(),63);
data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/convmain.cpp:756:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(conversionThread->rnxopt.staid,qPrintable(RnxCode),31);
data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/convmain.cpp:758:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(conversionThread->rnxopt.runby,qPrintable(RunBy),31);
data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/convmain.cpp:759:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(conversionThread->rnxopt.marker,qPrintable(Marker),63);
data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/convmain.cpp:760:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(conversionThread->rnxopt.markerno,qPrintable(MarkerNo),31);
data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/convmain.cpp:761:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(conversionThread->rnxopt.markertype,qPrintable(MarkerType),31);
data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/convmain.cpp:762:23: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
for (i=0;i<2;i++) strncpy(conversionThread->rnxopt.name[i],qPrintable(Name[i]),31);
data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/convmain.cpp:763:23: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
for (i=0;i<3;i++) strncpy(conversionThread->rnxopt.rec [i],qPrintable(Rec [i]),31);
data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/convmain.cpp:764:23: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
for (i=0;i<3;i++) strncpy(conversionThread->rnxopt.ant [i],qPrintable(Ant [i]),31);
data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/convmain.cpp:769:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(conversionThread->rnxopt.rcvopt,qPrintable(RcvOption),255);
data/rtklib-2.4.3+dfsg1/app/rtkconv_qt/convmain.cpp:778:23: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
for (i=0;i<2;i++) strncpy(conversionThread->rnxopt.comment[i+2],qPrintable(Comment[i]),63);
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:62:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len=strlen(str.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:98:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!(p=strrchr(file,'.'))) p=file+strlen(file);
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:752:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len=strlen(str.c_str());
data/rtklib-2.4.3+dfsg1/app/rtkget/getmain.cpp:755:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(stas[nsta],str.c_str(),len);
data/rtklib-2.4.3+dfsg1/app/rtkget_qt/getmain.cpp:753:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(stas[nsta],qPrintable(str),len);
data/rtklib-2.4.3+dfsg1/app/rtklaunch/launchmain.cpp:39:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!(p=strrchr(file,'.'))) p=file+strlen(file);
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:274:23: [1] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source is a constant character.
if (p-buff>=67) p+=sprintf(p,"\n");
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:276:26: [1] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source is a constant character.
if (p-buff>=MAXLEN) p+=sprintf(p,"\n");
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1069:61: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
if (eph[k].toe.time!=0) time2str(eph[k].toe,tstr,0); else strcpy(tstr,"-");
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1071:61: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
if (eph[k].toc.time!=0) time2str(eph[k].toc,tstr,0); else strcpy(tstr,"-");
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1073:61: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
if (eph[k].ttr.time!=0) time2str(eph[k].ttr,tstr,0); else strcpy(tstr,"-");
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1165:63: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
if (geph[i].toe.time!=0) time2str(geph[i].toe,tstr,0); else strcpy(tstr,"-");
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1167:63: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
if (geph[i].tof.time!=0) time2str(geph[i].tof,tstr,0); else strcpy(tstr,"-");
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1243:8: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
else strcpy(tstr,"-");
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1246:8: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
else strcpy(tstr,"-");
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1310:58: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
if (time.time!=0) time2str(gpst2utc(time),tstr,3); else strcpy(tstr,"-");
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1314:48: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
if (time.time!=0) time2str(time,tstr,3); else strcpy(tstr,"-");
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1549:8: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
else strcpy(tstr,"-");
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1592:9: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
else strcpy(tstr,"-");
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1647:8: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
else strcpy(tstr,"-");
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1823:58: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
if (dgps[i].t0.time) time2str(dgps[i].t0,tstr,0); else strcpy(tstr,"-");
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:1882:62: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
if (ssr[i].t0[0].time) time2str(ssr[i].t0[0],tstr,0); else strcpy(tstr,"-");
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:2026:30: [1] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source is a constant character.
if (lexeph[i].tof.time==0) sprintf(tstr,"-");
data/rtklib-2.4.3+dfsg1/app/rtknavi/mondlg.cpp:2035:30: [1] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source is a constant character.
if (lexeph[i].toe.time==0) sprintf(tstr,"-");
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:149:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!(p=strrchr(file,'.'))) p=file+strlen(file);
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:207:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strwrite(&monistr,(unsigned char *)MSG_DISCONN,strlen(MSG_DISCONN));
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:486:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strwrite(&monistr,(unsigned char *)MSG_DISCONN,strlen(MSG_DISCONN));
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1981:37: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
if ((p=strstr(p,"@@"))) strncpy(p,"\r\n",2); else break;
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:1988:37: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
if ((p=strstr(p,"@@"))) strncpy(p,"\r\n",2); else break;
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:2184:39: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
if ((p=strstr(p,"\r\n"))) strncpy(p,"@@",2); else break;
data/rtklib-2.4.3+dfsg1/app/rtknavi/navimain.cpp:2191:39: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
if ((p=strstr(p,"\r\n"))) strncpy(p,"@@",2); else break;
data/rtklib-2.4.3+dfsg1/app/rtknavi/naviopt.cpp:823:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(strpath[i],"");
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:245:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
AddConsole((unsigned char*)raw.msgtype,strlen(raw.msgtype),1);
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:254:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
AddConsole((unsigned char*)raw.msgtype,strlen(raw.msgtype),1);
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:263:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
AddConsole((unsigned char*)raw.msgtype,strlen(raw.msgtype),1);
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:288:40: [1] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source is a constant character.
if (p-buff>=67) p+=sprintf(p,"\n");
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:290:36: [1] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source is a constant character.
if (p-buff>=MAXLEN) p+=sprintf(p,"\n");
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:1054:61: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
if (eph[k].toe.time!=0) time2str(eph[k].toe,tstr,0); else strcpy(tstr,"-");
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:1056:61: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
if (eph[k].toc.time!=0) time2str(eph[k].toc,tstr,0); else strcpy(tstr,"-");
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:1058:61: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
if (eph[k].ttr.time!=0) time2str(eph[k].ttr,tstr,0); else strcpy(tstr,"-");
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:1150:63: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
if (geph[i].toe.time!=0) time2str(geph[i].toe,tstr,0); else strcpy(tstr,"-");
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:1152:63: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
if (geph[i].tof.time!=0) time2str(geph[i].tof,tstr,0); else strcpy(tstr,"-");
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:1230:8: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
else strcpy(tstr,"-");
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:1233:8: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
else strcpy(tstr,"-");
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:1298:61: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
if (time.time!=0) time2str(gpst2utc(time),tstr,3); else strcpy(tstr,"-");
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:1302:48: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
if (time.time!=0) time2str(time,tstr,3); else strcpy(tstr,"-");
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:1537:8: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
else strcpy(tstr,"-");
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:1584:9: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
else strcpy(tstr,"-");
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:1640:8: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
else strcpy(tstr,"-");
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:1816:58: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
if (dgps[i].t0.time) time2str(dgps[i].t0,tstr,0); else strcpy(tstr,"-");
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:1875:62: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
if (ssr[i].t0[0].time) time2str(ssr[i].t0[0],tstr,0); else strcpy(tstr,"-");
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:2008:30: [1] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source is a constant character.
if (lexeph[i].tof.time==0) sprintf(tstr,"-");
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/mondlg.cpp:2017:30: [1] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source is a constant character.
if (lexeph[i].toe.time==0) sprintf(tstr,"-");
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:271:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strwrite(&monistr,(unsigned char *)MSG_DISCONN,strlen(MSG_DISCONN));
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:465:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strwrite(&monistr,(unsigned char *)MSG_DISCONN,strlen(MSG_DISCONN));
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:618:47: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
if (str==STR_SERIAL) strncpy(path,qPrintable(Paths[i][0]),1024);
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:619:47: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
else if (str==STR_FILE ) strncpy(path,qPrintable(Paths[i][2]),1024);
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:620:47: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
else if (str==STR_FTP||str==STR_HTTP) strncpy(path,qPrintable(Paths[i][3]),1024);
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:621:47: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
else strncpy(path,qPrintable(Paths[i][1]),1024);
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:685:47: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
if (str==STR_SERIAL) strncpy(path,qPrintable(Paths[i][0]),1024);
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:686:47: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
else if (str==STR_FILE ) strncpy(path,qPrintable(Paths[i][2]),1024);
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:687:47: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
else if (str==STR_FTP||str==STR_HTTP) strncpy(path,qPrintable(Paths[i][3]),1024);
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:688:47: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
else strncpy(path,qPrintable(Paths[i][1]),1024);
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/navimain.cpp:961:39: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
if (strs[i]==STR_NONE ) strcpy(paths[i],"");
data/rtklib-2.4.3+dfsg1/app/rtknavi_qt/naviopt.cpp:865:4: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(strpath[i],"");
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:218:13: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(p+3,"N"); readrnxt(navfile,1,ts,te,tint,opt,NULL,nav,NULL);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:219:13: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(p+3,"G"); readrnxt(navfile,1,ts,te,tint,opt,NULL,nav,NULL);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:220:13: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(p+3,"H"); readrnxt(navfile,1,ts,te,tint,opt,NULL,nav,NULL);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:221:13: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(p+3,"Q"); readrnxt(navfile,1,ts,te,tint,opt,NULL,nav,NULL);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:222:13: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(p+3,"L"); readrnxt(navfile,1,ts,te,tint,opt,NULL,nav,NULL);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:223:13: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(p+3,"P"); readrnxt(navfile,1,ts,te,tint,opt,NULL,nav,NULL);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:229:13: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(p+3,"N"); readrnxt(navfile,1,ts,te,tint,opt,NULL,nav,NULL);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:700:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(buff)<68||strncmp(buff+14,sta,4)) continue;
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:884:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strwrite(Stream+i,(unsigned char *)cmd,strlen(cmd));
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotdata.cpp:919:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strwrite(Stream+i,(unsigned char *)cmd,strlen(cmd));
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:299:27: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
case SYS_GPS: strcpy(s,"G"); break;
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:300:27: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
case SYS_GLO: strcpy(s,"R"); break;
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:301:27: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
case SYS_GAL: strcpy(s,"E"); break;
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:302:27: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
case SYS_QZS: strcpy(s,"J"); break;
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:303:27: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
case SYS_CMP: strcpy(s,"C"); break;
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotinfo.cpp:304:27: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
case SYS_SBS: strcpy(s,"S"); break;
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:77:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!(p=strrchr(file,'.'))) p=file+strlen(file);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:1958:41: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
if ((p=strrchr(file,'\\'))) strncpy(sta,p+1,4);
data/rtklib-2.4.3+dfsg1/app/rtkplot/plotmain.cpp:1959:18: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
else strncpy(sta,file,4);
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:235:13: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(p+3,"N"); readrnxt(navfile,1,ts,te,tint,opt,NULL,nav,NULL);
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:236:13: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(p+3,"G"); readrnxt(navfile,1,ts,te,tint,opt,NULL,nav,NULL);
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:237:13: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(p+3,"H"); readrnxt(navfile,1,ts,te,tint,opt,NULL,nav,NULL);
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:238:13: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(p+3,"Q"); readrnxt(navfile,1,ts,te,tint,opt,NULL,nav,NULL);
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:239:13: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(p+3,"L"); readrnxt(navfile,1,ts,te,tint,opt,NULL,nav,NULL);
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:240:13: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(p+3,"P"); readrnxt(navfile,1,ts,te,tint,opt,NULL,nav,NULL);
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:246:13: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(p+3,"N"); readrnxt(navfile,1,ts,te,tint,opt,NULL,nav,NULL);
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:913:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strwrite(Stream+i,(unsigned char *)cmd,strlen(cmd));
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdata.cpp:947:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strwrite(Stream+i,(unsigned char *)cmd,strlen(cmd));
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdraw.cpp:896:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(code,ObsType->currentIndex()?qPrintable(ObsTypeText)+1:"",32);
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdraw.cpp:1044:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(code,ObsType->currentIndex()?qPrintable(ObsTypeText)+1:"",32);
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdraw.cpp:1423:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(code,qPrintable(ObsTypeText.mid(1)),32);
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdraw.cpp:1565:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(code,qPrintable(ObsTypeText.mid(1)),32);
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotdraw.cpp:1706:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(code,qPrintable(ObsTypeText.mid(1)),32);
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotinfo.cpp:307:27: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
case SYS_GPS: strcpy(s,"G"); break;
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotinfo.cpp:308:27: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
case SYS_GLO: strcpy(s,"R"); break;
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotinfo.cpp:309:27: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
case SYS_GAL: strcpy(s,"E"); break;
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotinfo.cpp:310:27: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
case SYS_QZS: strcpy(s,"J"); break;
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotinfo.cpp:311:27: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
case SYS_CMP: strcpy(s,"C"); break;
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotinfo.cpp:312:27: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
case SYS_SBS: strcpy(s,"S"); break;
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotmain.cpp:1982:41: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
if ((p=strrchr(file,'\\'))) strncpy(sta,p+1,4);
data/rtklib-2.4.3+dfsg1/app/rtkplot_qt/plotmain.cpp:1983:18: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
else strncpy(sta,file,4);
data/rtklib-2.4.3+dfsg1/app/rtkpost/kmzconv.cpp:96:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!(p=strrchr(kmlfile,'.'))) p=kmlfile+strlen(kmlfile);
data/rtklib-2.4.3+dfsg1/app/rtkpost/kmzconv.cpp:175:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!(p=strrchr(file,'.'))) p=file+strlen(file);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:115:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!(p=strrchr(file,'.'))) p=file+strlen(file);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:695:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!(p=strrchr(ofile,'.'))) p=ofile+strlen(ofile);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:760:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
rov =new char [strlen(RovList .c_str())];
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:761:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
base=new char [strlen(BaseList.c_str())];
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:769:13: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(r,p,q-p); r+=q-p;
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:770:13: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(r++," ");
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:779:13: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(r,p,q-p); r+=q-p;
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:780:13: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(r++," ");
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:938:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(p)==4&&*(p+3)=='o') *(p+3)='*';
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:939:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
else if (strlen(p)==4&&*(p+3)=='d') *(p+3)='*';
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:940:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
else if (strlen(p)==4&&*(p+3)=='O') *(p+3)='*';
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:964:33: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
if (!q) strcpy(rov,p); else strncpy(rov,p,q-p);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:969:34: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
if (!q) strcpy(base,p); else strncpy(base,p,q-p);
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:1287:33: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
if ((p=strstr(p,"@@"))) strncpy(p,"\r\n",2); else break;
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:1290:33: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
if ((p=strstr(p,"@@"))) strncpy(p,"\r\n",2); else break;
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:1486:35: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
if ((p=strstr(p,"\r\n"))) strncpy(p,"@@",2); else break;
data/rtklib-2.4.3+dfsg1/app/rtkpost/postmain.cpp:1492:35: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
if ((p=strstr(p,"\r\n"))) strncpy(p,"@@",2); else break;
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/kmzconv.cpp:113:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!(p=strrchr(kmlfile,'.'))) p=kmlfile+strlen(kmlfile);
data/rtklib-2.4.3+dfsg1/app/rtkpost_qt/postmain.cpp:158:9: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(r++," ");
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:208:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (p=str+strlen(str)-1;p>=str&&!isgraph((int)*p);p--) *p='\0';
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:244:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strwrite(&moni,(unsigned char *)MSG_DISCONN,strlen(MSG_DISCONN));
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:296:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
else if (i==type&&p+strlen(buff)+1<cmd+MAXRCVCMD) {
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:812:65: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
if (eph[i].toe.time!=0) time2str(eph[i].toe,s1,0); else strcpy(s1,"-");
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:813:65: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
if (eph[i].toc.time!=0) time2str(eph[i].toc,s2,0); else strcpy(s2,"-");
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:814:65: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
if (eph[i].ttr.time!=0) time2str(eph[i].ttr,s3,0); else strcpy(s3,"-");
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:824:75: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
if (geph[prn-1].toe.time!=0) time2str(geph[prn-1].toe,s1,0); else strcpy(s1,"-");
data/rtklib-2.4.3+dfsg1/app/rtkrcv/rtkrcv.c:825:75: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
if (geph[prn-1].tof.time!=0) time2str(geph[prn-1].tof,s2,0); else strcpy(s2,"-");
data/rtklib-2.4.3+dfsg1/app/rtkrcv/vt.c:152:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int i,len=strlen(vt->buff);
data/rtklib-2.4.3+dfsg1/app/rtkrcv/vt.c:207:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((len=strlen(buff))<=0) return 1;
data/rtklib-2.4.3+dfsg1/app/rtkrcv/vt.c:297:17: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (stat<0||read(vt->in,c,1)!=1) return 0; /* error */
data/rtklib-2.4.3+dfsg1/app/rtkrcv/vt.c:345:13: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buff,vt->buff,n-1);
data/rtklib-2.4.3+dfsg1/app/rtkrcv/vt.c:384:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return vt_putchar(vt,p,strlen(p));
data/rtklib-2.4.3+dfsg1/app/srctblbrows/browsmain.cpp:40:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int ns,stat,len=strlen(ENDSRCTBL);
data/rtklib-2.4.3+dfsg1/app/srctblbrows/browsmain.cpp:77:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!(p=strrchr(file,'.'))) p=file+strlen(file);
data/rtklib-2.4.3+dfsg1/app/srctblbrows/browsmain.cpp:115:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buff,p,q-p); buff[q-p]='\0'; p=q+1;
data/rtklib-2.4.3+dfsg1/app/srctblbrows/browsmain.cpp:376:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buff,p,n); buff[n]='\0';
data/rtklib-2.4.3+dfsg1/app/srctblbrows/browsmain.cpp:450:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buff,p,n); buff[n]='\0';
data/rtklib-2.4.3+dfsg1/app/srctblbrows_qt/browsmain.cpp:37:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len=strlen(ENDSRCTBL);
data/rtklib-2.4.3+dfsg1/app/str2str/str2str.c:182:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
else if (i==type&&p+strlen(buff)+1<cmd+MAXRCVCMD) {
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:73:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!(p=strrchr(file,'.'))) p=file+strlen(file);
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:670:37: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
if ((p=strstr(p,"@@"))) strncpy(p,"\r\n",2); else break;
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:676:37: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
if ((p=strstr(p,"@@"))) strncpy(p,"\r\n",2); else break;
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:734:39: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
if ((p=strstr(p,"\r\n"))) strncpy(p,"@@",2); else break;
data/rtklib-2.4.3+dfsg1/app/strsvr/svrmain.cpp:740:39: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
if ((p=strstr(p,"\r\n"))) strncpy(p,"@@",2); else break;
data/rtklib-2.4.3+dfsg1/app/strsvr_qt/svrmain.cpp:558:24: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
if (CmdEna[0]) strncpy(cmd,qPrintable(Cmds[0]),1024);
data/rtklib-2.4.3+dfsg1/app/strsvr_qt/svrmain.cpp:561:27: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
if (CmdEnaTcp[0]) strncpy(cmd,qPrintable(CmdsTcp[0]),1024);
data/rtklib-2.4.3+dfsg1/app/strsvr_qt/svrmain.cpp:618:24: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
if (CmdEna[1]) strncpy(cmd,qPrintable(Cmds[1]),1024);
data/rtklib-2.4.3+dfsg1/app/strsvr_qt/svrmain.cpp:621:27: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
if (CmdEnaTcp[1]) strncpy(cmd,qPrintable(CmdsTcp[1]),1024);
data/rtklib-2.4.3+dfsg1/src/convkml.c:171:13: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(file,infile,p-infile);
data/rtklib-2.4.3+dfsg1/src/convrnx.c:59:9: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(type+1,"A");
data/rtklib-2.4.3+dfsg1/src/convrnx.c:64:9: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(type+1,"B");
data/rtklib-2.4.3+dfsg1/src/convrnx.c:69:9: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(type+1,"C");
data/rtklib-2.4.3+dfsg1/src/convrnx.c:72:9: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(type+1,"A");
data/rtklib-2.4.3+dfsg1/src/convrnx.c:75:9: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(type+1,"D");
data/rtklib-2.4.3+dfsg1/src/convrnx.c:79:9: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(type+1,"2");
data/rtklib-2.4.3+dfsg1/src/convrnx.c:144:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sprintf(opt->comment[1]+strlen(opt->comment[1]),", station ID: %d",
data/rtklib-2.4.3+dfsg1/src/convrnx.c:604:33: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
if (!strcmp(path,file)) strcat(path,"_");
data/rtklib-2.4.3+dfsg1/src/download.c:82:13: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(var,q+1,r-q-1);
data/rtklib-2.4.3+dfsg1/src/download.c:115:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((p=strstr(p,q))) p+=strlen(q); else break;
data/rtklib-2.4.3+dfsg1/src/download.c:155:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((p=strrchr(buff,'.'))&&strlen(p)==4&&(*(p+3)=='d'||*(p+3)=='D')) {
data/rtklib-2.4.3+dfsg1/src/download.c:193:54: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!(paths->path[paths->n].remot=(char *)malloc(strlen(remot)+1))||
data/rtklib-2.4.3+dfsg1/src/download.c:194:54: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
!(paths->path[paths->n].local=(char *)malloc(strlen(local)+1))) {
data/rtklib-2.4.3+dfsg1/src/download.c:368:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i=strlen(buff)-1;i>=0;i--) {
data/rtklib-2.4.3+dfsg1/src/download.c:452:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sprintf(opt+strlen(opt)," --http-user=%s --http-password=%s ",usr,
data/rtklib-2.4.3+dfsg1/src/ionex.c:104:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(buff)<60) continue;
data/rtklib-2.4.3+dfsg1/src/ionex.c:109:13: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(id,buff+3,3); id[3]='\0';
data/rtklib-2.4.3+dfsg1/src/ionex.c:132:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(buff)<60) continue;
data/rtklib-2.4.3+dfsg1/src/ionex.c:183:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(buff)<60) continue;
data/rtklib-2.4.3+dfsg1/src/options.c:185:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (p=str+strlen(str)-1;p>=str&&!isgraph((int)*p);p--) *p='\0';
data/rtklib-2.4.3+dfsg1/src/options.c:199:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return strlen(p+n);
data/rtklib-2.4.3+dfsg1/src/options.c:201:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(s,p+n,q-p-n); s[q-p-n]='\0';
data/rtklib-2.4.3+dfsg1/src/postpos.c:749:13: [1] (buffer) sscanf:
It's unclear if the %s limit in the format string is small enough
(CWE-120). Check that the limit is sufficiently small, or use a different
input function.
if (sscanf(buff,"%lf %lf %lf %255s",pos,pos+1,pos+2,sname)<4) continue;
data/rtklib-2.4.3+dfsg1/src/postpos.c:975:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(ext)==4&&(ext[3]=='i'||ext[3]=='I')) {
data/rtklib-2.4.3+dfsg1/src/postpos.c:1090:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!(rov_=(char *)malloc(strlen(rov)+1))) return 0;
data/rtklib-2.4.3+dfsg1/src/postpos.c:1143:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!(base_=(char *)malloc(strlen(base)+1))) {
data/rtklib-2.4.3+dfsg1/src/postpos.c:1268:13: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(proc_rov ,"");
data/rtklib-2.4.3+dfsg1/src/postpos.c:1269:13: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(proc_base,"");
data/rtklib-2.4.3+dfsg1/src/ppp_corr.c:149:40: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
if ((p=strrchr(file,FILEPATHSEP))) strncpy(sta,p+1,4);
data/rtklib-2.4.3+dfsg1/src/ppp_corr.c:150:10: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
else strncpy(sta,file,4);
data/rtklib-2.4.3+dfsg1/src/ppp_corr.c:206:17: [1] (buffer) sscanf:
It's unclear if the %s limit in the format string is small enough
(CWE-120). Check that the limit is sufficiently small, or use a different
input function.
if (sscanf(buff,"%63s %lf %lf %lf",sta,rr,rr+1,rr+2)<4) continue;
data/rtklib-2.4.3+dfsg1/src/ppp_corr.c:210:17: [1] (buffer) sscanf:
It's unclear if the %s limit in the format string is small enough
(CWE-120). Check that the limit is sufficiently small, or use a different
input function.
if (sscanf(buff,"%lf/%lf/%lf %lf:%lf:%lf %63s %63s %lf %lf %lf %lf %lf %lf %d",
data/rtklib-2.4.3+dfsg1/src/ppp_corr.c:245:17: [1] (buffer) sscanf:
It's unclear if the %s limit in the format string is small enough
(CWE-120). Check that the limit is sufficiently small, or use a different
input function.
if (sscanf(buff,"%63s %*s %*s %*s %lf %lf %lf",sta,rr,rr+1,
data/rtklib-2.4.3+dfsg1/src/ppp_corr.c:250:17: [1] (buffer) sscanf:
It's unclear if the %s limit in the format string is small enough
(CWE-120). Check that the limit is sufficiently small, or use a different
input function.
if (sscanf(buff,"%63s %d:%d:%lf %lf %lf %lf %lf %lf %lf",sta,&year,
data/rtklib-2.4.3+dfsg1/src/preceph.c:93:13: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(tsys,buff+9,3); tsys[3]='\0';
data/rtklib-2.4.3+dfsg1/src/preceph.c:157:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(buff)<4||(buff[0]!='P'&&buff[0]!='V')) continue;
data/rtklib-2.4.3+dfsg1/src/preceph.c:167:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pred_c=strlen(buff)>=76&&buff[75]=='P';
data/rtklib-2.4.3+dfsg1/src/preceph.c:168:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pred_o=strlen(buff)>=80&&buff[79]=='P';
data/rtklib-2.4.3+dfsg1/src/preceph.c:342:20: [1] (buffer) sscanf:
It's unclear if the %s limit in the format string is small enough
(CWE-120). Check that the limit is sufficiently small, or use a different
input function.
if (!type||sscanf(buff,"%31s %31s",str1,str2)<1) continue;
data/rtklib-2.4.3+dfsg1/src/preceph.c:447:13: [1] (buffer) sscanf:
It's unclear if the %s limit in the format string is small enough
(CWE-120). Check that the limit is sufficiently small, or use a different
input function.
if (sscanf(buff,"%lf/%lf/%lf %lf:%lf:%lf %lf/%lf/%lf %lf:%lf:%lf %31s"
data/rtklib-2.4.3+dfsg1/src/rcv/binex.c:361:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=raw->msgtype+strlen(raw->msgtype);
data/rtklib-2.4.3+dfsg1/src/rcv/binex.c:785:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=raw->msgtype+strlen(raw->msgtype);
data/rtklib-2.4.3+dfsg1/src/rcv/binex.c:1092:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=raw->msgtype+strlen(raw->msgtype);
data/rtklib-2.4.3+dfsg1/src/rcv/binex.c:1111:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=raw->msgtype+strlen(raw->msgtype);
data/rtklib-2.4.3+dfsg1/src/rcv/binex.c:1251:23: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ((data=fgetc(fp))==EOF) return -2;
data/rtklib-2.4.3+dfsg1/src/rcv/crescent.c:605:23: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ((data=fgetc(fp))==EOF) return -2;
data/rtklib-2.4.3+dfsg1/src/rcv/gw10.c:421:19: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ((data=fgetc(fp))==EOF) return -2;
data/rtklib-2.4.3+dfsg1/src/rcv/javad.c:263:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=raw->msgtype+strlen(raw->msgtype);
data/rtklib-2.4.3+dfsg1/src/rcv/javad.c:312:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=raw->msgtype+strlen(raw->msgtype);
data/rtklib-2.4.3+dfsg1/src/rcv/javad.c:362:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=raw->msgtype+strlen(raw->msgtype);
data/rtklib-2.4.3+dfsg1/src/rcv/javad.c:389:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=raw->msgtype+strlen(raw->msgtype);
data/rtklib-2.4.3+dfsg1/src/rcv/javad.c:472:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=raw->msgtype+strlen(raw->msgtype);
data/rtklib-2.4.3+dfsg1/src/rcv/javad.c:596:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=raw->msgtype+strlen(raw->msgtype);
data/rtklib-2.4.3+dfsg1/src/rcv/javad.c:671:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=raw->msgtype+strlen(raw->msgtype);
data/rtklib-2.4.3+dfsg1/src/rcv/javad.c:957:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=raw->msgtype+strlen(raw->msgtype);
data/rtklib-2.4.3+dfsg1/src/rcv/javad.c:1007:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=raw->msgtype+strlen(raw->msgtype);
data/rtklib-2.4.3+dfsg1/src/rcv/javad.c:1060:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=raw->msgtype+strlen(raw->msgtype);
data/rtklib-2.4.3+dfsg1/src/rcv/javad.c:1753:23: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ((data=fgetc(fp))==EOF) return endfile(raw);
data/rtklib-2.4.3+dfsg1/src/rcv/novatel.c:303:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=raw->msgtype+strlen(raw->msgtype);
data/rtklib-2.4.3+dfsg1/src/rcv/novatel.c:394:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=raw->msgtype+strlen(raw->msgtype);
data/rtklib-2.4.3+dfsg1/src/rcv/novatel.c:570:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=raw->msgtype+strlen(raw->msgtype);
data/rtklib-2.4.3+dfsg1/src/rcv/novatel.c:629:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=raw->msgtype+strlen(raw->msgtype);
data/rtklib-2.4.3+dfsg1/src/rcv/novatel.c:674:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=raw->msgtype+strlen(raw->msgtype);
data/rtklib-2.4.3+dfsg1/src/rcv/novatel.c:779:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=raw->msgtype+strlen(raw->msgtype);
data/rtklib-2.4.3+dfsg1/src/rcv/novatel.c:1042:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=raw->msgtype+strlen(raw->msgtype);
data/rtklib-2.4.3+dfsg1/src/rcv/novatel.c:1436:23: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ((data=fgetc(fp))==EOF) return -2;
data/rtklib-2.4.3+dfsg1/src/rcv/novatel.c:1464:23: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ((data=fgetc(fp))==EOF) return -2;
data/rtklib-2.4.3+dfsg1/src/rcv/nvs.c:514:19: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ((data=fgetc(fp))==EOF) return -2;
data/rtklib-2.4.3+dfsg1/src/rcv/nvs.c:521:23: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ((data=fgetc(fp))==EOF) return -2;
data/rtklib-2.4.3+dfsg1/src/rcv/nvs.c:533:19: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ((data=fgetc(fp))==EOF) return -2;
data/rtklib-2.4.3+dfsg1/src/rcv/rcvlex.c:315:19: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ((data=fgetc(fp))==EOF) return -2;
data/rtklib-2.4.3+dfsg1/src/rcv/rt17.c:681:21: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ((data = fgetc(fp)) == EOF) return (-2);
data/rtklib-2.4.3+dfsg1/src/rcv/septentrio.c:2106:23: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ((data=fgetc(fp))==EOF) return -2;
data/rtklib-2.4.3+dfsg1/src/rcv/skytraq.c:532:23: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ((data=fgetc(fp))==EOF) return -2;
data/rtklib-2.4.3+dfsg1/src/rcv/ss2.c:296:23: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ((data=fgetc(fp))==EOF) return -2;
data/rtklib-2.4.3+dfsg1/src/rcv/ublox.c:1043:23: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ((data=fgetc(fp))==EOF) return -2;
data/rtklib-2.4.3+dfsg1/src/rinex.c:573:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(buff)<=60) continue;
data/rtklib-2.4.3+dfsg1/src/rinex.c:658:17: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(satid,buff+j,3);
data/rtklib-2.4.3+dfsg1/src/rinex.c:691:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(satid,buff,3);
data/rtklib-2.4.3+dfsg1/src/rinex.c:1206:17: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(id,buff,3);
data/rtklib-2.4.3+dfsg1/src/rinex.c:1359:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(satid,buff+3,4);
data/rtklib-2.4.3+dfsg1/src/rtcm.c:297:19: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ((data=fgetc(fp))==EOF) return -2;
data/rtklib-2.4.3+dfsg1/src/rtcm.c:316:19: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ((data=fgetc(fp))==EOF) return -2;
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:243:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=rtcm->msgtype+strlen(rtcm->msgtype);
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:393:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=rtcm->msgtype+strlen(rtcm->msgtype);
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:428:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=rtcm->msgtype+strlen(rtcm->msgtype);
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:464:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=rtcm->msgtype+strlen(rtcm->msgtype);
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:470:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(rtcm->sta.antdes,des,n); rtcm->sta.antdes[n]='\0';
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:500:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=rtcm->msgtype+strlen(rtcm->msgtype);
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:506:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(rtcm->sta.antdes,des,n); rtcm->sta.antdes[n]='\0';
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:508:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(rtcm->sta.antsno,sno,m); rtcm->sta.antsno[m]='\0';
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:539:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=rtcm->msgtype+strlen(rtcm->msgtype);
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:712:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=rtcm->msgtype+strlen(rtcm->msgtype);
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:772:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=rtcm->msgtype+strlen(rtcm->msgtype);
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:899:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=rtcm->msgtype+strlen(rtcm->msgtype);
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:905:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(rtcm->sta.antdes, des,n ); rtcm->sta.antdes [n] ='\0';
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:907:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(rtcm->sta.antsno, sno,m ); rtcm->sta.antsno [m] ='\0';
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:908:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(rtcm->sta.rectype,rec,n1); rtcm->sta.rectype[n1]='\0';
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:909:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(rtcm->sta.recver, ver,n2); rtcm->sta.recver [n2]='\0';
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:910:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(rtcm->sta.recsno, rsn,n3); rtcm->sta.recsno [n3]='\0';
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:991:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=rtcm->msgtype+strlen(rtcm->msgtype);
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:1058:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=rtcm->msgtype+strlen(rtcm->msgtype);
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:1126:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=rtcm->msgtype+strlen(rtcm->msgtype);
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:1196:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=rtcm->msgtype+strlen(rtcm->msgtype);
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:1262:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=rtcm->msgtype+strlen(rtcm->msgtype);
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:1317:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=rtcm->msgtype+strlen(rtcm->msgtype);
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:1357:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=rtcm->msgtype+strlen(rtcm->msgtype);
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:1399:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=rtcm->msgtype+strlen(rtcm->msgtype);
data/rtklib-2.4.3+dfsg1/src/rtcm3.c:1983:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg=rtcm->msgtype+strlen(rtcm->msgtype);
data/rtklib-2.4.3+dfsg1/src/rtcm3e.c:538:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n=MIN(strlen(rtcm->sta.antdes),31);
data/rtklib-2.4.3+dfsg1/src/rtcm3e.c:558:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n=MIN(strlen(rtcm->sta.antdes),31);
data/rtklib-2.4.3+dfsg1/src/rtcm3e.c:559:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int m=MIN(strlen(rtcm->sta.antsno),31);
data/rtklib-2.4.3+dfsg1/src/rtcm3e.c:891:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n=MIN(strlen(rtcm->sta.antdes ),31);
data/rtklib-2.4.3+dfsg1/src/rtcm3e.c:892:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int m=MIN(strlen(rtcm->sta.antsno ),31);
data/rtklib-2.4.3+dfsg1/src/rtcm3e.c:893:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int I=MIN(strlen(rtcm->sta.rectype),31);
data/rtklib-2.4.3+dfsg1/src/rtcm3e.c:894:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int J=MIN(strlen(rtcm->sta.recver ),31);
data/rtklib-2.4.3+dfsg1/src/rtcm3e.c:895:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int K=MIN(strlen(rtcm->sta.recsno ),31);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:486:5: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(id,"");
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:1192:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (i<0||(int)strlen(s)<i||(int)sizeof(str)-1<n) return 0.0;
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:1208:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (i<0||(int)strlen(s)<i||(int)sizeof(str)-1<i) return -1;
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:1448:13: [1] (buffer) sscanf:
It's unclear if the %s limit in the format string is small enough
(CWE-120). Check that the limit is sufficiently small, or use a different
input function.
if (sscanf(buff,"%d %31s %d =JD %lf TAI-UTC= %lf",&y,month,&d,&jd,
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2086:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(buff)>=62&&buff[61]=='|') continue;
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2091:13: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(pcv.type,buff,61); pcv.type[61]='\0';
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2135:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(buff)<60||strstr(buff+60,"COMMENT")) continue;
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2148:13: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(pcv.type,buff ,20); pcv.type[20]='\0';
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2149:13: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(pcv.code,buff+20,20); pcv.code[20]='\0';
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2292:13: [1] (buffer) sscanf:
It's unclear if the %s limit in the format string is small enough
(CWE-120). Check that the limit is sufficiently small, or use a different
input function.
if (sscanf(buff,"%lf %lf %lf %255s",&poss[np][0],&poss[np][1],&poss[np][2],
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2294:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(stas[np],str,15); stas[np++][15]='\0';
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2297:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len=(int)strlen(rcv);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2335:5: [1] (buffer) sscanf:
It's unclear if the %s limit in the format string is small enough
(CWE-120). Check that the limit is sufficiently small, or use a different
input function.
sscanf(sta,"%16s",staname);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2343:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strncmp(buff,"$$",2)||strlen(buff)<2) continue;
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:2345:13: [1] (buffer) sscanf:
It's unclear if the %s limit in the format string is small enough
(CWE-120). Check that the limit is sufficiently small, or use a different
input function.
if (sscanf(buff+2,"%16s",name)<1) continue;
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3023:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(dir,path,p-path+1); dir[p-path+1]='\0';
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3044:19: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
file=p+1; strncpy(dir,path,p-path+1); dir[p-path+1]='\0';
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3055:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((p=strstr(p,q))) p+=strlen(q); else break;
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3100:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len=strlen(pat);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3105:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(r,p,q-p);
data/rtklib-2.4.3+dfsg1/src/rtkcmn.c:3780:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
else if ((p=strrchr(tmpfile,'.'))&&strlen(p)>3&&(*(p+3)=='d'||*(p+3)=='D')) {
data/rtklib-2.4.3+dfsg1/src/rtksvr.c:349:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(file,(char *)svr->buff[index],nb-2); file[nb-2]='\0';
data/rtklib-2.4.3+dfsg1/src/solution.c:78:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int n,len=(int)strlen(sep);
data/rtklib-2.4.3+dfsg1/src/solution.c:261:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(buff)<6||buff[0]!='$') return 0;
data/rtklib-2.4.3+dfsg1/src/solution.c:302:34: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
if (!strcmp(opt->sep,"\\t")) strcpy(s,"\t");
data/rtklib-2.4.3+dfsg1/src/solution.c:304:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len=(int)strlen(s);
data/rtklib-2.4.3+dfsg1/src/solution.c:563:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(opt->sep,p+9,1);
data/rtklib-2.4.3+dfsg1/src/solution.c:569:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(opt->sep,p+14,1);
data/rtklib-2.4.3+dfsg1/src/solution.c:575:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(opt->sep,p+13,1);
data/rtklib-2.4.3+dfsg1/src/solution.c:581:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(opt->sep,p+13,1);
data/rtklib-2.4.3+dfsg1/src/solution.c:588:9: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(opt->sep," ");
data/rtklib-2.4.3+dfsg1/src/solution.c:659:15: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while ((c=fgetc(fp))!=EOF) {
data/rtklib-2.4.3+dfsg1/src/solution.c:879:7: [1] (buffer) sscanf:
It's unclear if the %s limit in the format string is small enough
(CWE-120). Check that the limit is sufficiently small, or use a different
input function.
n=sscanf(buff,"$SAT%d%lf%31s%d%lf%lf%lf%lf%d%d%d%d%d%d%d%d",
data/rtklib-2.4.3+dfsg1/src/solution.c:1161:28: [1] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source is a constant character.
else p+=sprintf(p,",");
data/rtklib-2.4.3+dfsg1/src/solution.c:1180:28: [1] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source is a constant character.
else p+=sprintf(p,",");
data/rtklib-2.4.3+dfsg1/src/solution.c:1199:28: [1] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source is a constant character.
else p+=sprintf(p,",");
data/rtklib-2.4.3+dfsg1/src/solution.c:1352:12: [1] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source is a constant character.
p+=sprintf(p,"\n");
data/rtklib-2.4.3+dfsg1/src/stream.c:296:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(port,path,p-path); port[p-path]='\0';
data/rtklib-2.4.3+dfsg1/src/stream.c:297:9: [1] (buffer) sscanf:
It's unclear if the %s limit in the format string is small enough
(CWE-120). Check that the limit is sufficiently small, or use a different
input function.
sscanf(p,":%d:%d:%c:%d:%63s",&brate,&bsize,&parity,&stopb,fctr);
data/rtklib-2.4.3+dfsg1/src/stream.c:422:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ((nr=read(serial->dev,buff,n))<0) return 0;
data/rtklib-2.4.3+dfsg1/src/stream.c:653:17: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ((nr=read(0,buff,nmax))<0) return 0;
data/rtklib-2.4.3+dfsg1/src/stream.c:1321:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
p+=encbase64(p,(unsigned char *)user,strlen(user));
data/rtklib-2.4.3+dfsg1/src/stream.c:1345:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
p+=strlen(NTRIP_RSP_OK_SVR);
data/rtklib-2.4.3+dfsg1/src/stream.c:1355:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(msg,(char *)ntrip->buff,nb); msg[nb]=0;
data/rtklib-2.4.3+dfsg1/src/stream.c:1385:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
p+=strlen(NTRIP_RSP_OK_CLI);
data/rtklib-2.4.3+dfsg1/src/stream.c:1775:5: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(msg,"");
data/rtklib-2.4.3+dfsg1/src/stream.c:2034:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(msg,stream->msg,MAXSTRMSG-1); msg[MAXSTRMSG-1]='\0';
data/rtklib-2.4.3+dfsg1/src/stream.c:2191:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(mbuff,msg,1023);
data/rtklib-2.4.3+dfsg1/src/stream.c:2211:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sprintf(path+strlen(path),":%d",brate);
data/rtklib-2.4.3+dfsg1/src/stream.c:2237:23: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
n=(int)(q-p); strncpy(msg,p,n); msg[n]='\0';
data/rtklib-2.4.3+dfsg1/src/tle.c:275:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i=strlen(buff)-1;i>=0;i--) {
data/rtklib-2.4.3+dfsg1/src/tle.c:285:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(buff)<69) return 0;
data/rtklib-2.4.3+dfsg1/src/tle.c:298:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(data->satno,buff+2,5); /* satellite number */
data/rtklib-2.4.3+dfsg1/src/tle.c:303:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(data->desig,buff+9,8); /* international designator */
data/rtklib-2.4.3+dfsg1/src/tle.c:331:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(satno,buff+2,5); /* satellite number */
data/rtklib-2.4.3+dfsg1/src/tle.c:470:13: [1] (buffer) sscanf:
It's unclear if the %s limit in the format string is small enough
(CWE-120). Check that the limit is sufficiently small, or use a different
input function.
if (sscanf(buff,"%255s %255s %255s",name,satno,desig)<2) continue;
data/rtklib-2.4.3+dfsg1/src/tle.c:481:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(tle->data[i].name,name,31);
ANALYSIS SUMMARY:
Hits = 3361
Lines analyzed = 128296 in approximately 5.16 seconds (24844 lines/second)
Physical Source Lines of Code (SLOC) = 102257
Hits@level = [0] 918 [1] 367 [2] 1405 [3] 21 [4] 1568 [5] 0
Hits@level+ = [0+] 4279 [1+] 3361 [2+] 2994 [3+] 1589 [4+] 1568 [5+] 0
Hits/KSLOC@level+ = [0+] 41.8455 [1+] 32.8682 [2+] 29.2792 [3+] 15.5393 [4+] 15.3339 [5+] 0
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.